Unable to login to local network users from server

Open up the Server app's Users section and right click the user, choose Edit User... and see if the Log in-box is checked...

this seems to be a common issue there are several posts exactly like yours, we have been testing 10.8 server and have also found that while 10.7 clients can log on without issue, 10.8 clients cannot log in at all.

and its not an issue with the user as far as I can tell, because we have tried the same user from both a 10.7 mac and a 10.8 mac

I'm stuck too. Just upgraded to mountain lion server 10.8.1 and while I can login to the machine as the local user, I cannot login as a network user.

try re-installing ML on the users mac, you won't lose anything and it fixed it for me

I tried to reinstall, then this morning I upgraded to 10.8.2, but no go. In the system preferences login options, it is set up to see Local Server, which is the server I'm trying to log into, and if I go to edit this I can see all the user accounts in the LDAP setup. So I'm boggled. Any ideas?

This is causing me an issue too. I can't seem to be able to login locally to my MtLion server with a local network account. Does anyone have an answer to this issue? Do you somehow have to "register" the server itself to its own Open Directory?

Kirk

It works on mine, so is not a universal problem.

Check that the network accounts /LDAPv3/127.0.0.1

is listed in Search Policy>Authentication and not just /Local/Default.

I have the loopback 127.0.0.1 configured in the Search Authentication Policy, but no luck with Network User accounts on the server machine. The login window of the server machine claims "Network Users unavailable," even though the Open Directory is bound.

Apple Support in September 2012 claimed it isn't possible to login a Network User on the server machine under Mountain Lion.

Following advice found elsewhere, I found half a solution: In Workgroup Manager, select the appropriate computer or computer group and change Preferences:Login to "Show network users".

Now I get a login window on the server machine that *shows* my network user accounts, but they still can't login.

You can find similar discussion here:

https://discussions.apple.com/thread/4345810?start=0&tstart=0

What does the actual result look like now when you attempt a network user login? Shaking window? Error message?

I found to get the Network user to show up as a local login, you have to enable mobile home directories.

I had posted this on another thread:

I have set up ML server and Workgroup Manager; DNS seems fine when I check with the "changeip -hostname" or "dig -x" command. However, if I set up a user with either server utility or workgroup manager it won't create the home directory; I have gone into the user preferences section on workgroup manager and configure mobility, login and network preferences but no joy.

If I attemt to login as a newly created user from the server or a client I get the message "You are unable to log in to the user account xxxx at this time. Logging into the account failed becuase an error occurred."

Initially I suspected DNS but as I cannot log in from the server I suspect it may be something else. Any ideas or advice would be welcome.

Output from Terminal:

macmini:~ ServerAdmin$ sudo changeip -checkhostname

Password:

Primary address = 10.0.1.10

Current HostName = server.xxxxxx..private

DNS HostName = server.xxxxxx.private

The names match. There is nothing to change.

dirserv:success = "success"

macmini:~ ServerAdmin$ dig -x server.xxxxx..private

; <<>> DiG 9.8.3-P1 <<>> -x server.xxxxx..private

;; global options: +cmd

;; Got answer:

;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45399

;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:

;private.xxxxx.server.in-addr.arpa. IN PTR

;; AUTHORITY SECTION:

in-addr.arpa. 3600 IN SOA b.in-addr-servers.arpa. nstld.iana.org. 2011027974 1800 900 604800 3600

;; Query time: 345 msec

;; SERVER: 127.0.0.1#53(127.0.0.1)

;; WHEN: Tue Mar 19 18:11:21 2013

;; MSG SIZE rcvd: 123

Can now log in locally but my host name keeps reverting to a host name for the Internet rather than a host name for a private network no matter how many time sI try to change it!

The solution was incredibly simple for me, but I only found it after a responder in another thread mentioned opening the Users & Groups settings panel (in the OS System Prefs, not in server) and rebinding to OD server under Login Options.

That was not the solution for me, but under Login Options I discovered a previously unnoticed pref for "Allow network users to login at login window." I had this option set (apparently by default) to "Only these network users:" but with an empty list. Adding my users to the list made it work perfectly.

All above mentioned settings i have set up, but network users still could not login (shaking window). Only thing what helped was to edit user account -> Advanced options/Login shell and to select ANY of possible shells (/bin/bash is typical) - default setting for new network user account is always /usr/bin/false - which is not any existing shell in MacOS, but phrase what prohibits to login