User profile for user: Picoscope
Picoscope Author
User level: Level 1
22 points

"Server App: Operation was denied because the current credentials do not have the appropriate privileges."

Server App v 2.2.1, connecting to Mac Mini Server running 10.6.8 using DirAdmin credentials. Trying to create a new user returns:


Operation was denied because the current credentials do not have the appropriate privileges.

Have tried by connecting user other administrator login credentials and no luck.


Have tried a thorough uninstall and reinstall of the server app on the client machine. Also no luck.


Can create users via Workgroup Manager using the same credentials (diradmin, other administrative users).


No errors are showing up in system log, password service log, LDAP, kerberos.... I'm running out of logs to look at.


The server is bound to itself at 127.0.0.1 using diradmin credentials for authentication. DNS service for the server (in System Preferences/Network) points to 127.0.0.1. DNS records on the server are clean - proper NS record for this machine, host lookup and reverse lookup look good and changeip returns "nothing to change". I can connect, authenticate (with diradmin), browse and edit all LDAP directories via Directory Utility.


I've had problems with LDAP on this server recently that I thought had been resolved, but perhaps something is still lurking?


Thanks much for any useful ideas!


Cheers,


Paul Westfall

Network Administrator

Breitenbush Hot Springs

MAC MINI SERVER (LATE 2012), OS X Server, 10.8.5

Posted on Aug 26, 2014 2:13 PM

Reply
4 replies
User profile for user: stayd
stayd
User level: Level 1
8 points

Oct 2, 2016 2:50 PM in response to hemmes

It seems the history is repeating. Nowadays is October 2016 and I have run exactly the same issue, like hemmes described here 2 years ago hemmes with Yosemite and Server 4.


In my case it is freshly upgraded macOS Sierra with Server version 5.2. Server was actually updated to last its version before OS upgraded, but as Picoscope described in initial message, uninstalling Server.app does not have any influence on the issue.


I need and I could not add any new user to Open Directory.

What should I do ?

Reply
User profile for user: JMWA!
JMWA!
User level: Level 1
4 points

Dec 15, 2016 11:06 AM in response to stayd

I solved this problem, but of course the usual disclaimers apply -- this fixed my problem but may make your computer explode, etc. etc. etc. My error message was identical to OP's, in Sierra and Server 5.2 (fresh installation of both), and I couldn't create a new user or edit existing users.


The apparent issue for me was that somehow a duplicate of my admin account had been created that had the same ID/password as my actual account, but the Directory Utility entry was full of garbage (UID of "AAAAA-BBBBB-CCCCC" and so on).


Anyhow, what I did was:

- Open Directory Utility

--- Prefs -> Users & Groups -> Login Options

--- Click on the "Join" button next to Network Account Server.

--- Click "Open Directory Utility..." in the popover.

- Click on "Directory Editor" within Directory Utility.

- Find and delete the weird, useless duplicate.

- Restart computer for good measure.


Once the computer rebooted, I entered my admin ID/password into Server.app and could create/edit users again.

Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

"Server App: Operation was denied because the current credentials do not have the appropriate privileges."

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up