Currently Being ModeratedFeb 7, 2011 1:10 PM (in response to adwatson.au)Posted in erroriBook G3 (10.4.11)
Currently Being ModeratedFeb 7, 2011 2:23 PM (in response to Antonio Rocco)Sorry Antonio - Are you saying this is in the wrong topic? Not sure I understand "Posted in Error"MBPro 13, iMac 27, Macmini, Mac OS X (10.6), OSX Server in Use
Currently Being ModeratedFeb 7, 2011 3:00 PM (in response to adwatson.au)Update: Trawling through the logs trying to find something specific and found that this entry seems to come up after unsuccessful login attempt with OD accounts -
8/02/11 11:52:37 AM com.apple.UserEventAgent-LoginWindow ALF error: cannot find useragent 1102
If there are any other log entries I scan search for that would help solve this issue - keen to hear your thoughts.MBPro 13, iMac 27, Macmini, Mac OS X (10.6), OSX Server in Use
Currently Being ModeratedFeb 7, 2011 3:13 PM (in response to adwatson.au)Hi
Apologies. It's nothing you've done. All I meant was I posted in error. Actually I've now had a look at your thread. You do know that local users take precedence don't you?
TonyiBook G3 (10.4.11)
Currently Being ModeratedFeb 7, 2011 4:44 PM (in response to Antonio Rocco)So that does confirm a suspicion that I had (may need to change the user short names then) - however I created a testuser account to test the ability to Login to an OSX client using the OD account and unfortunately I am still getting the same error - so still there is an issue with the client being able to authenticate with the OD server using the OD accounts and login.MBPro 13, iMac 27, Macmini, Mac OS X (10.6), OSX Server in Use
Currently Being ModeratedFeb 7, 2011 6:40 PM (in response to adwatson.au)Update - Came across some useful trouble shooting in a post from Gordon Davisson who suggested running the following commands:
- id <username>
- kinit <username>
Both commands successfully identified the user from a MAC Client - so client appears to be able to successfully communicate with the OD server and get the correct responses for identification. Keen to know what other tests I can do here to solve.MBPro 13, iMac 27, Macmini, Mac OS X (10.6), OSX Server in Use
Currently Being ModeratedFeb 8, 2011 9:05 AM (in response to adwatson.au)Your original post does not mention whether you have used Workgroup Manager to define a "Network Home" for each user and to "Create Home Directory" for each user. If you haven't done that, you will get the shaking login screen on the client when you try to login.G4 MDD, Mac OS X (10.5.8)
Currently Being ModeratedFeb 8, 2011 12:08 PM (in response to cpragman)Hi Folks
First - thanks for your help.
Closing this out - here is what I learned:
1) Needed to ensure my server was Kerberised and that Kerebos was running correctly
2) Local users have precedence over network so I need to ensure I don't use the same short name. While using the "id" command you may be able to see the network user ID, the local of the same name appears to take precedence.
3) Using the "kinit" command useful for confirming Kerebos is working correctly
4) Home directories created - had already done this but what finally got this working was stopping and restarting AFP Service.
So was able to successfully login to Mac Client using OD username and password - it mounted the network home share just fine on the client, loaded preferences etc.
Now on to create network users with Mobile Accounts for my laptop users - wish me luckMBPro 13, iMac 27, Macmini, Mac OS X (10.6), OSX Server in Use
Currently Being ModeratedMay 2, 2011 12:02 PM (in response to adwatson.au)
Not sure if you have fixed this, although I am sure you have. Another thing that can be the issue is you need to make sure the IP Address of the DNS/OD Server is added to DNS entrys for the local machine, otherwise you will get an error logging in, even with the home folder.
Currently Being ModeratedDec 17, 2012 8:46 AM (in response to cpragman)
After tweaking around with this instructions I managed to get everything working again.