https://community.netapp.com/t5/ONTAP-Discussions/Is-CVE-2021-42287-s-updates-compatible-with-ONTAP-9/m-p/435398#M40659 <P>Closing the loop... this issue is tracked by Bug <A href="https://mysupport.netapp.com/site/bugs-online/product/ONTAP/BURT/1465232" target="_blank" rel="noopener">1465232 <SPAN class="">-</SPAN> CIFS password change operation might fail</A>.</P><P>There are ONTAP fixes in various branches, as well as a workaround if an ONTAP upgrade is not possible at this time.</P> Sat, 28 May 2022 18:09:57 GMT andris 2022-05-28T18:09:57Z https://community.netapp.com/t5/ONTAP-Discussions/Is-CVE-2021-42287-s-updates-compatible-with-ONTAP-9/m-p/171694#M39479 <P>In November 9 2021, Microsoft release a <SPAN>monthly security&nbsp;</SPAN>update, which imporves authentication safaty described in&nbsp;<A href="https://support.microsoft.com/en-us/topic/kb5008380-authentication-updates-cve-2021-42287-9dafac11-e0d0-4cb8-959a-143bd0201041" target="_blank" rel="noopener">CVE-2021-42287</A></P><P>&nbsp;</P><P>I have a test in NAS lab:</P><P>1. Windows server 2019( with KB5007206): Set&nbsp;<STRONG>PacRequestorEnforcement</STRONG><SPAN>&nbsp;registry value to “2” (</SPAN>Enforcement phase<SPAN>)</SPAN></P><P><SPAN>2. Ontap simulater 9.8P7: A SVM join AD domain with administator</SPAN></P><P>&nbsp;</P><P><SPAN>It returns "join failed".</SPAN></P><DIV class="">&nbsp;</DIV><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="20211115-netapp-join-ad-domain-failed.png" style="width: 753px;"><img src="https://community.netapp.com/t5/image/serverpage/image-id/12407i006EB99B7BCD226C/image-size/large?v=v2&amp;px=999" role="button" title="20211115-netapp-join-ad-domain-failed.png" alt="20211115-netapp-join-ad-domain-failed.png" /></span></P><P>Trace packet shows an error about KPASSWD, seems that initiate the password of machine account</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="JOEY_STORAGE_1-1636980840248.png" style="width: 999px;"><img src="https://community.netapp.com/t5/image/serverpage/image-id/12408i91C99B7FF296E974/image-size/large?v=v2&amp;px=999" role="button" title="JOEY_STORAGE_1-1636980840248.png" alt="JOEY_STORAGE_1-1636980840248.png" /></span></P><P>&nbsp;</P><P>&nbsp;</P> Wed, 04 Jun 2025 10:08:54 GMT https://community.netapp.com/t5/ONTAP-Discussions/Is-CVE-2021-42287-s-updates-compatible-with-ONTAP-9/m-p/171694#M39479 JOEY_STORAGE 2025-06-04T10:08:54Z https://community.netapp.com/t5/ONTAP-Discussions/Is-CVE-2021-42287-s-updates-compatible-with-ONTAP-9/m-p/171698#M39480 <P>I am checking with NAS. Please open a case. This is news to us because there are zero cases on this, but good looking out.</P><P>&nbsp;</P><P>Post the case # when done.</P> Mon, 15 Nov 2021 15:13:27 GMT https://community.netapp.com/t5/ONTAP-Discussions/Is-CVE-2021-42287-s-updates-compatible-with-ONTAP-9/m-p/171698#M39480 paul_stejskal 2021-11-15T15:13:27Z https://community.netapp.com/t5/ONTAP-Discussions/Is-CVE-2021-42287-s-updates-compatible-with-ONTAP-9/m-p/171716#M39484 <DIV class="">Hi,</DIV><DIV class="">Case # 2008980660 is here, please update the&nbsp;<SPAN><SPAN>Cause&amp;<SPAN>Solution soon&nbsp;</SPAN></SPAN></SPAN><SPAN>in KB</SPAN></DIV><DIV class="">&nbsp;</DIV><DIV class="">&nbsp;</DIV><DIV class=""><SPAN>Thanks</SPAN></DIV> Tue, 16 Nov 2021 03:12:15 GMT https://community.netapp.com/t5/ONTAP-Discussions/Is-CVE-2021-42287-s-updates-compatible-with-ONTAP-9/m-p/171716#M39484 JOEY_STORAGE 2021-11-16T03:12:15Z https://community.netapp.com/t5/ONTAP-Discussions/Is-CVE-2021-42287-s-updates-compatible-with-ONTAP-9/m-p/435398#M40659 <P>Closing the loop... this issue is tracked by Bug <A href="https://mysupport.netapp.com/site/bugs-online/product/ONTAP/BURT/1465232" target="_blank" rel="noopener">1465232 <SPAN class="">-</SPAN> CIFS password change operation might fail</A>.</P><P>There are ONTAP fixes in various branches, as well as a workaround if an ONTAP upgrade is not possible at this time.</P> Sat, 28 May 2022 18:09:57 GMT https://community.netapp.com/t5/ONTAP-Discussions/Is-CVE-2021-42287-s-updates-compatible-with-ONTAP-9/m-p/435398#M40659 andris 2022-05-28T18:09:57Z