NetApp Community Update
This site will enter Read Only mode on July 23 as we prepare to move to a new platform. You will still be able to view content, but posting and replying will be temporarily disabled.
We're excited to launch our new Community experience on July 30 and more information will follow soon.
Stay connected during the transition - Join our Discord community today.

Software Development Kit (SDK) and API Discussions

Authentication failure to cDot controller connecting from powershell

hpadmana
6,434 Views

Authentication is failing for my ‘domain\user1_us’ but it works for one teammate’s “domain\user2_us” account. Also 'admin' user is working fine. We were wondering because both of us have same permissions on NAS as well as on Active Directory.Accounts created using,

# security login create -vserver vservername -username domain\user1_us -application ssh -authmethod domain -role admin

# security login create -vserver vservername -username domain\user1_us -application ontapi -authmethod  domain -role admin

 

Following 2 lines will be responsible.

$pwd = Get-Credential -credential "domain\user1_us”

Connect-NcController “clustername” -vserver “vservername” -Credential $pwd -ErrorAction silentlycontinue | Out-Null

 

 Really appreciate the help.

1 ACCEPTED SOLUTION

mbeattie
6,418 Views

Hi,


No issues with your powershell code, have you check the secd.log file (/mroot/etc/log/mlog/secd.log) for authentication errors from the domain user in question? See this KB

 

https://kb.netapp.com/support/index?page=content&id=1012894&locale=en_US

You could try a "diag secd trace".

 /matt

If this post resolved your issue, help others by selecting ACCEPT AS SOLUTION or adding a KUDO.

View solution in original post

2 REPLIES 2

mbeattie
6,419 Views

Hi,


No issues with your powershell code, have you check the secd.log file (/mroot/etc/log/mlog/secd.log) for authentication errors from the domain user in question? See this KB

 

https://kb.netapp.com/support/index?page=content&id=1012894&locale=en_US

You could try a "diag secd trace".

 /matt

If this post resolved your issue, help others by selecting ACCEPT AS SOLUTION or adding a KUDO.

ekashpureff
6,412 Views

 

Hpadmana -

 

You may want to compare user1 and user2 with the 'security login show' command.

( https://library.netapp.com/ecmdocs/ECMP1511539/html/security/login/show.html )

 


I hope this response has been helpful to you.

At your service,

Eugene E. Kashpureff, Sr.
Independent NetApp Consultant http://www.linkedin.com/in/eugenekashpureff
Senior NetApp Instructor, IT Learning Solutions http://sg.itls.asia/netapp
(P.S. I appreciate 'kudos' on any helpful posts.)

 

Public