quiet peak
working through issues with our domain accounts (which should be able to join machine to domain, but we keep getting LDAP insufficient perms errors running "vserver cifs create".) Windows team suggested creating the machine in ADUC, which we did, but that doesn't do anything in ONTAP.
Is the vserver cifs create -cifs-server command still needed?
tardy crystal
yes of course this is needed, otherwise the CIFS service will not start up on the SVM.
It also doesn't matter if the AD coputer account already exists or not, ONTAP will ask and re-use it if it exists.
If you get an "insuffcicient permissions" error, then the reason is probably that the account you are connecting to AD with has insufficient permissions to create the AD object in the OU specified. Try with a domain admin user
or try creating the account in a different OU and moving it later, from Windows
quiet peak
Yeah, that's what I thought. We should have admin rights in these OUs, but it's a new site and still working out kinks.