Jamie Curmi
Level 2 (229 points)

Q: Can't create new users or change passwords after update to Server 4.1

Hi Everyone!

 

Today I've updated to Server 4.1 (from 4.0).  Everything seems to be working fine, but suddenly I can no longer update the passwords of users, or add new users.

 

When I do, I get an error:

 

existing connection is not authenticated and the old password is not present: password change denied


Yet, existing users can log in to the wiki, for example, using their existing passwords.  So Open Directory seems to be working in some way.


Any ideas?


It is almost as if Open Directory is half working, as strange as that sounds.


Also, ftp seems to no longer accept the passwords of users, yet it seems to know the users exist.  Everything else is accepting passwords – mail, calendars, contacts, wiki, messages.


Anyone have any thoughts on causes, or fixes?  I'm hoping the fix isn't to wipe everything, or even wipe Open Directory, as I have over 30 users on the system and the CEO is going to be mighty upset if I have to get everyone resetting passwords and so on.


Any help appreciated.

Mac Pro, OS X Yosemite (10.10.3)

Posted on Apr 9, 2015 1:44 AM

Close
Jamie Curmi

Q: Can't create new users or change passwords after update to Server 4.1

  • All replies
  • Helpful answers

  • by Linc Davis,

    Linc Davis Linc Davis Apr 9, 2015 6:38 AM in response to Jamie Curmi
    Level 10 (207,995 points)
    Applications
    Apr 9, 2015 6:38 AM in response to Jamie Curmi

    Cannot create users in Server 3.0.1

    Can't create Local Network Users in Yosemite

  • by Jamie Curmi,

    Jamie Curmi Jamie Curmi Apr 9, 2015 2:35 PM in response to Linc Davis
    Level 2 (229 points)
    Apr 9, 2015 2:35 PM in response to Linc Davis

    Thanks, but every one of these involves people having to reset their passwords.

     

    Surely there must be a better solution?  Is this going to suddenly stop working again for another update?  Other people have had this problem in the past, so why is it happening?  Just seems very odd...

  • by CygnusX9,

    CygnusX9 CygnusX9 Apr 14, 2015 9:12 AM in response to Jamie Curmi
    Level 1 (0 points)
    Apr 14, 2015 9:12 AM in response to Jamie Curmi

    Perhaps this will help... If a network user can't be created after you upgrade or migrate to OS X Server - Apple Support

  • by minion003,

    minion003 minion003 Apr 15, 2015 4:02 AM in response to Linc Davis
    Level 1 (0 points)
    Apr 15, 2015 4:02 AM in response to Linc Davis

    Hi,

     

    We upgraded our company email server, which effectively runs our email, DNS, Open Directory with dozen users. Last night the system was upgrading from 10.10.2 to 10.10.3, which seemed rutine.

     

    The upgrade process hung while it was finishing the installation and didn’t finish. Upon reboot, it looked OK and needed to upgrade the OXS Server to 4.1 from the previous version. Which I proceeded and completed.

     

    Since then we have lost all of our users accounts and can’t access the email data. Tried to reboot from the backups and it seems that the somehow when booting from external backups 10.10.2, we get a message that the OXS Server is not compatible. Our backups are usually done using Carbon Copy Cloner. 

     

    Not sure what to do, help is greatly appreciated. While I can recreate the users, I don’t want to damage the email data.

     

    Many thanks,

    /Oliver

  • by Jamie Curmi,

    Jamie Curmi Jamie Curmi Apr 15, 2015 5:35 AM in response to minion003
    Level 2 (229 points)
    Apr 15, 2015 5:35 AM in response to minion003

    OS X Server 4.1 requires OS X 10.10.3, so when you boot from 10.10.2 you will not be able to run Server.

     

    You could try restoring to 10.10.2, as you did, then upgrade that restore to 10.10.3, and if it succeeds this time, your user accounts may all be intact, and you can run Server with it.

     

    This doesn't solve my problem however, as we had no problem with the upgrade – we just have this problem with OD being upset in someway.  I have still not done anything with it, as I am hoping someone will come up with another solution that won't involve me having to redo all the staff's passwords...

  • by Robert Crowther,

    Robert Crowther Robert Crowther Apr 15, 2015 6:17 AM in response to Jamie Curmi
    Level 1 (0 points)
    Apr 15, 2015 6:17 AM in response to Jamie Curmi

    Jamie,

     

    Try following the Apple kbase article cited above. It might keep you from having to recreate all your users.

  • by Jamie Curmi,

    Jamie Curmi Jamie Curmi Apr 15, 2015 6:18 AM in response to Robert Crowther
    Level 2 (229 points)
    Apr 15, 2015 6:18 AM in response to Robert Crowther

    Thanks Robert. I'll give it a go this weekend when everyone is away from the office.

     

    Much appreciated.

  • by minion003,

    minion003 minion003 Apr 15, 2015 2:48 PM in response to Jamie Curmi
    Level 1 (0 points)
    Apr 15, 2015 2:48 PM in response to Jamie Curmi

    Would it be possible to use the migration tool, to migrate the data (email, OD, DNS, etc) from the crusted mac to another?

    The thought is to setup another Mac from ground up, and transfer the data.

     

    Is OSX migration tool reliable enough?

  • by CygnusX9,

    CygnusX9 CygnusX9 Apr 15, 2015 6:23 PM in response to minion003
    Level 1 (0 points)
    Apr 15, 2015 6:23 PM in response to minion003

    You said your upgrade to 10.10.3 hung before it finished. Why not try uninstalling Server.app by placing it is the trash and then download the 10.10.3 installer and reinstall 10.10.3. This won't hurt anything. When it is finished your can drag Server.app out of the trash and back into the Applications folder. Launch it and let it run through it's little set up. OD actually lives in 10.10.3 and not in Server.app. Server.app just provides the tools to manipulate it.

     

    Regards,

     

    R

  • by minion003,

    minion003 minion003 Apr 16, 2015 5:05 AM in response to CygnusX9
    Level 1 (0 points)
    Apr 16, 2015 5:05 AM in response to CygnusX9

    Interesting suggestion, I didn't think reinstalling the OS. I will attempt that this weekend, when the users away and the email is down.

    We've managed to get our backup (10.10.2) installed on another Mac and using that as present as an interim solution.

     

    Many thanks

     

    /Oliver

  • by Jamie Curmi,

    Jamie Curmi Jamie Curmi Jul 10, 2015 1:14 AM in response to Jamie Curmi
    Level 2 (229 points)
    Jul 10, 2015 1:14 AM in response to Jamie Curmi

    I haven't replied for a while (I just realised).  I never found a solution here.

     

    A helpful software engineer from the Apple server team tried to help, but he couldn't really solve the problem either.

     

    So I think the only solution is to delete the OD, and recreate it.  I have to try doing it without messing up everyone's mails, calendars etc.

     

    Any pointers?  Anyone ever done this?