About andris

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

About andris

526 Total Posts
182 Total Kudos Received
Jan 29, 2025 Last Visited
Aug 6, 2008 Date Registered
andris

Re: Active IQ Unified Manager 9-7 PSL setting deletes the Volume QoS set

This forum is for the Active IQ web portal and related AutoSupport topics... I would post your question in the "Data Infrastructure Management SW" forum for help: https://community.netapp.com/t5/Data-Infrastructure-Management-Software-Discussions/bd-p/oncommand-storage-management-software-discussions ... View more
by NetApp in Active IQ and AutoSupport Discussions
‎2020-06-12 12:02 PM
2,134 Views
andris

Re: Security Vulnerblilties on old FAS 6080

Maybe you need to remove that Diffie-Hellman (DH) key...   There is a KB article on this option, but it hasn't been migrated to the new KB system, yet.   This is some relevant parts: When high_security.enable is set to ON: SSH: Will stop advertising weaker ciphers, KEX and MAC algorithms – These MACs will not be advertised: all hmac-md5 series, hmac-ripemd series, umac series and kex: diffie-hellman-group1-sha1, curve25519 SSL: ssl.v2.enable and ssl.v3.enable will be disabled  TLS: TLS.v1.1 and TLSv1.2 will be enabled and internally negotiate TLSv1.1, TLSv1.2 only Secure LDAP: should negotiate according to value of TLS setting (tls.v1_1.enable/tls.v1_2.enable) How to enable: In order to enable the high_security option, all the Vfilers must have the required ECDSA and ED25519 keys generated using Secure admin setup. If any Vfilers do not have the required SSH keys, then high security options cannot be enabled. Consider the following when stronger SSH keys are required: When prompted for the key size, input the number, don’t accept the default in brackets, even if the default is showing the desired key size For ssh1 protocol, key size must be between 1024 and 16384 bits For ssh2 protocol, RSA key size must be between 1024 and 16384 bits DSA valid key size is 1024 bits ECDSA valid key sizes are 256, 384, and 521 bits ED25519 key size must be between 256 and 16384 bits 1. enable> options high_security.enable on 2. Follow the prompts Review Documentation: Setting up and Starting SSH service ... View more
by NetApp in ONTAP Hardware
‎2020-06-11 11:14 AM
7,485 Views
2 kudos
andris

Re: Switched cluster to new Switchless ONTAP cluster?

Yes, that is a sound plan. The switched -> switchless doc has been provided for that last step. ... View more
by NetApp in ONTAP Hardware
‎2020-06-05 10:21 AM
4,974 Views
1 kudo
andris

Re: Autosupport SMTP Auth

man page: [-proxy-url <text>] - Support Proxy URL Use this parameter to specify an HTTP or HTTPS proxy if the -transport parameter is set to HTTP or HTTPS and your organization uses a proxy. Enter the URL without an http:// or https:// prefix. If authentication is required, use the format "[username]@[host][:[port]]". You will be prompted for the password. The default is an empty string. To specify a proxy that contains a question mark, press ESC followed by the "?". This field can be cleared by setting the value to an empty string using two double quotes (""). ... View more
by NetApp in Active IQ and AutoSupport Discussions
‎2020-05-26 09:37 AM
16,977 Views
andris

Re: Moving CIFS Volume Share Data 7-Mode to Cluster Ontap 9

+1 on XCP as a copy-based option. It's very fast. See: https://xcp.netapp.com/ ... View more
by NetApp in ONTAP Hardware
‎2020-05-15 03:11 PM
4,375 Views
1 kudo
andris

Re: Active 10G TwinAx for FAS2554?

If this connections is for the cluster network, then it's not supported. If this connection is for front-end/data connectivity, our general recommendation is to stick with the switch vendor's approved cables.  With active twinax or optical, YMMV.  You can always give it a shot, but you'll want to monitor link status/health and ports stats for any issues. ... View more
by NetApp in ONTAP Hardware
‎2020-05-12 09:09 AM
3,727 Views
andris

Re: Autosupport SMTP Auth

OK. In case you want to bring this up with your NetApp representative: Bug 1098213 Feature request: SMTP STARTTLS support for ONTAP AutoSupport   Here are your options (in preferred order): HTTPS (TCP/443) to support.netapp.com HTTPS via a configured proxy (simple authentication supported, if needed) to support.netapp.com Arrange for a "SMTP whitelist sender" exception for the ONTAP clusters - the allowed destinations can be locked down to autosupport@netapp.com, any external support partner e-mail destinations or internal e-mail destinations. ... View more
by NetApp in Active IQ and AutoSupport Discussions
‎2020-05-07 03:29 PM
17,388 Views
1 kudo
andris

Re: Autosupport SMTP Auth

The man page link has more info. Did you see it? == Also, you can optionally prepend a user name and password combination for authentication to each mail server. The format of the username and password pair is user1@mymailhost.example.com . User will be prompted for the password. The username and password can be specified on none, all, or some of the mail hosts. == When you execute the modify command, if you specify a user as above, you will be interactively prompted for a password.   Note1: AutoSupport only supports simple authentication. STARTTLS is not supported. There is an RFE in the system for that with no target date.   Note2: With ONTAP 9.5 and later, AutoSupport configuration is enforced cluster-wide. So, the user:password configuration for the mailhost is shared by all nodes in the cluster. ... View more
by NetApp in Active IQ and AutoSupport Discussions
‎2020-05-07 09:38 AM
17,435 Views
andris

Re: Power Supply specifications for AFF-A300?

Max. DC output at 200-240V is 1460W for the PSU of an AFF-A300.   Public Service Announcement: This site has Energy Star testing results of PSUs for most NetApp products. It includes lots of good info, too: https://www.plugloadsolutions.com/80PlusPowerSuppliesDetail.aspx?id=275&type=1   AFF A300, FAS8200 X5729A DCJ14602-01 DCJ14602-01 Energy Star Report ... View more
by NetApp in AFF
‎2020-05-06 09:53 AM
7,755 Views
1 kudo
andris

Re: False HA interconnect Errors - 4 Node Cluster

Well, OK. But it's important to verify you're using the correct reference config file for the cluster switches.  You need v1.3 or 1.4 variants to support the shared cluster and HA configuration that the AFF A320 requires. ... View more
by NetApp in General Discussion
‎2020-05-04 12:01 PM
4,942 Views
andris

Re: AFF A200 - single path ha

If a FAS or AFF controller with embedded storage has no additional external SAS storage shelves, the Node1 0a -> Node2 0b and Node1 0b -> Node1 0a SAS cable connections are a minor reliability enhancement to give you multipath HA connectivity for that internal shelf of drives. But, the internal path to the drives is deemed highly reliable - In fact, NetApp has stopped including the 2 x SAS cables for systems with only internal storage due to this fact. ... View more
by NetApp in AFF
‎2020-05-04 11:07 AM
5,044 Views
1 kudo
andris

Re: Active IQ API - Contract & Warranties

Hi Sebastian,   You can leave feedback in Active IQ to request an answer to your API questions.  There is a green feedback tab on the right hand side in Active IQ, as well as a Support icon at the top right hand corner in Active IQ Digital Advisor. ... View more
by NetApp in Active IQ and AutoSupport Discussions
‎2020-04-10 11:47 AM
3,432 Views
1 kudo
andris

Re: FAS8060 Minimum Size Root Volume

@aborzenkov 's suggestion is a very easy way to move to whole disks only. ONTAP 9.2 and later, though (you didn't say what ONTAP version you are using). Ref: FAQ: ONTAP Boot Menu Option 9 (Configure Advanced Drive Partitioning)   But, as already stated, root-data-data partitioning exists to maximize the physical storage efficiency for your data aggregates. If that is not your goal, then whole disks are just fine, too. ... View more
by NetApp in ONTAP Hardware
‎2020-04-06 01:19 PM
3,703 Views
andris

Re: Proactive remediation didn't resolved although BIOS upgrade completed.

To set expectations, it could take up to 48 hours after a HCI/SF issue has been resolved for it to clear in Active IQ. ... View more
by NetApp in Active IQ and AutoSupport Discussions
‎2020-03-24 03:35 PM
3,297 Views
andris

Re: EOS / EOL questions from the FAS series (at 7mode)

The NSS page for software version support (includes ONTAP info): https://mysupport.netapp.com//info/web/ECMP1147223.html#ontap_svst ... View more
by NetApp in ONTAP Hardware
‎2020-03-18 10:50 AM
18,959 Views
andris

Re: AFF Partitioning in 9.1

I'd need more context to answer your particular question... are you referring to a controller's internal disks? Which model? Are there 24 bays or 12?  Or are you referring to external storage being added (again, 12 or 24 bays)?   What I can say as a general comment that on AFF systems you should lay out drives in partially filled shelves in an "outside in" manner.  E.g. If 12 SSD's in a 24-bay shelf, place in 0-5 and 18-23.  Option 9b/ADP initialization will automatically assign the container disk ownership of 0-5 to node A and 18-23 to node B. Then, perform root-data-data partitioning. ... View more
by NetApp in ONTAP Hardware
‎2020-03-13 08:15 AM
10,457 Views
1 kudo
andris

Re: Unable to access System Manager when migrating cluster mgmt. LIF to new nodes with ONTAP 9.6P5

I would review the LIF service policies on the cluster (or at least on the new nodes). LIF Service Policies are the new method to control what functions/operations/access a LIF supports in 9.6+. Review: LIFs and service policies in ONTAP 9.6 and later Configuring LIF service policies   network interface service-policy network interface service-policy show - Display existing service policies network interface service-policy add-service - Add an additional service entry to an existing service policy (advanced) network interface service-policy clone - Clone an existing network service policy (advanced) network interface service-policy create - Create a new service policy (advanced) network interface service-policy delete - Delete an existing service policy (advanced) network interface service-policy modify-service - Modify a service entry in an existing service policy (advanced) network interface service-policy remove-service - Remove a service entry from an existing service policy (advanced) network interface service-policy rename - Rename an existing network service policy (advanced) network interface service-policy restore-defaults - Restore default settings to a service policy (advanced) ... View more
by NetApp in ONTAP Hardware
‎2020-03-02 02:58 PM
13,471 Views
andris

Re: Used FAS3140 factory reset

This previous community topic might be helpful. https://community.netapp.com/t5/FAS-and-V-Series-Storage-Systems-Discussions/Restoring-to-Factory-Defaults/td-p/48296 ... View more
by NetApp in ONTAP Hardware
‎2020-03-02 10:23 AM
1,821 Views
andris

Re: what is the meaning of the system node environment sensors show

To reinforce Gidon's comments, try to look at it from a chassis perspective. The PSU info applies to the chassis. There are (usually) 2 PSUs for a controller chassis. The total draw of both PSU's represents the power used by BOTH nodes in the chassis (if an HA system). A shelf will have 2 or 4 PSUs for a shelf chassis. The total draw of both PSU's represents the power used by both IOM modules in the shelf. Things to be careful about... On an embedded storage controller system, make sure you don't double-count the "chassis" - it will be reported at the node level as well as the shelf level. Shelves are multi-path HA, usually. If looking at output (especially from nodeshell), make sure you are not double-counting the shelf if you see values being shown from the perspective of each initiator path. e.g. Shelf 2 is called 0a.2 and 0b.2, because there are two paths. ... View more
by NetApp in ONTAP Hardware
‎2020-02-27 10:30 AM
5,013 Views
1 kudo
andris

Re: CANNOT ACCESS WEB GUI after update SP to 5.7

The only possible way that the SP and internal Ethernet switch config update could impact access to management of its host node is if you are using the e0M port for the mgmt. LIF home port (the internal switch "connects" the e0M port out through the external "wrench" port). Is that the case? I would recommend you open a technical case with NetApp Support to investigate further. As a workaround, you can try moving the mgmt. LIF to another available port that might be on the same IP subnet. ... View more
by NetApp in ONTAP Discussions
‎2020-02-25 08:02 AM
5,990 Views
andris

Re: cluster switch upgrade backout plan for CN1610,NX5596 and Nx3132

Cisco documentation should be helpful. Release notes (has upgrade/downgrade info): https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5500/sw/release/notes/7x/Nexus5500_Release_Notes_7x.html#pgfId-512169   Every release has a Upgrade and Downgrade Guide. e.g. Cisco Nexus 5600 Series NX-OS Software Upgrade and Downgrade Guide, Release 7.3(3)N1(1) https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5600/sw/upgrade/733_N1_1/n5600_upgrade_downgrade_733_n1_1.html     ... View more
by NetApp in ONTAP Hardware
‎2020-02-13 07:56 AM
3,553 Views
andris

Re: Unable to access System Manager when migrating cluster mgmt. LIF to new nodes with ONTAP 9.6P5

Where is the host/client - on the same subnet as VLAN 198 or not? If you can ping/telnet/ssh from that localhost, it would seem to point to a potential firewall issue. What exactly is the browser response? Not found - 404 or something else? ... View more
by NetApp in ONTAP Hardware
‎2020-02-12 06:03 PM
13,550 Views
andris

Re: Unable to access System Manager when migrating cluster mgmt. LIF to new nodes with ONTAP 9.6P5

The key question would be whether the wrench ports are all connected to the same VLAN/IP subnet from a switch/router perspective. ... View more
by NetApp in ONTAP Hardware
‎2020-02-12 09:38 AM
13,593 Views
andris

Re: Login failed at OneCollect

David,   Post your issue in the community forum listed below. http://community.netapp.com/t5/forums/postpage/board-id/oncommand-storage-management-software-discussions How to get Support NetApp Active IQ OneCollect is supported via NetApp Communities.  Create a new discussion on NetApp Communities for any questions, concern, or feedback. You must either type OneCollect in the Label field or click OneCollect link provided under the Choose a Label section. Click Post to send your feedback to NetApp. ... View more
by NetApp in Active IQ and AutoSupport Discussions
‎2020-01-29 01:14 PM
1,783 Views