Hi!
I am trying to automate the creation of AD integrated CIFS Servers with VFilers (Multistore) via the PowerShell Toolkit, but I an having some problems with that.
This is my script, so far everything works fine:
$nahost = "netapp01"
$navfiler = "myvfiler1"
$navfiler_root = $navfiler + "_root"
Connect-NaController $nahost
New-NaVol $navfiler_root aggr_data 500m -SpaceReserve none
New-NaVfiler $navfiler -Addresses 10.68.33.251 -Storage $navfiler_root
$b = New-Object NetApp.Ontapi.Filer.Vfiler73.IpbindingInfo
$b.Interface = "e0a"
$b.Ipaddress = "10.68.33.251"
$b.Netmask = "255.255.255.0"
Set-NaVfilerAddress $navfiler -IpBindingInfo $b
Set-NaVfilerDns $navfiler vie.demo 10.68.33.10 10.68.33.9
Set-NaVfilerPassword $navfiler p@ssw0rd
Connect-NaController $nahost -Vfiler $navfiler
When I then try to add the vfiler to the domain, I am getting errors:
Set-NaCifs -CifsServer $navfiler -AuthType ad -SecurityStyle ntfs -Domain mydomain.net -User Administrator -Password p@ssw0rd
Set-NaCifs : Unable to continue with cifs setup, as the /etc/passwd and/or /etc/group files are missing and none of the
alternative authentication methods are enabled.
At line:1 char:11
+ Set-NaCifs <<<< -CifsServer $navfiler -AuthType ad -SecurityStyle ntfs -Domain mydomain.net -User Administrator -Passwor
d p@ssw0rd
+ CategoryInfo : InvalidOperation: (netapp01:NaController) [Set-NaCifs], ECIFS_PASSWD_AND_GROUP_REQUIRED
+ FullyQualifiedErrorId : ApiException,DataONTAP.PowerShell.SDK.Cmdlets.Cifs.SetNaCifs
Then I have tried, for example, to add a local User to the vfiler, but it also fails:
New-NaUser Administrator p@ssw0rd Administrators
New-NaUser : Could not add user <Administrator>. Error: User cannot access group(s)
At line:1 char:11
+ New-NaUser <<<< Administrator p@ssw0rd Administrators
+ CategoryInfo : InvalidOperation: (netapp01:NaController) [New-NaUser], EINTERNALERROR
+ FullyQualifiedErrorId : ApiException,DataONTAP.PowerShell.SDK.Cmdlets.Useradmin.NewNaUser
When I add a user to the hosting-filer, everything works fine.
But I can list the groups of the vfiler...
Get-NaGroup
Name Comment Roles
---- ------- -----
Administrators Members can fully administer the filer {admin}
Backup Operators Members can bypass file security to b... {backup}
Compliance Admini... Members can perform compliance operat... {compliance}
Guests Users granted Guest Access {none}
Power Users Members that can share directories {power}
Replicators not supported {none}
Users Ordinary Users {audit}
Any ideas what can be wrong?
Kind regards,
Matthias