ONTAP Discussions

Is CVE-2021-42287's updates compatible with ONTAP 9?

JOEY_STORAGE

In November 9 2021, Microsoft release a monthly security update, which imporves authentication safaty described in CVE-2021-42287

 

I have a test in NAS lab:

1. Windows server 2019( with KB5007206): Set PacRequestorEnforcement registry value to “2” (Enforcement phase)

2. Ontap simulater 9.8P7: A SVM join AD domain with administator

 

It returns "join failed".

 

20211115-netapp-join-ad-domain-failed.png

Trace packet shows an error about KPASSWD, seems that initiate the password of machine account

JOEY_STORAGE_1-1636980840248.png

 

 

2 REPLIES 2

JOEY_STORAGE
Hi,
Case # 2008980660 is here, please update the Cause&Solution soon in KB
 
 
Thanks

paul_stejskal

I am checking with NAS. Please open a case. This is news to us because there are zero cases on this, but good looking out.

 

Post the case # when done.

Announcements
NetApp on Discord Image

We're on Discord, are you?

Live Chat, Watch Parties, and More!

Explore Banner

Meet Explore, NetApp’s digital sales platform

Engage digitally throughout the sales process, from product discovery to configuration, and handle all your post-purchase needs.

NetApp Insights to Action
I2A Banner
Public