Sun Storage 7310 Unified Storage System
 
Sun Storage 7410 Unified Storage System
 
Sun ZFS Storage 7120
 
Sun ZFS Storage 7420
 
Sun ZFS Storage 7320
 
Sun Storage 7110 Unified Storage System
 
Sun Storage 7210 Unified Storage System
 

PLA-Support>Sun Systems>DISK>NAS>SN-DK: 7xxx NAS
 
.Old GCS Categories>Sun Microsystems>Storage - Disk>Unified Storage
 

In this Document

Goal

Fix

References

Applies to:

Goal

This document describes issues that could prevent ZFS Storage Appliances from connecting to an Active Directory domain after upgrade to the 2011.1 software release, and potential solutions.

Fix

As of the 2011.1 release, the ZFS Storage Appliance uses a new method for outbound SMB connections with the Active Directory Domain Controller. This change can cause two potential problems.

First, it may simply be necessary to navigate to the

screen within the BUI and re-enter the administrative credentials. This is simply to re-initialize the connection with the new method.

The second potential problem is a compatibility issue with the NtlmMinServerSec registry setting (HKLM\SYSTEM\CurrentControlSet\Control\Lsa\MSV1_0\NtlmMinServerSec). If this setting is configured to anything other than the default of zero, the appliance will not be able to negotiate a connection with the Domain Controller.

To resolve the issue, set the registry setting back to the default, or contact Oracle Support to determine whether a workaround or fix is available. Detailed information on this setting from Microsoft can be found here.

The details on the workaround and the related bug can be found on the support wiki here.

If it is intended to use the proposed workaround that modifies the service properties, pay careful attention to the note at the end of the wiki article on compatibility with an upcoming fix for Server 2008 and NTLMv2.

Back to <Document 1402353.1> Sun Storage 7000 Unified Storage System: How to Troubleshoot Active Directory Issues.

References

This solution has no attachment