启用"auth-sys-extended-groups"后、NFS访问被拒绝
适用场景
- ONTAP 9
- NFS
问题描述
- 启用NFS选项后
auth-sys-extended-groups
, 将拒绝从客户端进行NFS访问 - 报告了有关UNIX凭据的EMS错误
secd.authsys.lookup.failed:error: Unable to retrieve credentials for UNIX user with UID (x) on Vserver (SVM) for client with IP address (y).
- 数据包跟踪显示:
816053 NFS 124 16 V3 ACCESS Call (Reply In 816054), FH: 0x552b00cd, [Check: RD LU MD XT DL]
816054 NFS 24 16 V3 ACCESS Reply (Call In 816053) RPC Auth Error: (client must begin new session)
- 数据包跟踪RPC详细信息:
Reject State: AUTH_ERROR (1)
Auth State: client must being new session (2)
- 无法解析用户ID:
::> set -privilege advanced
::*> vserver services name-service getxxbyyy getpwbyuid -vserver svm1_ontap91 -userID 998
Error: command failed: Failed to resolve 998. Reason: Entry not found for "userid: 998".