User cannot login after switching network home folder from AFP to SMB
I'm running Yosemite Server 4.1.5 in a home scenario. I set up file share to be used as a home folder. Initially the share was set to use as home folder via AFP - no encryption. I set up a couple of test accounts to use this share as a home folder. Everything worked fine. Out of curiosity I enabled the encryption setting on the share. This disabled the AFP checkbox and switched the home folder protocol to SMB.
The users that were assigned to this home folder were logged off at the time. When attempting to log in after this change - the users that use this share for home folders are no longer able to log in. A message box pops up indicating that the login is not allowed and that an error has occurred. The message is very vague. Rebooting the client (as well as the server) - does not resolve this issue. After this error occurs - other network users (those that use a different network home folder) might not be able to log in and might receive the same message.
After some experimentation - I discovered that I can correct the problem with the following steps: in the users pane of server app - select the users (one at a time) that are using the home folder that was set to encrypted mode. Change the home folder setting to Local Only - or to another home folder share. Save the changes. Edit the user again - and set the home folder back to using the share that was changed - then log in on client mac as that user. The login succeeds and the problem with the other users (using a different home folder) also corrects itself. Is this a bug - or am I missing something?
In my scenario - there are only a handful of users and they are all for testing purposes. What if I had 200 users and 100 of them were using the share that I just switched to use an encrypted connection? I would have to find all of the users that were using the share - and do the work around that I described above - for each user. Can anybody shed some light on this? I realize that typically one would not be changing the share settings on a regular basis - but what if were really necessary to switch the protocol and encryption settings - then you are faced with this problem. Also - I wanted to point out that the problem is not so much caused by enabling/disabling an encrypted connection - rather it seems to occur when I change the "share as home folder over AFP/SMB" setting back and forth between AFP and SMB - regardless of whether the "use encrypted connection" checkbox is checked.
In the 200 user scenario (theoretical) - how would I go about searching to find which users are using the share in question?
~Scott
MAC MINI SERVER (LATE 2012), OS X Server