Weird Authentication Issues - Suddenly
I've been running a SLS for over a year very nicely. A month or so ago I changed the FQDN and it's been running very happily and been very stable since then. It runs iCal, iChat, AFP shares and Mail. It's also the DNS and OD server for the network. I always access the server using either Server Admin or VNC from a client machine. It's a Mac Mini server.
I have only made a very small number of changes and one of them has delivered extremely screwy authentication behaviour.
- Used the 10.6.8 supplemental update
- Stored the Lion install app on a network share
- Upgraded _clients_ only to LIon
- Downloaded and began using the 10.7 server admin, and WGM app for the _clients_ only
- Pointed a test Lion Server at the DNS and OD
One of those changes has caused the following set of issues:
- I can _only_ log into VNC using a local (to the server) admin account
- I can _only_ log into the server at the login pane using an OD _user_ account - admin accounts either local or OD will not authenticate
- I can log in with Server Admin using any Admin account
- I can't of course get into anything meaningful in the Console
- I can only repair permissions on the boot drive, I can't repair permissions on the other internal drive and of the two external drives I can only repair permissions on 1 of them. I cannot un-mount those drives and I can't repair them. There are no shares active on those drives
What is working is everything else on the server!
This is NOT a DNS issue. The DNS has been and continues to operate faultlessly.
Any suggestions are most welcome. This is a real pain and I don't want to have to blow away the server and start again.