Skip navigation

Network Users Unable to Log On

3536 Views 15 Replies Latest reply: Apr 20, 2012 10:29 PM by Tim Chapman RSS
1 2 Previous Next
Tim Chapman Calculating status...
Currently Being Moderated
Apr 7, 2012 5:41 AM

I have just purchased a mac mini with a lion server preinstalled (10.7.3).  The server is for home use with 5 users hanging of it and (eventually) a number of mobile devices>

 

I have set up the server and am using a Open Directory Master.  I have then inputed groups and users.

 

I have been able to select the server on the client machines (two mac pros and one macbook pro) under the Network Account Server section of the Users & Groups preferences pane.  I can select all users or nominated ones without a problem.  I can also see the server through finder and mount the shared folders.

 

However, I can not get get the server to accept network logins (on any of three machines that I have tried to do it from).  I keep getting a "You are unable to log in to the user account "xxx" at this time.  Logging in to the account failed because an error occured."  I get no indication what that error may be.

 

This is the same result for each client and for each user.

 

After being frustrated for some time I resent the open directory by changing it to a standalone and then recreating a master.  I reentered the users and groups and then tried again.  Same result.

 

I have not adjusted the hostname or DNS as they seem to be working fine.

 

All clients and the server are operating of the latest Lion installation.  All were up to date before I started the server setup.

 

This is killing me.


Does anyone have any suggestion what I need to look at.

 

T

Mac Pro (Mid 2010), Mac OS X (10.7.3), 2 x 2.93 6 Core Intel Xeon 32GB 13
  • Jonathan Melville Level 2 Level 2 (450 points)
    Currently Being Moderated
    Apr 7, 2012 7:40 AM (in response to Tim Chapman)

    How did you create your Open Directory Master?

  • Jonathan Melville Level 2 Level 2 (450 points)
    Currently Being Moderated
    Apr 7, 2012 8:47 AM (in response to Tim Chapman)

    Hey Tim,

     

    It's actually problematic to create ODM's using Server Admin in Lion Server. You should use Server.app ONLY when creating your Master. I bet if you recreate your master with Server.app, everything will work properly.

     

    Also create all users and groups and assign Network Home Directories in Server.app. 

  • forappie Calculating status...
    Currently Being Moderated
    Apr 7, 2012 11:19 AM (in response to Tim Chapman)

    Tim,

    Lion Server can be very challenging at times as I also discovered. I had the same problem but gave up more quickly than you since I wasn't that desperate.

     

    Potential causes you may still want to review:

    Success and let us know when you succeed.

  • forappie Level 1 Level 1 (20 points)
    Currently Being Moderated
    Apr 8, 2012 4:11 AM (in response to Tim Chapman)

    Tim,

    It isn't quite clear to me whether you are migrating users from existing (local) accounts to network accounts or creating entirely new network accounts. The migration route from an existing local account to a new Lion Server network account didn't work for me and I got the same error message as you do (I gave up since).

     

     

    What worked for me is the following is creating entirely new network accounts as follows:

    1. Ensure the Users folder on the server is enabled for Home directories:
      grab-users.png
    2. In Server.app add a user via the Accounts/Users
      grab-test-user.png
    3. In Workgroup Manager I executed the following settings under Preferences:
      wgm-1-account creation.png
      wgm-2-rules-prefs.png
      wgm-3-rules-home.png

    ... I wasn't allowed to add any more images ... I will continue in a new post.

  • forappie Level 1 Level 1 (20 points)
    Currently Being Moderated
    Apr 8, 2012 4:21 AM (in response to forappie)

    (cont)

     

    wgm-4-rules-options.png

     

    Lastly I selected the afp://.../Users on the Accounts tab in WGM as the Home directory location:

    wgm-5-account.png

     

    After this I entered the 'testuser' network account for the first time directly on the server. Subsequently I accessed the testuser account from another Mac. I did have some problems the first time as it didn't get past Synchronisation but I clicked cancel and proceeded without a home directory. When I did get in I synced the account.

     

    Hope this helps.

     

    Although I can access network accounts created like this now from a Mac, these account give me still authentication problems when accessed via VPN or as account when I want to access the Profile Manager. Any help is highly appreciated (see my post https://discussions.apple.com/thread/3859651)

  • forappie Level 1 Level 1 (20 points)
    Currently Being Moderated
    Apr 20, 2012 3:35 PM (in response to Tim Chapman)

    Tim,

    I experimented a bit further and it appears I have to recreate my OD master as well as the network user accounts. See my separate post on this: https://discussions.apple.com/message/18131960#18131960

     

    Erik

1 2 Previous Next

Actions

More Like This

  • Retrieving data ...

Bookmarked By (1)

Legend

  • This solved my question - 10 points
  • This helped me - 5 points
This site contains user submitted content, comments and opinions and is for informational purposes only. Apple disclaims any and all liability for the acts, omissions and conduct of any third parties in connection with or related to your use of the site. All postings and use of the content on this site are subject to the Apple Support Communities Terms of Use.