Newsroom Update

Beginning in May, a special Today at Apple series titled “Made for Business” will offer small business owners and entrepreneurs free opportunities to learn how Apple products and services can support their growth and success. Learn more >

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: lucki.luck
lucki.luck Author
User level: Level 1
9 points

OS X Server Update from 3.1 to 3.1.1 Open Directory does not working anymore

Hello,


I have upgrade my OS X Server 3.1 based on Mac OS X 10.9.2 to OS X Server 3.1.1.


After Migration the Open Directory does not work. I have tried to reboot my Mac OS X Server and to start Open Directory via OS X Server App. But Open Directory can't start again.


How can I solve that issue, because it is not able for any Directory user to use the services like mail and so on. But the services are still working.


In LOG of Open Directory I found following Errors.


I hope anybody can help me to get this under control.


Thanks in advance for your support


Sebastian


2014-03-29 09:43:28.094903 CET - opendirectoryd (build 339.90.1) launched...

2014-03-29 09:43:28.174678 CET - Logging level limit changed to 'error'

2014-03-29 09:43:28.179750 CET - Initialize trigger support

2014-03-29 09:43:28.215443 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/SystemCache.bundle'

2014-03-29 09:43:32.264682 CET - Registered node with name '/Active Directory' as hidden

2014-03-29 09:43:32.264997 CET - Registered node with name '/Configure' as hidden

2014-03-29 09:43:32.265352 CET - Discovered configuration for node name '/Contacts' at path '/Library/Preferences/OpenDirectory/Configurations//Contacts.plist'

2014-03-29 09:43:32.265414 CET - Registered node with name '/Contacts'

2014-03-29 09:43:32.265836 CET - Registered node with name '/LDAPv3' as hidden

2014-03-29 09:43:32.267295 CET - Registered node with name '/Local' as hidden

2014-03-29 09:43:32.268052 CET - Registered node with name '/NIS' as hidden

2014-03-29 09:43:32.268383 CET - Discovered configuration for node name '/Search' at path '/Library/Preferences/OpenDirectory/Configurations//Search.plist'

2014-03-29 09:43:32.268426 CET - Registered node with name '/Search'

2014-03-29 09:43:32.873348 CET - Discovered configuration for node name '/LDAPv3/127.0.0.1' at path '/Library/Preferences/OpenDirectory/Configurations/LDAPv3/127.0.0.1.plist'

2014-03-29 09:43:32.873425 CET - Registered subnode with name '/LDAPv3/127.0.0.1'

2014-03-29 09:43:32.874699 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/legacy.bundle'

2014-03-29 09:43:32.876602 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/search.bundle'

2014-03-29 09:43:32.880555 CET - '/Search' has registered, loading additional services

2014-03-29 09:43:32.880590 CET - Initialize augmentation support

2014-03-29 09:43:32.884508 CET - Successfully registered for Kernel identity service requests

2014-03-29 09:43:32.884546 CET - Adjusting kernel ID cache (100 -> 250) and membership cache (100 -> 500)

2014-03-29 09:43:32.901749 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/PlistFile.bundle'

2014-03-29 09:43:32.904570 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/FDESupport.bundle'

2014-03-29 09:43:32.908981 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/AppleID.bundle'

2014-03-29 09:43:32.921621 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/ConfigurationProfiles.bundle'

2014-03-29 09:43:32.923053 CET - Registered subnode with name '/Local/Default'

2014-03-29 09:43:33.024093 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/ldap.bundle'

2014-03-29 09:43:33.036491 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/AppleODClientLDAP.bundle'

2014-03-29 09:43:33.039914 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/AppleODClientPWS.bundle'

2014-03-29 09:43:45.822685 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/configure.bundle'

2014-03-29 09:43:45.824095 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/keychain.bundle'

2014-03-29 09:47:36.543847 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/ActiveDirectory.bundle'

Mar 29 10:02:46 server2 com.apple.launchd[1] (org.openldap.slapd[2157]): Exited with code: 1

Mar 29 10:02:46 server2 com.apple.launchd[1] (org.openldap.slapd): Throttling respawn: Will start in 7 seconds

Mar 29 10:02:46 server devicemgrd[186]: NSURLConnection/CFURLConnection HTTP load failed (kCFStreamErrorDomainSSL, -9843)

Mar 29 10:02:49 server xscertd-helper[2165]: ldap_search_ext_s returned -1 - Can't contact LDAP server when searching for bdb suffix, exiting

Mar 29 10:02:49 server2 com.apple.launchd[1] (com.apple.xscertd-helper[2165]): Exited with code: 1

Mar 29 10:02:49 server2 com.apple.launchd[1] (com.apple.xscertd-helper): Throttling respawn: Will start in 10 seconds

Mar 29 10:02:50 server PasswordService[2166]: -[PasswordServerPrefsObject getSearchBase]: Unable to locate search base: -1 Can't contact LDAP server

Mar 29 10:02:50 server PasswordService[2166]: -[PasswordServerPrefsObject loadXMLData]: Unable to locate passwordserver config record's plist attribute: -1 Can't contact LDAP server

Mar 29 10:02:50 server PasswordService[2166]: -[PasswordServerPrefsObject getSearchBase]: Unable to locate search base: -1 Can't contact LDAP server

Mar 29 10:02:50 server PasswordService[2166]: -[PasswordServerPrefsObject saveXMLData]: ldap_modify_ext_s of the passwordserver config record's plist attribute: -1 Can't contact LDAP server

Mar 29 10:02:50 server PasswordService[2166]: int pwsf_GetPublicKey(char *): ldap_search_ext_s cn=authdata for Public Key returned -1

Mar 29 10:02:50 server2 com.apple.launchd[1] (com.apple.PasswordService[2166]): Exited with code: 1

Mar 29 10:02:50 server2 com.apple.launchd[1] (com.apple.PasswordService): Throttling respawn: Will start in 10 seconds

Mar 29 10:02:51 server devicemgrd[186]: NSURLConnection/CFURLConnection HTTP load failed (kCFStreamErrorDomainSSL, -9843)

Mar 29 10:02:51 server xscertd[464]: Failed sending LookupCRLByCARecordName command to com.apple.xscertd.helper: The operation couldn\u2019t be completed. (com.apple.certificateserver error 42005.)

Mar 29 10:02:52 server com.apple.time[635]: Interval maximum value is 946100000 seconds (specified value: 9223372036854775807).

MAC MINI SERVER (LATE 2012), OS X Server

Posted on Mar 29, 2014 2:23 AM

Reply
1 reply
User profile for user: Linc Davis
Linc Davis
User level: Level 10
209,547 points

Mar 29, 2014 8:21 AM in response to lucki.luck

Many, if not most, OD problems can be resolved by taking the following steps. Test after each one, and back up all data before making any changes.

1. The OD master must have a static IP address on the local network, not a dynamic address.

2. You must have a working DNS service. Verify that the master's hostname matches its domain name by running the shell command

sudo changeip -checkhostname

The name must not be in the ".local" top-level domain, which is reserved for Bonjour.

3. The primary DNS server used by the master must be 127.0.0.1 (that is, itself) unless you're using another server for internal DNS. The only DNS server set on the clients should be the internal one, which they should get from DHCP if applicable.

4. Follow these instructions to rebuild the Kerberos configuration on the master.

5. If you use authenticated binding, check the validity of the master's certificate. The common name must match the hostname and domain name. Deselecting and then reselecting the certificate in Server.app has been reported to have an effect in some cases.

6. Unbind and then rebind the clients in the Users & Groups preference pane. Use the fully-qualified domain name of the master.

7. Reboot the master and the clients.

8. Don't log in to the server with a network user's account.

9. Export all OD users, delete them, turn off OD, turn it back on, and import. Ensure that the UID's are in the 1001+ range.

Reply

OS X Server Update from 3.1 to 3.1.1 Open Directory does not working anymore

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up