Forum Discussion
Gary Williams
Dec 13, 2019Copper Contributor
Cross domain AD auth for a NAS using an alias name
This is a bit of an interesting one.
I've got a NAS system that for various reasons has multiple names on the network, about 5 at the last count. SMB1 is now disabled across the board which is causing issues with the NAS.
If the NAS is accessed using it's actual hostname, all is good.
If the NAS is access using an alias it works some of the time but not all.
The big problem is that when the NAS is accessed using an alias name from a trusted domain it just throws up an access denied.
I've tried a few things with SPN's as per https://support.microsoft.com/en-gb/help/3181029/smb-file-server-share-access-is-unsuccessful-through-dns-cname-alias but I've not been able to get it to work.
So, how do I get computers in domain2 to access a NAS joined to domain1 using an alias name?
Any suggestions very gratefully received as I've run out of ideas.
Thanks!
And resolved! I was missing the HOST/ part in front of the SPN.
Once I removed the SPN and readded it with the HOST/ part it all started working.
Next time I'll take a break from the computer before trying again!
- Gary WilliamsCopper Contributor
And resolved! I was missing the HOST/ part in front of the SPN.
Once I removed the SPN and readded it with the HOST/ part it all started working.
Next time I'll take a break from the computer before trying again!