Yosemite Server, Internet Accounts (Gmail, iCloud etc) & Keychain = BIG Problems
Quick summary
have been running an OX 10.x server for many years (although skipped Mavericks as I could never get that to work) on home based network for family use. Running on a Mac Mini C2D 2.66ghz 8GB Ram with (non-factory) Fusion Drive 500GB/128SSD
All client macs are Yosemite (except one iMac which is Mountain Lion) and the user accounts are network accounts i.e. HD's are stored on the server so anyone can log into any mac and get their account
So initially ran the server with ML and Yosemite clients perfectly fine and then upgraded the server to Yosemite and that appears to be fine for a while. Whilst I can't remember the specific I started to have problems with server so I time-machined back to ML and it was ok again.
I've Now tried a fresh install of Yosemite (i.e. formatted HDD) and rebuild OD and everyone's accounts manually (I need to ask in another day if there is a better to re-create a user account than logging into and manually copying their data (docs, music etc) from an external HDD ? ) and again that seemed ok EXCEPT for Internet Accounts and Mail.
So whilst initially setting up is ok i.e. you enter internet accounts credentials all fine and it appears to save it all ok and you can open Mail for example and it appears to be all fine (although I am seeing that the FIRST time you open mail for a user, it start ok but you get NO mail window. This is only rectified if you close Mail and re-open and then the mail window opens and everything seems ok - very odd
So whilst the account appears to be ok (and it is) when you log back in - Mail (and Internet passwords) have all been forgotten an you have manually re-enter the passwords, so naturally I looked up issues with keychain (on the forums) and indeed if you follow some of the instructions to delete & rebuild keychain / keychain repair you return the above paragraph - everything again appears to be ok i.e. internet accounts are ok (although same issue with the first open of Mail in that the window isn't displayed ) However if you again logout and log back in again your're back to System Preferences asking for passwords again -- and as before, its for very type of account (so not just limited to mail) - linkedin, twitter, iCloud, Gmail etc.
Obviously I can run a server where clients can;t log out for fear of screwing up the internet account passwords!
I've all the usual stuff - rebooted, repaired permissions, re-installed fresh copies of Yosemite on server and client; destroy and rebuilt OD; re-created user accounts (note the issue is for everyone not use one account)
So I've proven its an issue with keychain/internet accounts on the SERVER by testing the following scenarios
- Logging using different using different client Macs - Same issue
- Reinstalling a fresh copy of yosemite on client Mac - Same issue
- Created a LOCAL account on client mac i.e. not using server - NO issue and no need to re-enter client account passwords + Mail works first time ok without the need to run it twice before there main mail window appears
So it all points to issues with the server user accounts/keychain/permission type of thing
Appreciate any help or pointers or better still a fix!!
Thanks
Rob
