Environment:
- A SOHO network under an Active Directory domain controller on a Windows Server 2012 R2.
- A NAS with access authorization via Kerberos on the domain controller.
- The DNS server is on the domain controller.
- Due to hardware problems, I replaced the NAS with a new one, which was a new model of the same manufacturer, BUFFALO.
The new NAS:
- The IP address: 192.168.120.4 (static DHCP assignment)
- DNS name: "sunny"
- The name in the NAS configuration: "sunny"
The old NAS:
- still on the network
- The IP address: 192.168.120.4 (static DHCP assignment) --> 192.168.120.*** (DHCP dynamic allocation)
- DNS name: "sunny" --> "sunshine"
- The name in the NAS configuration: "sunny" --> "sunshine"
Problems:
After replacing, I can reach the NAS correctly but cannot open any folders which require access authorization via Kerberos. For the folders without access authorization, I can open them. The error message is "Permission denied". I tried to find out any relating log massage on the domain controller but could not. I deleted key caches on client computers by the command "klist purge" on the PowerShell.
Clues:
- The new NAS does not appear in the section "Active Directory Users and computers > computers" on the domain controller although the old NAS was there.
- I deleted the old entry "sunny" in the above section and expected two new entries were created automatically, namely "sunny" and "sunshine" for the new and the old NAS, respectively, but they didn't appear at all after a while.
- I manually added two entries "sunny" and "sunshine" in the section, but they didn't resolve the problem.
Do you know any idea what's wrong in my network and Kerberos authorization?
