Q: Can't bind 10.9 clients to OSX Server 3.0.1
I recently updated my Apple Server (10.8 running Server 2.2.2) to Mavericks (10.9 with Server 3.0.1).
After updating, I was unable to join clients. No big deal, I knew after the update that some of the settings wouldn't match from my previous configuration. I rebuilt my DNS settings and verified them through sudo changeip -checkhostname. I even had to recreate my Open Directory (not a big deal, I only had a couple of clients attached).
After performing those steps, I started to rebind clients to my server. The problem that I am experiencing relates specifically to Mavericks (10.9) clients. For some reason, they never bind. The communicate, they pull the certificate and they request credentials (I require authorization to bind to my server), after I pass the proper credentials I ALWAYS get an error from 10.9 clients. "Unable to add server. Authentication server refused operation because the current credentials are not authorized for the requested operation. (5101)" The credentials that I am using are the same as I use to bind every other client (diradmin account).
When I do not require authentication for binding, the 10.9 clients will bind, but then don't show up in Workgroup Manager. Either way, I want to require binding for all clients. Anyone else experience issues similar to this?
Any help is appreciated.
Mac mini, OS X Mavericks (10.9), Server 3.0.1
Posted on Dec 13, 2013 9:18 AM
Did you find a solution yet?
Here's what to do.
On the local machine change the DNS to the servers IP if DNS is enabled.
Then try to bind again.
Or refer to this article.
https://discussions.apple.com/message/23849911#23849911
I had the same problem but this did the trick for me!
Posted on Dec 16, 2013 10:19 AM