跳转到主内容

无法使用GMSA帐户访问CIFS共享

  1. 最后更新
    2022年8月2日
  2. 另存为PDF
Views:
15
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
cifs<a>2009224944</a>
Last Updated:
Invalid Date

适用场景

  • ONTAP 9
  • Microsoft GMSA帐户(组托管服务帐户)

问题描述

  • 无法使用GMSA帐户访问CIFS共享 
  • access-check authentication show-creds显示"SecD Error:Not user SID"

cluster::> set advanced
Warning: These advanced commands are potentially dangerous; use them only when directed to do so by NetApp personnel.
Do you want to continue? {y|n}: y

cluster::> vserver services access-check authentication show-creds -node node1 -vserver vs1 -win-name domain\gmsa_account
Vserver: vs1 (internal ID: 27)
Error: Get user credentials procedure failed
  [  0 ms] Using a cached connection to
           dc1.domain.com
  [     1] DC translates S-1-5-21-1172865061-1541640452-3102224447-29
           633 to 'domain\gmsa_account'
**[     1] FAILURE: Cannot get credentials for 'domain\gmsa_account',
**         SID 'S-1-5-21-1172865061-1541640452-3102224447-29633'.
**         Not a user or machine account
Error: command failed: Failed to get user credentials. Reason: "SecD Error: not user sid".

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.