Q: Clients Mac logs in after restart with wrong user name
-
Aug 21, 2014 12:50 PMby Strontium90,Well, I will admit, you have discovered a function that I have not yet seen in the field. Mavericks Server is very capable of providing the functionality that you desire. The normal process for making this happen is to do the following:
Server:
• Build the server with foundation services like DNS (unless you already have it in place elsewhere)
• Configure OD
• Create users and groups
• Decide if you are going Profile Manager or MCX for device management
Workstations
• Create an admin account that is consistent across all machines
• Bind the machines to OD
• If using Profile Manager, enroll the device
• If using Profile Manager, push a mobility profile
• If using MCX, define a Mobility profile
• Login using domain credentials
By using this strategy, you bypass the need to auth on the machines. Kerberos takes over and you achieve single sign on.
This is a highly truncated process. But if you are just handing out machines with a bunch of 501 accounts on them and then users are auth'ing to the server with OD credentials, you are really missing out on the management and consolidation features of OS X Server.
-
Aug 21, 2014 1:34 PMby almute,Hi,
I'm not sure wether I understand what you mean.
My server is configured using DNS und OD. There are users and groups with special configuration.
I don't use Profile Manager for my Macs and there is no need to configure all Macs using server - there are only 4 machines.
All is working fine - mail server etc. - and AFP when logged in with the correct user.
If it is not possible to mount the volumes without entering name and password, this will be OK.
But it is not OK that the Macs login using a wrong user. If we then start working on a file on server volumes the file can't be saved. And this is a very big problem.
So, I'm primarily looking for a solution to avoid the wrong automatic login. This will take place even if I try to login manually and there is no alias of any server volume in start object!
So, I hope someone has a solution.
-
Mar 11, 2016 2:02 PMby susanelyon,I had this issue, but the response from Strontium90, sparked a new idea for me. I'd deleted the keychain to the server, but keychain did have the main admin username info that I use to login to the App store to update software on a new Mac before I turn it over to an employee--in this case a new employee. That's the same login I use for the server admin. I deleted ALL instances in the keychain of use of that user and was able to use Go to Server and get a new credentials box so I could login as the new user. Since it was a new computer I'd only logged into the App Store, so it has to be some convenient feature that backfired with my use of this setup shortcut.
