Windows-based clients are having issues with some CIFS shares, the only change reported was the addition of 1 more Vscan servers to the Scanner-pool and activating it at the beginning of this week.
Basically the users get access denied/ group policy error when attempting to open certain files.
The NTFS ACL looks to be ok, if they restore the files from the day before snapshots, then, the restored file works with no issue.
They also compared the NTFS ACL of Original file and restored file and its completely the same. Netapp ACL has not been touched at all.
It looks like this issue is spreading across the Netapp system. More and more users seem to report this issue.
After disabling the VSCAN on the vservers that are done off-box by Sophos servers the issue was completely resolved.
---
The behavior mentioned is not expected on this system configuration, as it is usually caused by the option: "scan-mandatory on" for the on-access vscan policy, as explained on this NetApp article.
https://kb.netapp.com/app/answers/answer_view/a_id/1071177 (Symptom 2)
---
Anyone on this community that could help us to confirm the below:
If the configuration of VSCAN servers had turned off the "On-access scanning" mentioned, could that be the cause of users getting access denied.
Any idea of why this could be happening and what could be changed or check on the Sophos or NetApp configuration will be really appreciated.
