Dear Stefan
Thank you for your feedback.
Well I try to explain step by step what I did until now.
1.) Install SLS 10.6.0 and do set configure as "Configure manually"
2.) Update to SLS 10.6.2
3.) Check DNS with checkip -checkhostname and with nslookup
--> Both where successful
From now on everything is done in/with Server-Admin
4.) Add AFP to the list of services and start AFP
5.) Set access identification to Kerberos
6.) Add OpenDirectory and make it a Directory-Master
7.) In Open Directory on TAB Settings under General under Replica Status I see next to "Add Kerberos Entry" "Kerberize".
8.) Hit the button "Kerberize" and try to login one after an other with "diradmin", "ladmin", "root", all without success.
9.) On my local maschine, I open Ticket Viewer and try to get a ticket for "diradmn", "ladmin" and "root". All, but without "ladmin" do get a ticket from the server.
--> That "ladmin" doesn't get a ticket is OK and normal and should be that way, as it isn't a part of the OD user database.
10.) With Workgroup Manager, add a new user "Office".
11.) Set the home folder to "afp://server.private/Users".
12.) Create Home Directory for user "Office".
13.) In System Preference, I did check if the server is listed in the in the login options.
--> It is listed
14.) From my workstation, I try to Connect to Server with user "Office".
--> Successful
15.) Open Server Preferences and check the settings for services
--> On the start screen, NO service is shown as running!!!
16.) Check again with Server Admin and I see, that AFP, DNS and OD is running
17.) Back in Server Preferences I go to the list of users and select user "Office"
18.) Under the Services Tab, ALL (even NOT running Services) are marked as activated for this user but are grayed out!!
19.) I did try Article
http://support.apple.com/kb/HT1194 an got the following output.
server:~ ladmin$ sudo mkpassdb -dump
signature: pwfi
version: 1
entrySize: 4360
sequenceNumber: 4
numberOfSlotsCurrentlyInFile: 512
deepestSlotUsed: 4
deepestSlotUsedByThisServer: 4
Shutdown State: 0
Access Features:
usingHistory=0 canModifyPasswordforSelf=1 usingExpirationDate=0 usingHardExpirationDate=0 requiresAlpha=0 requiresNumeric=0 expirationDateGMT=18446744073709551615 hardExpireDateGMT=18446744073709551615 maxMinutesUntilChangePassword=0 maxMinutesUntilDisabled=0 maxMinutesOfNonUse=0 maxFailedLoginAttempts=0 minChars=0 maxChars=0 passwordCannotBeName=0 requiresMixedCase=0 requiresSymbol=0 newPasswordRequired=0 minutesUntilFailedLoginReset=0 notGuessablePattern=0
last modified: 02/08/2010 18:52:40
Weak Authentication Methods:
SMB-NT
SMB-LAN-MANAGER
CRYPT
APOP
Public Key: 1024 35 1615383727705902906299720390420461221110053827847319995884930279961506663994841 80399378300406985450072374045536706802861470618338113755974878877939533648233375 30667924408551722228959303664286855578001621154379412278113580367017232043193465 6123979573910677308764724482356408003556907310943439381252247799919501 root@server.private
Replica Name: (Parent)
slot 0001: 0x00000000000000000000000000000001 diradmin 02/08/2010 07:00:50 PM
slot 0002: 0x4b704f686b8b45670000000200000002 root 02/08/2010 06:53:02 PM
slot 0003: 0x4b704f686b8b45670000000300000003 server.private$ 02/08/2010 06:55:13 PM
slot 0004: 0x4b704f985b761c270000000400000004 vpn_d5bae8a17d91 02/08/2010 06:53:28 PM
What it is looking strange is, that the entry of slot 0001 does show only zeros until the last digit which is a one. All other slots do have more equivalent numbers and letters.
I really don't know what's going on here, but more and more I believe, that SLS is NOT FINISHED YET! It behaves like a Beta or even Alpha Software and not a Release Software.
Does someone from Apple read in this group?
Please do a statement to this writing.
If anyone has some suggestions, I'm happy to try them out.
Kind regards
Thomas Thaler
