NetApp Community Update
This site will enter Read Only mode on July 23 as we prepare to move to a new platform. You will still be able to view content, but posting and replying will be temporarily disabled.
We're excited to launch our new Community experience on July 30 and more information will follow soon.
Stay connected during the transition - Join our Discord community today.

Active IQ Unified Manager Discussions

Add-NcFileDirectorySecurityPolicyTask fails after cDOT upgrade from 8.2 to 8.3

narendrathawani
5,720 Views

Below command works fine on cDOT 8.2 clusters but fails after upgrade to 8.3

 

PS C:\Users\jdoe> Add-NcFileDirectorySecurityPolicyTask -Name abc_10000_1005_dacl_pl -Path /abc_10000_1005 -SecurityT
yp ntfs -NtfsSecurityDescriptor abc_10000_1005_sd -VserverContext nasv0001
Add-NcFileDirectorySecurityPolicyTask : For array tag ntfs-sd: expected element fsecurity-ntfs-sd, but found value: abc
_10000_1005_sd
At line:1 char:38
+ Add-NcFileDirectorySecurityPolicyTask <<<< -Name abc_10000_1005_dacl_pl -Path /abc_10000_1005 -SecurityTyp ntfs -Ntf
sSecurityDescriptor abc_10000_1005_sd -VserverContext nasv0001
+ CategoryInfo : InvalidOperation: (naspr002:NcController) [Add-NcFileDirectorySecurityPolicyTask], EINVA
LIDINPUTERROR
+ FullyQualifiedErrorId : ApiException,DataONTAP.C.PowerShell.SDK.Cmdlets.FileDirectorySecurity.AddNcFileDirectory
SecurityPolicyTask

 

We use above command from WFA 2.2 to set file level permissions on volume and qtrees.

Any suggestion to address this issue would be very much appreciated.

Thanks,

4 REPLIES 4

abhit
5,641 Views

This looks like a bug. # 868233.

Will update this thread with more details tomorrow.

 

Regards

Abhi

pavand
5,616 Views

This is a known issue, and has been fixed in toolkit version 3.2.1.

 

 Download the 3.2.1 version and use it.

mkorpics
5,497 Views

I am also seeing this with ONTAP 8.2.3 and Toolkit version 3.2.1 which is supposed to fix this.  Here is the error:

 

Add-NcFileDirectorySecurityPolicyTask -Name $policygroup -Path $JunctionPath -NtfsMode propagate -NtfsSecurityDescriptor $securitydescriptor -SecurityType ntfs -VserverContext $VserverName

Add-NcFileDirectorySecurityPolicyTask : Invalid value specified for "ntfs-sd" element within "file-directory-security-policy-task-add": " ".

At line:1 char:1

+ Add-NcFileDirectorySecurityPolicyTask -Name $policygroup -Path $JunctionPath -Nt ...

+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

+ CategoryInfo : InvalidOperation: (prdc-ramp-01:NcController) [Add-NcFileDirectorySecurityPolicyTask], EINVALIDINPUTERROR

+ FullyQualifiedErrorId : ApiException,DataONTAP.C.PowerShell.SDK.Cmdlets.FileDirectorySecurity.AddNcFileDirectorySecurityPolicyTask

 

 

PS L:\> Get-NaToolkitVersion

Major Minor Build Revision

----- ----- ----- --------

3 2 1 68

 

This is breaking a WFA workflow in my customers environment.

 

Public