Hi Gurus, We are migrating vfilers from 7-mode (CIFS only access) to CDOT. I like to destroy the 7-mode vfiler and use same name and IP details for the new SVM so that I dont have to change any user share path names. In this regard, do I need to delete the CIFS Server object in AD and recreate it by from CDOT with Vserver CIFS create or can I re-use the CIFS Server AD object (I prefer to do this way). Just wanted to understand the active directory CIFS server object has any attribute specific to 7-mode or CDOT? if not reusing the object should not be an issue correct? please advise.
... View more
I want to backup my SMB/CIFS share on my FAS2750. Need to add the filer as a storage object in Veeam 11. Authentication fails when adding the filer into Veeam using a local user assigned the built in NetApp role called "backup". I can successfully add the filer into Veeam if I specify the filer admin account. I don't want to use the admin account. I opened a support case with Veeam and they said I need to specify additional permissions per this guide. https://helpcenter.veeam.com/archive/backup/110/vsphere/required_permissions.html#netapp-data-ontap-lenovo-thinksystem-dm-permissions The section titled CDOT (NAS Backup Integration) The specified permissions are not found in OnTap 9.12.1 For example need to grant DEFAULT the "readonly" permission. DEFAULT is not available. Merely a long list of /api/blahblahblah Yet there it is. Plain as day on the admin role. What am I missing?
... View more
ERROR! couldn't resolve module/action 'na_ontap_snapmirror_policy'. This often indicates a misspelling, missing collection, or incorrect module path. Although na_ontap_snapmirror module working fine
... View more
Hi We have FAS8040 with ONTAP 9.5 with a CIFS server. It has the following security settings: Vserver: SVM_CIFS Kerberos Clock Skew: 5 minutes Kerberos Ticket Age: 10 hours Kerberos Renewal Age: 7 days Kerberos KDC Timeout: 3 seconds Is Signing Required: false Is Password Complexity Required: true Use start_tls for AD LDAP connection: false Is AES Encryption Enabled: false LM Compatibility Level: lm-ntlm-ntlmv2-krb Is SMB Encryption Required: false Client Session Security: - SMB1 Enabled for DC Connections: system-default SMB2 Enabled for DC Connections: system-default LDAP Referral Enabled For AD LDAP connections: false Use LDAPS for AD LDAP connection: false After we've changed msDS-SupportedEncryptionTypes of SVM_CIFS in AD from 6 to 28 authentification via Kerberos ceased to work. I can see from the settings that AES is not enables but as far as I understood, RC4 is enabled always. Taking into account that RC4 is present in 6 and 28 and it works with 6 but not with 28 I can make a conclusion that only DES can be used by NetApp in our case. Any explanations why it could happen? Any ideas on how to debug it? Thanks msDS-SupportedEncryptionTypes: 6 (DES_CBC_MD5 | RC4_HMAC_MD5) 28 (RC4_HMAC_MD5 | AES128_CTS_HMAC_SHA1_96 | AES256_CTS_HMAC_SHA1_96)
... View more
We are trying to setup zero touch provisiong for Netapp CDOT systems.
Does Netapp support any option to boot OnTap non-interactively, (may be using netboot) and configure interfaces, user account, and cluster ?
... View more
