Q: Binding Mavericks Clients to Maverick Server fail diradmin authentication
I've having a problem binding my clients to my OD server with authentication.
Factoids:
Clients OS: 10.9.4
Server OS: 10.9.4, Server 3.1.2
Server is DNS also and is working and seems check out.
I have confirmed that the diradmin's password is correct via a terminal login session.
I can bind clients to the OD anonymously.
Problem:
I can bind clients to the OD anonymously, but not when trying to authenticate using the diradmin's credentials. I get the error: "Authentication failed. Please check the name and password and try again."
It gets all the way to the "Binding..." phase before it fails:
Failed:
What am i doing wrong here...?
Results of dig -x 192.168.1.99:
; <<>> DiG 9.8.3-P1 <<>> -x 192.168.1.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 32764
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 2
;; QUESTION SECTION:
;99.1.168.192.in-addr.arpa. IN PTR
;; ANSWER SECTION:
99.1.168.192.in-addr.arpa. 10800 IN PTR server1.***.local.
;; AUTHORITY SECTION:
1.168.192.in-addr.arpa. 10800 IN NS server1.***.local.
;; ADDITIONAL SECTION:
server1.***.local. 10800 IN A 192.168.1.99
server1.***.local. 10800 IN A 192.168.1.100
;; Query time: 3 msec
;; SERVER: 192.168.1.99#53(192.168.1.99)
;; WHEN: Thu Aug 7 15:39:23 2014
;; MSG SIZE rcvd: 120
Posted on Aug 7, 2014 1:01 PM
.local is different than a real domain-name, and is not neutral. Your domain should not use a name that ends in .local, and it should not look up to something that ends in .local
Posted on Aug 7, 2014 3:06 PM

