Newsroom Update
Beginning in May, a special Today at Apple series titled “Made for Business” will offer small business owners and entrepreneurs free opportunities to learn how Apple products and services can support their growth and success. Learn more >
Beginning in May, a special Today at Apple series titled “Made for Business” will offer small business owners and entrepreneurs free opportunities to learn how Apple products and services can support their growth and success. Learn more >
We have 10 imacs, 6 mbp's (none mobile- all tied to the network via cable). All running 10.6.8.
OD server is 10.6.8. Computers are all trusted bound to the server. It's been working for about 1 year.
However, newly created users are unable to log on *sometimes* to the mbp's. Seems random.
Can you suggest what to look for, and what logs (and where those logs are)?
Thanks much,
Jason
iMac, Mac OS X (10.6.8), i5 with Thunderbolt
I would access Workgroup manager and check if there are any anomalies from the older to the newer users.
Do you have to restart or just wait for the user to be able to log in again?
You are referring to network accounts correct?
Sam4Pres, I tried finding differences. One difference is administrators have no problems any time. Non-admins do, sometimes. If I promote the user to administrators, sometimes it helps, sometimes not.
Sounds to me like a OD problem, like corruption or something.
I need to be able to read logs, can someone help me find the appropriate logs to read?
Thanks!
Go to terminal and type in command: last it will show you the log in info
If you believe this is an OD issue, then enable OD debug logging. On server and/or client, do this:
sudo killall -USR1 OpenDirectory
This will create a a new log file in /Library/Logs/DirectoryService called DirectoryService.debug.log. Beware, this file can be rather large if allowed to continue to collect data. Try to isolate an occurrence as much as possible to limit the amount of data coming in.
Another good method is to enable ssh on a problem workstation. Then from a control device SSH into the machine that is failing to permit login and start watching system log, top, and if needed the DS debug log. Use multiple ssh sessions to view everything you are trying to see.
Note on DS debug. Apple changed the way to do this after 10.6. For future versions you can use the odutil command to change logging levels.
users can't log into some systems, sometimes
