Repairing OD Master/replica tress.

Question

Repairing OD Master/replica tress.

We had an issue with our OD Master and it's 11 replicas.

Apple Support said:

1. Export Users, User Groups, Computers and Computer Groups from the OD Master.
2. Downgrade the Replicas to stand-alone.
3. Downgrade the Master to stand-alone.
4. Promote the OD back to a OD Master.
5. Import the Users, User Groups, Computers and Computer Groups from the export files.
6. Promote the previous replicas from stand-alone to replicas again.

Did all of that, and the import went fine.

However: now all the Home Directory servers are not providing home directory information back to the OD Master.

The Home Directory servers are looking at the local replica for authentication.

The OD Master lists the replicas in it's logs.

And, of course, students/staff will be back Monday and will want to get to their home directories.

XServe, Mac OS X (10.6.3)

Posted on Sep 25, 2010 8:28 AM

Reply

Answer 1

Sep 25, 2010 11:37 AM in response to James Hagemann1

James Hagemann1 wrote:
However: now all the Home Directory servers are not providing home directory information back to the OD Master.

I assume you mean that the home directory sharepoints are not properly set up to automount in the recreated domain? If so, the solution is to use Server Admin to turn off automointing for the home share points (it'll be stuck in a semi-on state, and you need to turn it fully off). Save that change, then turn automounting back on, and save again.

The Home Directory servers are looking at the local replica for authentication.

This shouldn't be a problem.

The OD Master lists the replicas in it's logs.

I'm not sure what you mean by this?

Reply

Answer 2

Sep 25, 2010 6:26 PM in response to Gordon Davisson

Further information:

1. Degrade all 11 replicas to stand-alone.
2. Degrade OD Master to stand-alone.
3. Reboot OD Master
4. Upgrade OD master to an actual OD Master.
5. Upgrade remote site to OD Replica.
6. Go to Home Directory server of the remote site and log in to Workgroup Manager using new OD Master Directory Admin and see "old" users.

I did not do any import into the OD Master, so as a replica it should have no User entries and as a home directory server getting it's information for the local replica it should show no users.

But it does.

Reply

Answer 3

Sep 26, 2010 11:41 AM in response to James Hagemann1

Recovering from a corrupted Open Directory Master/Replica system.

1. Export from ODM 'Users' (except your directory admin), 'Groups', 'Computers', 'Computer Groups'.
2. Degrade the OD Replicas, one at a time, to stand-alone.
3. Degrade the OD Master to stand-alone.
4. Restart the OD Master server.
5. Upgrade the OD Master from Stand-alone to OD Master.
6. Upgrade the OD Replicas, one at a time, from Stand-alone to OD Replica.

Rebind remote server to appropriate authentication server (OD Replica)

1. At the server, go to 'System Preferences' - 'Accounts' and unlock the panel with the local server admin login.
2. Click 'Login Options'.
3. Click the 'Edit' button next to 'Network Account Server'.
4. Click 'Open Directory Utility'.
5. Highlight 'LDAPv3' then click the pencil icon.
6. Highlight the configuration and click 'Delete', then click 'Okay' to unbind.
7. Enter the OD Directory Administrator name and password. (This will fail, but it is okay.)
8. Click 'Ok' to forcibly remove the configuration.
9. Click 'Ok'.
10. WHile LPADv3 is still highlighted, click the pencil icon again.
11. Click 'New'.
12. Enter the fully qualified name of the local OD Replica and click 'Continue'.
13. Enter the fully qualified name of the local server, the OD Directory Administrator Login and Password. Click 'Continue'.
14. Enter the local server administrator login and password.
15. Click 'Overwrite'.
16. Click 'Ok', then click 'Ok'. Quit Directory Utility. Close 'System Preferences'.

Reconnecting Home Directory Automounts.

1. At the local server, start 'Server Manager' and select 'File Sharing'.
2. Click 'Share Points' and select the Home Directory item.
3. Click the 'Share Point' option in the lower window.
4. Deslect 'Enable Automount'. Enter the OD Master Directory Administrator Login and Password and click 'Ok'.
5. Click 'Save'.
6. Select 'Enable Automount'. Ensure that the next window is pointing to the local OD Replica and click 'Ok'.
7. Click 'Save'. After clicking 'Save' you can edit the 'Protocol Options' to your preferences.

Restablish the users, groups, computers and computer groups.

1. Open 'Workgroup Manager' on the OD Master.
2. Import Users
3. Import User Groups
4. Import Computers. When importing Computers ensure that the 'ignore record' is selected.
5. Import Computer Groups.

After users have been imported, you can mass assigne them to their appropriate Home Directory location.

Reply