Skip to main content

Supported SMB versions and functionality

Server Message Block (SMB) is a remote file-sharing protocol used by Microsoft Windows clients and servers. In ONTAP 9, all SMB versions are supported; however, SMB 1.0 support is disabled by default in Lenovo Data ONTAP. You should verify that the ONTAP SMB server supports the clients and functionality required in your environment.

SMB 2.0 and later versions are enabled by default for ONTAP 9 SMB servers, and can be enabled or disabled as needed.

SMB 1.0 is disabled by default but can be manually enabled by the user.

Note
Default settings for SMB 1.0 and 2.0 connections to domain controllers also depend on the ONTAP version. More information is available in the vserver cifs security modify man page.

For environments with existing CIFS servers running SMB 1.0, you should migrate to a later SMB version as soon as possible to prepare for security and compliance enhancements. Contact your Lenovo representative for details.

The following table shows which SMB features are supported in each SMB version. Some SMB features are enabled by default and some require additional configuration.

This functionality:Requires enablement:Is supported in ONTAP 9 for these SMB versions:
  1.02.02.13.03.1.1
Legacy SMB 1.0 functionality XXXXX
Durable handles  XXXX
Compounded operations  XXXX
Asynchronous operations  XXXX
Increased read and write buffer sizes  XXXX
Increased scalability  XXXX
SMB signingXXXXXX
Large MTU (enabled by default beginning with ONTAP 9.7)X  XXX
Lease oplocks   XXX
Continuously available sharesX   XX
Persistent handles    XX
Witness    XX
SMB encryption: AES-128-CCMX   XX
Scale out (required by CA shares)    XX
Transparent failover    XX
SMB Multichannel (beginning with ONTAP 9.4)X   XX
Preauthentication integrity     X
Cluster client failover v.2 (CCFv2)     X
SMB encryption: AES-128-GCM (beginning with ONTAP 9.4)X    X