Solved: Dynamic Authorization

TMADOCTHOMAS · ‎2025-02-11

I've been reading up on the new Dynamic Authorization feature in OnTAP 9.15.1 since we just upgraded to that version on one of our clusters. I'm interested if anyone has tried implement this feature and if it was a positive experience. In particular, I'm curious if there's a 'break glass' way to resolve an issue where multiple admins get locked out at the same time, and/or if the main admin account is exempt.

https://docs.netapp.com/us-en/ontap/authentication/dynamic-authorization-overview.html

pandeyji

Administrators can disable Dynamic Authorization if necessary "Enable or disable dynamic authorization in ONTAP"

The main admin account can be configured to have a higher trust score or be exempt from certain restrictions. This ensures that the primary admin can always access the system even if other accounts are locked out due to suspicious activity

View solution in original post

pandeyji

Administrators can disable Dynamic Authorization if necessary "Enable or disable dynamic authorization in ONTAP"

The main admin account can be configured to have a higher trust score or be exempt from certain restrictions. This ensures that the primary admin can always access the system even if other accounts are locked out due to suspicious activity

TMADOCTHOMAS

Very good to know! That pretty much answers my question, thank you @pandeyji !

Dynamic Authorization

new VLAN. initiator failed authorization

REST API "User is not authorized."

Help me understand NetApp dynamic home directories

User Authorization

Dynamic Disk on Windows VM