Currently Being ModeratedAug 11, 2011 8:50 AM (in response to lmadden)
Yes, you can get to the ~/Library folder from the Go To Folder menu, but that is annoying.
in Terminal type: sudo chflags nohidden ~/Library
This will make it visible again.
Currently Being ModeratedAug 11, 2011 12:27 PM (in response to lmadden)
Okay, I tried connecting to an SMB share in a server in another bldg, double clicked an Excel document in the share and it opened right up in Excel 2011 on my Lion mac here in this bldg. No slowness. worked fine.
Logged into mac on the network with domain credentials, no issue. Logged out. Pulled the ethernet cable, and was able to log in with cached credentials no problem. I did have the red dot saying no network account was available, which it should say with no cable plugged in, but it let me log in no problem.
Yay, so 10.7.2 seems to fix those two issues.
Another thing.....if anyone is considering using smart cards to log in, forget it with Lion. Any framework that was in place in SL for this, is gone.
Currently Being ModeratedAug 12, 2011 9:07 AM (in response to lmadden)
I found a working solution! This is how I did:
- Fresch 10.7 client
- Enable SSH (remote access)
- Download Centrify Express
- Run AD Check to verify that your AD i OK
- Install Centrify
- Join the AD
It now take about 5 sec to login instead of 65!
I also managed to get homedir from the AD to work. In a terminal on the client:
Edit /etc/centrifydc/centrifydc.conf, enable
run adreload and adflush
The homedir is now specified by the AD!
Currently Being ModeratedAug 12, 2011 1:40 PM (in response to lmadden)
Does 10.7.2 log in that quick too?
Currently Being ModeratedAug 18, 2011 11:22 AM (in response to lmadden)
I too have problems with AD binding. We don't use a .local for AD and we are binding to Windows 2008 servers. When I bind from within System Preferences I get a message, "Unable to add server. Authentication server encountered an error while attempting the requested operation. (5202)"
When I bind from within Directory Utility I get a message, "Authentication server encountered an error while attempting the requested operation."
I have been running with AD binding using network logins for about 2 years under Snow leopard, but now Lion it is broken. I hope 10.7.2 fixes it quickly as I administer several Mac labs on the campus where I work and need AD to work in them.
Currently Being ModeratedAug 22, 2011 5:28 PM (in response to Wade Shepherd)
I was able to bind this to my domain for around two hours, but as above, after a reboot, I couldn't authenticate against the domain.
I dropped the connection and attempted to re-bind using both of the methods you listed, and received the exact same errors.
This is the sole mac device operating in our environment and has been purchased for a specific purpose. It seems as though apple really have left MS enterprise users out in the cold with the release of 10.7 - does anyone have any hints on when a release of 10.7.2 may be available?
Currently Being ModeratedAug 22, 2011 5:34 PM (in response to PureQaos)
FWIW. I've had luck with Centrify Express tool mentioned. I'm using it as a stop gap until AD is fixed with Lion. Centrify has some limitations, but it works for my needs.
Currently Being ModeratedAug 22, 2011 5:44 PM (in response to Daren Darrow)
Thanks for the info Darren. Sadly I don't have any way to connect to the internet through this device to install this app as all of our internet services are via our proxy server... on our LAN...
Even if I did, I'd have to have our security team clear Centrify for use on our LAN (my organisation is a financial service provider and very security concious). This isn't likely to happen as this is the only mac operating in our environment and no one else knows much about OS X/mac at all (and much of my knowledge pretty green)
Currently Being ModeratedAug 23, 2011 6:53 AM (in response to PureQaos)
Apple just posted for ADC members 10.7.2, so if you have a Developer's License you can download and try it.
Currently Being ModeratedSep 24, 2011 9:32 AM (in response to lmadden)
What is the status of this problem? I have a new Mac Book Pro with Lion on it. It will bind to Active Directory and create a mobile account for my AD login. However, as soon as I restart the Mac, it comes up with 'Network Accounts are not available' at the logon with a red dot.
I have two other Macs (a Pro and Air) that came with Snow Leopard on them. They were upgraded to 10.6.8 and bound to the domain with no problem. I then upgraded them to Lion. So far, no problem.
I called Apple to get support on it. The front line reps did not even know what Windows Active Directory is (are you kidding me?????). I got a second level tech who told me that they don't support this
I am a Windows guy with little Mac knowledge trying to learn it. I can tell them that there are many companies like ours that are bringing in Macs. However, setting up a Mac server is NOT an option on our network - security won't allow it. They need to have a 2nd level support dedicated to this issue. It is only going to increase in importance.
Any help or suggestions on getting past this Lion / AD / bind issue is GREATLY appreciated.
Currently Being ModeratedSep 24, 2011 9:40 AM (in response to lmadden)
I am using a .com in my domain name - not a .local. Yet, I am having the problem as well.
Currently Being ModeratedSep 24, 2011 10:53 AM (in response to lmadden)
I'd wait for 10.7.2 before trying anything, the current version is seriously borked in an AD environment.
Currently Being ModeratedSep 24, 2011 12:47 PM (in response to RBrookbanks)
Any idea of when it is coming back? I think I will get Snow Leopard and install it on this MB Pro. I have to deliver it to the user by next Monday. Snow Leopard 10.6.8 did not seem to have any problem with binding to AD.
Currently Being ModeratedSep 27, 2011 3:49 PM (in response to RBrookbanks)
I can report that in my case (mixed Mac/PC network with AD and Open Directory servers), the 10.7.2 update successfully resolved my AD and Mobile account issues. Basically, 10.7.0 and 10.7.1 just plain didn't work without hacking around.
10.7.2 works as well as the last Snow Leopard update did. Some of the quirky behavior that I noticed was fixed in 10.7.2:
"Create mobile account at login" in Directory Utility now functions properly. When you log in a user for the first time, the confirmation box that you remember in Snow Leopard appears right after you put in the password.
"Allow Administration By... (domain admins, enterprise admins)" no longer gives you a forever-lasting "Some network accounts available" yellow light in the user login box.
The "Updating Search Policy" beachball when you first bind your computer to the domain seems to disappear faster. In 10.7.1, it would last for a minute or so.
When connecting to Open Directory, however, the Directory Utility doesn't autofill in the same information that it did in Snow Leopard. In Snow Leopard, I could just hit "New..", type in my Open Directory server name, it would query it and fill in the Configuration Name as well as the Search Path. Now I have to do that stuff manually. Strangely, if I back out of Directory Utility and simply use the little screen that appears right after you push "Edit.." in the Network Account Server area of Login Options, I can use that little screen's + button to add the Open Directory server and it fills it all in fine for me.
Directory Utility also has a real thing for making you authenticate, which is good I guess. In the past, it seemed like you only had to unlock Directory Utility once per screwing-around-session. Now I have to unlock it constantly.
Again, so far so good with 10.7.2. Even the Ticket Viewer reports the correct kerberos information now. If only I could get Lion to not reverse the track pad scrolling and default new users to showing their hard drives on the desktop and in the finder sidebar, I'd be thrilled.
Currently Being ModeratedSep 27, 2011 7:00 PM (in response to plochner)
Do you have 10.7.2? How did you get ahold of it? I tried booting off a Snow Leopard DVD today to wipe out Lion and put Snow Leopard on it. No such luck. It booted off the disc and stopped at the Apple grey screen. So, I guess I am stuck at Lion - broken that it is.