Network Attached Storage​

 View Only

 HNAS cifs shared don't want to be called on windows system

  • Network Attached Storage
  • Hitachi Network Attached Storage NAS
yudho wibowo's profile image
yudho wibowo posted 11-20-2019 08:06

Hi,

 

i have trouble on cifs share, cifs shared don't want to be called on windows system.

for cifs share we not used AD,

following the scenario that I have configured :

 

EVS : hnasProd1 (10.200.51.196 , ag1),

FileSystem : ComVault_FS01,

Mode : Mixed (windows and unix),

path share : /home1

 

and i called from windows system on --> program --> run and type \\10.200.51.196\ComVault_FS01.

Cifs shared don't want to be called on windows system.

How to mapp and called cifs share from hnas to windows server? I attach the configuration that I have configured

 

need help and please advice

 

Thank You

Best Regards

Yudho PW

 


#HitachiNetworkAttachedStorageNAS
Attachments  View in library
HNAS cifs shared don't want to be called on win... 91 KB
HNAS cifs shared don't want to be called on win... 206 KB
HNAS cifs shared don't want to be called on win... 83 KB
Nathan Buck's profile image
Nathan Buck posted 01-14-2020 18:55

> for cifs share we not used AD,

 

This is going to be your problem. By default the EVS will have the smb-max-supported-version at 2 or 3. SMB2+ requires some kind of security signing to establish the session, and if you are not connected to an AD, the HNAS cannot process authentication.

 

The client attempts to connect, negotiates the highest SMB protocol version it can, provides signing credentials, and the connection fails because the HNAS doesn't know what to do with the credentials and can't sign the connection.

 

Best practice would be to connect the EVS to an active directory and use higher SMB protocol versions. If you cannot and want to ignore the security risks, you'll need to go in through the command line and turn off authentication and drop the max SMB version to 1

 

# vn hnasProd1

# cifs-auth off

# smb-max-supported-version 1

 

Again, that's extremely bad, means anyone/anything can connect to that share unchecked.

Related Content