EricNaumann
Level 1 (0 points)

Q: Network homes win2012server no write access to keychain

We are using win 2012 R2 server for our network based home directories (smb). The home folders are stored and used directly on the server.

 

Although the user for example "eric" has all permissions on his complete homefolde on the server inclusive ~/Library/keychains/login.keychain, no entries are stored. When adding an entry manually in the keychain "login" the following message appears: An error has occured. Unable to add an item to the current keychain. Unix[Permission denied]".

 

Keychain is open, Keychain first aid does not work. Creating a new keychain or deleting the keychain-file does not help. The system creates temporary keychain-files like "login.keychain.sb-cafdf3aa-ceg1c".

 

We are not sure, if the following belongs to the same problem:

When creating a file with text edit, the system also creates 2 files for example "test.rtf" and "test.rtf.sb-cafdf3aa-tk8f3m" when changing the file and storing again.

 

Help is highly appreciated :-)

OS X Mountain Lion (10.8.4)

Posted on May 8, 2014 4:55 AM

Close
EricNaumann

Q: Network homes win2012server no write access to keychain

  • All replies
  • Helpful answers

  • by EricNaumann,

    EricNaumann EricNaumann May 21, 2014 7:11 AM in response to EricNaumann
    Level 1 (0 points)
    May 21, 2014 7:11 AM in response to EricNaumann

    Solved it on my own. The permissions of the (windows server) share "macusers" was restricted. Although the users have all permissions on their homefolders, the sharing permissions restricted the effictive homefolder permissions. I saw this only by viewing the "effective permissions" for a homefolder and the correspondig user on the windows server. I changed the sharing permissions of the shared folder "macusers" to "full control for everyone" (and restricted the access in the security tab of the shared folder).

  • by jiri.lorenz,

    jiri.lorenz jiri.lorenz May 13, 2016 12:23 AM in response to EricNaumann
    Level 1 (8 points)
    Mac OS X
    May 13, 2016 12:23 AM in response to EricNaumann

    Hallo Eric,

     

    now i am in the sea situation, but i can not find solution how to setup permission for my Windows Share. I am switching from Mac OS X Server to Active Directory Domain. Please can you help me with your experience. I try to find some tutorial how to setup AD Domain permisions for Mac User Home and nothing is working for me.

     

    Many thanks in advance

     

     

    Jiri