Mac OS X Lion Server :: AD Accounts Can No Longer Connect To AFP File Shares
Feb 22, 2012
I am running into an issue where AD users can no longer connect to AFP file shares. If you attempt to authenticate with one of our Lion server's local accounts, you connect without any issues, but if you put network credentials in then you get the window shake denial. This issue just came up this morning. I attempted unbinding and rebinding the machine, updating from 10.7.2 to 10.7.3, removing and re-adding share point permissions, turning file sharing off then on, and still no network account authentication.Â
how to get network credential authentication to AFP filesharing working again?
I am having difficulties connecting from iMac to Windows Home Server 2011 shares. First of all it takes so long time to discover the share in iMac, which it's called "mediaserver". After finding it I cannot connect and gives "Connection Failed: message. If I choose "Connect As.." option I wait some time and then pops out with an error:
"There was a problem connecting to the server "mediaserver". The server may not exist or it is unavailable at this time. Check the server name or IP address, check your network connection, and then try again."
If I try from Finder -> Go -> Connect to Server ... write in Server Address : smb://mediaserver it fails. But if I write the IP address, like: smb://192.168.1.42 it works after couple of tries. If I try now to Make an Alias for the share I get "The operation can't be completed. An unexpected error occurred (error code -8060)." I have updated to Mac OS X version 10.7.3.
The girlfriend and I are consolidating machines and want to try a software based approach instead of a plug and swap approach. My goal is to have only a Desktop + iPad and she have her MacBook. The issue is that we also want to keep it limited to one monitor, etc. on the desk but she is in grad school and will have need for the larger screen and keyboard. My question is can I set up her laptop to use a Mobile Account and assuming she logs off on that before going onto the Server, can she then log in to the Server desktop and use that Mobile Account locally there? So sometimes use the Mobile Account on the laptop, Sometimes on the Desktop. From my days managing a small network, this seems plausible but could also be fraught with problems.
I recently updated my Server running 10.7.0 to version 10.7.3 and single-sign-on no longer works for my users. The 10.7.3 Lion Server System is bound to our Active Directory Server running on Win2003 R2 Server. I tried un-binding and rebinding the system but.. no luck. When a user now tries to login to our shares via AFP with SSO credentials they recieve the message Â
I can run the id command from terminal on the OS X server and it is seeing AD users. Unfortunately, no one can log into the server shares via AFP with an AD user.Â
last month our Xserve G5 with Leopard Server which controlled user accounts in our computer labs died. We replaced it with a Mac mini server (that includes Lion Server) –by the way, this is the first server that I ever setup–.During initial configuration, the server was fully updated to Lion server 10.7.3, and stablished as an OD Master. I didn't import anything from the old server, so all accounts and groups and preferences and everything have been defined from scratch.Everything was working good until I finish the setup and try to connect from one of our Leopard client machines. I configure that machine with Directory Utility with settings from the server, and the server responds just fine, the client sets everything up automatically for authentication and contacts. Everything seems to be normal until I log out and try to connect with one of the network accounts.The account will not login, the login window just shakes and does nothing. Odd enough, the login window tells that network accounts are available (captures are in Spanish). When I login again as a local admin account, I check Directory Utility and when I look at the LDAP configuration, in the search & maps tab of the window, I find these two red registers (UserAuthenticationData and OLCLDIFConfig). I don't know if this is related to the problem, but this is where I get stuck and don't know where else to go.
I've just added the macbook pros that were recently purchased, (NOT retina Displays) boo i know.. THey are in AD able to place them and moved them around into different groups. I'm able to sign in when i'm on the network. WHEN I'M OFF THE NETWORK IT DOES NOT ALLOW ME TO SIGN IN. In windows it builds a profile for you so i checked that it does create a profile folder under users but still not able to sign in (locally)? not really locally?
Info: MacBook Pro, Mac OS X (10.7.3), Able to Bind, NO offline signin.
On my MacBook Pro I have set up a bunch of shares to mount upon login. They then are presented by icons on the desktop, all using server "afp://BMK-rnp (AFP)._afpovertco._tcp.local/SHARE NAME". The shares are hosted on my Infrant/NetGear ReadyNAS Pro, which uses the AFP protocol, and advertises the AFP service over Bonjour. However, when I have had the MBP sleeping for a few hours, not just a few minutes, and I open it back up, it has lost the connection to the shares. I get a message that the server is unavailable, and that the shares are disconnected. I can't do anything about it, except disconnect the shares in the pop-up, open up finder, and click on the "BMK-rnp (AFP)" icon under shared, and then reconnect to the shares. Is there a way, using std. OSX tools, to "re-connect" to the shares? I have tried a small utility - "Bounjour Mounter" - but I never got it working right.
I work remotely a lot. After I upgraded to Lion server, I am unable to connect to the VPN service remotely unless I physically go over to the server (mac pro) and log into the desktop manually.Â
Previously, if my Snow Leopard server restarted (due to power failure, etc) and it re-booted up to the login screen, I could still logon to the VPN remotely as the VPN service would always startup (at the login screen) without a user having to be logging in. Â
Now, with Lion Server (10.7.4), if the server restarts, I cannot login back to the VPN. I have to get someone to go over to the server and manually login, then I can access VPN just fine. (I do not, and will not turn automatic login on on my server due to the huge security risk.)Â Â
How do I get the Lion Server VPN service to startup before or at the logon screen even if no user is logged in?
After my MBP has hibernated, I cannot connect to my SMB shares on my Win7 media center. I can relaunch finder, turn airport on and off, etc, but it will not connect to the server until after I restart the computer. It sees the Win7 box in Finder and lists it under "Shared," but even though I have a button for "Connect As," pressing it does no good. Finder just says "Connecting" and will never get any farther.
If I use the "connect to server" dialogue in finder rather than the shared list in the sidebar, the effect is the same, it come up with a "connecting" message that never succeeds and I cannot close.
The computer is a late 2007 MBP running 10.6. Its connecting wirelessly to an Airport Extreme, and the Win7 box has a wired connection to the Airport Extreme. Since it will reconnect just fine after a reboot, I'm certain the problem is with the MBP, and not the server or the router.
I'm looking at OS X Server as a possible email server upgrade from an OLD Linux box. On our current server we have aliases setup to archive all incoming and outgoing email to another account. That one account then checks email via POP and then it is archived on another client computer for record keeping and CYA. It looks like this:Â
We are a small company that just recently started using Lion Server for a few simple services. We've been pretty happy with it and are considering trying to host our email on it as well, as we've had a little trouble lately with our hosted email being rejected as spam (since they're shared services). It seems to work correctly in a controlled environment on test email accounts that I've created, but I'm having trouble figuring out if it's possible to allow smtp relaying from a device (cell phone, tablet, computer) outside of the local network when the sending from is a virtual address.Â
Basically, it seems "user@company1.com" can send from devices off the network and authentication allows them to. However, we have two sister companies that we need email for as well. I would like them to be able to send messages from "user@company2.com" or "user@sister3.com."Â
When I try to send from one of those test accounts on an iphone outside of the local network, it says "A copy has been placed in your Outbox. The recipent "recipient@addressee.com" was rejected by the server because it does not allow relaying."Â If I add the specific IP address of that device to my allowed relay list, the message sends with no problem. Obviously, I don't want wide ranges of IP addresses allowed to use the relay service. Is there no way to allow relaying from any IP address based on an authenticated user?Â
Since installing Filemaker Server 12 on our Lion Server 10.7.3, the Webmail is no longer working. I know with previous installations of Filemaker Server I have been asked whether I wanted to keep the system version of PHP or install PHP which comes with Filemaker Server, but I don't recall being prompted about it on this occasion. Previously I had always opted to retain the system PHP.
[code]...
And from the WAN I get just a screen saying webmail is turned off and that I can turn it on by using the Server app on the server (It is already checked in the server app).Â
Info: Mac mini Server (Mid 2011), Mac OS X (10.7.3)
I have a mac mini running lion server.I have a couple of mac clients (notebooks). I have to enable mobile accounts so notebooks will work when traveling.However, I want family to logged into server as well. I am still in testing, and I think I have client side working ok (sync on demand, sync logging in and out)However, when user now logs directly into server (or anything else that would cause a sync, manual sync or logging off), it causes errors. It appears it isn't smart enough to know it is trying to sync back to itself.Â
I have an OS X Server 10.6 setup with iChat and it works perfectly.This Mac is connected directly to the WWW, no firewall. I have an OS X Server 10.7 setup with iChat and it works perfectly EXCEPT for File Transfers This Mac is connected directly to the WWW, with a Netgear FVS336Gv2.I have opened all the correct ports for TCP & UDP and mapped them to my OSX Server 10.7 at 192.168.2.100Â
why should JUST file transfers do not work?This iChat OSX Server 10.7 is setup for people on the same server, using the same domain. File Transfer in iChat WORKS on the internal network OK?File Transfer in iChat DOESN'T WORK on external network?
This is the error log im getting back from the addressbook server error log. I noticed that the push notification is not working for the addressbook server.
We are a small business with 2 mac mini's, 2 macbook laptops and another macbook pro laptop who is remote. (the remote laptop is not a deal breaker) We are beginning to have a nightmare with file storage, everyone is saving their own work to their own workstation and it's becoming difficult to share files etc. Basically, our requirements for a solution are:Â
- Sensible file server, allowing all on-site computers to use the server as a main file storage
- Something I can back all computers up with from time machine
- Useful to restrict certain users to certain files
- Useful to have external access to files when off site and via the likes of iPad etc. Â
I've looked in a NAS Raid drive and the OsX Lion Server and also the Time capsule and am just so confused at what to buy. Although the calendar sharing options etc. on the server would be useful, we can also do this via icloud. It's mainly the file access that is such a problem. Â I wonder whether a time capsule would be good enough as a file server - which we then back up to the cloud to secure the data.
When logging in to a remote server via Go/Connect to Server a dialog box comes up on restart with bad username info. No matter how many times I attempt to correct the info it always retains the bad user name. What and where is the preference file for this connect to server dialog box?
We have a brand new Mac Pro (12 core with 64GB of RAM) running OS X Lion Server in a corporate environment. The server is running only file sharing and software update servers, and we have around 40 users who need to be connected over AFP at all times. This company runs 24/7 and we have an XSan environment using an ATTO Celerity 8GB 4 channel fiber card (84EN) along with a 6 port 10GB Ethernet card. The Ethernet card is configured in a link aggregation bond using ports 1-4. The idea is that clients who do not have fiber cards installed on their machines can still connect to the SAN via Ethernet and this file server. They AFP connect to the share, and of course the share is the SAN. It's a single mount point and everyone has read/write access.Â
The issue is that this machine keeps crashing (multiple times per day) and I cannot find any reason why. Syslog shows nothing of value and I've called into Apple Enterprise Support who also brought nothing to the table.Â
We initially had SMB and AFP file sharing activated but as soon as a Windows 7 client connected the machine was brought down. So, I disabled SMB via terminal (sudo serveradmin stop smb) and deactivated it via the Server app for the share point). That at least allows the machine to be up for 4-6 hours before crashing again.Â
This is seemingly the simplest of setups for file sharing and I would've thought that this beast of a machine would be able to handle being a file server without issue for far more than 40 clients. I'm seeing high CPU usage, which Apple support told me was perfectly normal (around 60% on the kernel_task process and around 55% on the AppleFileServer process). It also seems to consume all 64GB of memory, though it shows 60GB as inactive, but at the same time it's paging in and out.Â
Virtually all of the clients are running Lion (10.7.4), the server itself is running 10.7.4. There are a few ethernet connected clients running 10.6 along with two running 10.5. As I mentioned I disabled SMB so there are no Windows computers connecting to this machine at this time (though it would be nice to get that functionality back if AFP can be stabilized).Â
This company simply cannot be down, especially not multiple times per day. The only way to bring things back and running from a crash is to hard boot the machine via the power button as you cannot perform a restart or a shutdown. Once the machine comes back up everything is back to working order for a few more hours until it happens again.
Info: Mac Pro, Mac OS X (10.7.4), 12 Core, 64GB, 2xSSD, ATTO 84EN
How does Apple Server work?Is it possible to just use the file sharing feature?I would like to set up a file sharing service similar to dropbox where users log in and can see there files as well as files that everyone can access. How do I set up the server is it run off my "computer" that acts as a server for the company?
I recently purchased SAT/PSAT/ACT preparation material for my daughter from Kaplan. I could not run the software on OS X Lion that I have. The error message I get is - " PowerPC applications are no longer supported". Does any one know what the solution is?
Info: iMac, Mac OS X (10.7.3), Kernel Version Darwin 11.3.0
Every file created within the Shared folder is automatically a "read-only" for all other users. How can I make all users able to edit all files within the Shared folder? - The "Apply to enclosed items" does only apply settings to existing files. This means that for every new file you add, you have to press "Apply to enclosed items". - Surely there must be a way to apply the folders setting to all future content? All I want is for this folder to function as any external hard drive; accessible by all accounts without any restrictions!
I am using os 10.7.3 and a couple of weeks ago I found I can no longer download pdf files. Instead nothing happens or it try so open in a document viewer, for example: [URL].What do I do? I have not made any changes except update os 10.7 and adobe reader. Other computers using snowlepoard down load just fine!
I backed up some movies for the kids onto an external drive (USB without power cord). Now when I plug it in, it does not even show up. If I try to look at it with the disk utility it sayd the file system is not recognised. Last time I accesed the disk was under leopard. Could it be that the change to lion has cut off access now?I do hear the disk start up when it plugs in and I have not seen any strange history with this disk before switching to Lion. (A drive of the same make but bigger and with power cord plus USB still works from before and after Lion). Small disk is Freecom 1TB (pocet size), Large disk is 2TB also Freecom but with powerfeed seperately.
I am currently trying access profile manager on both my macbook air and iphone 4s on local wifi. However, it would just hang when i try to access it via "http://macmini.local/profilemanager". If i try go to go url...I can access url... fine and ping "macmini" fine.
Is there an option in Mac OS X Lion (10.7.3) where I can set my system to automatically login to my university's remote folders and drives on their network?
I upgraded to 10.7 from 10.6.8. I've ran all the updates etc, but now I cannot connect to my OS X Server (10.6.8) or any other machine for that matter. The server appears in my finder window and will allow me to connect as a guest but if I try to login by clicking connect as or by using COMMAND+K and typing the IP I get a long wait after entering my PW only to receive an error that says "There was a problem connecting to the server "pggfx01". Check the server name or IP address, and then try again. If you continue to have problems, contact your system administrator. It should be noted that I have other machines that came with Lion that connect without issue and other machines still running 10.6.8 that connect flawlessly.
I back up my laptop on a backup disk at work (with their permission). I connect to the network, click on my work Mac mini (1.66 Core Duo, 2 GB RAM, OS 10.6.8), and then click on the MiniStack backup drive to mount it on my desktop.But recently I upgraded to Lion and now that's not working. I can see the mini in the Finder sidebar, but when I try to connect to it just says, "Connection failed" and doesn't give a reason.
Info: MacBook Pro, Mac OS X (10.7.3), 4 GB RAM, 160 GB HD
I have a Lion Server running here on my company. Everything works just fine. With screensharing I can access it, I can start the Server app on the server OK> However I cannot open the server app on a client machine.It shows the Name/Password window, but denies access, even with my admin login credentials. I can access the server with Server Admin, but the Server app only works on the host machine. I presume it must be a DNS issue? I do not like to open the server app on the server because it shows, that it uses 40% of the processor ALL THE TIME, which I also think very strange. Â
I have just purchased my first mac (Mini Server w/ quad i7) the other week. I am having serious troubles connecting it to the internet at my work or uni networks. The mini works just fine at home with a simple connection to the modem/router. But at uni there is a small infrastructure and proxy, and at work there is a more complicated setup also (although the firewall isn't blocking any ports or normal internet traffic. There also isn't any MAC address filtering on any of the networks). I have tried both ethernet and WiFi, with no success.Â
Mac mini obtains local IP, can successfully contact the DNS. Pinging locally to the gateway fails (so so does pinging google, or external addresses). traceroute also fails internally. But that's about as far as I can go on either work or uni networks.
I've fiddled around with all settings i can find under 'Advanced' in the network options. But again nothing.Â
It is a completely fresh install of OSX 10.7.3, no 3rd part apps or software have been installed yet (this is due to not having an internet connection).Â
I am COMPLETELY new to mac software - other than knowing the dashboard is down the bottom, the taskbar is up the top and the minimizing/closing is in the top left corner. I am in the 3rd year of my IT degree at uni, so I know some generic networking troubleshooting, but that's about all.Â
Info: Mac mini Server (Mid 2011), Mac OS X (10.7.3)
