Mac OS X Lion Server :: Can't Log In To Profile Manager Or My Devices With Active Directory Login
May 21, 2012
I have an OSX Lion 10.7.4 Server set up with Profile Manager and it is joined to AD.Â
I am able to see AD groups in the Profile Manager groups section. I can also see and add AD users and groups using the server app.Â
I have enabled the "Can Enable Remote Management" check box for Domain Users through Profile Manager. I have also added Domain Admins to the Workgroup group in the Server app. I'm not sure that I want or need either of these options, but they were suggestions to try. I am not able to log on to the Profile Manager or My Devices pages with AD logins.Â
I found these directions about nested groups in Workgroup Manager [URL] but I don't have a [URL] local group or any groups like are shown in the picture.Â
Info:
Mac mini, Mac OS X (10.7.4)
View 3 Replies
ADVERTISEMENT
Mar 22, 2012
I have Macmini 2.1 2007 year
After install 4 GB RAM (work only 3 GB) i install MAC OS X 10.7.3
Now i joined Macmini to Domain Active Directory 2008 R2. Joined via standard tools.
Macmini have a local user.
How i can migrate all settings, all data local user to Domain user?Â
When i used MAC OS X 10.6.8 i can joined to Domain via Likewise Open, and after i can use Likewise tools for migrate.
But now, in MAC OS X 10.7.3 i can't joined to domain via Likewise... and use migrate tools.Â
View 1 Replies
View Related
Apr 7, 2012
I have a problem with Network Users defined on my Lion Server accessing the server through VPN or Profile Manager (via Safari) ... I keep on getting authentication errors. Is this because they are network users or am I missing something else?
This works: when I logon to my Lion Server with either local or network users everything seems to be OK including home directory synchronisation.
I tried the following for VPN:my local server account can logon to the server (ie my secret key, user account/password combination are OK ("chap peer authentication succeeded for ...")when I try the same with two of my network accounts I keep on getting authentication errors (VPN) but I'm sure I use the same userid/password combinations as above ("chap peer authentication failed for ...")
I get similar results when I access the Profile Manager (url..)my local server account can logon on to the Profile Manager and sees as all the informationwhen I try this with one of my network accounts (which has devices assigned) I keep on getting 'incorrect user name or password
Info:Mac mini, Mac OS X (10.7.3), (Server)
View 4 Replies
View Related
May 3, 2005
I'm trying to setup our xserve so our clients will authenticate against AD but have their prefs managed by OSX Server. So far I've got the clients logging on ok,group folders mount nicely and I can see AD users and groups from workgroup manager. But when I try to add a home directory for an AD user I get - 'Got unexpected error Error of type -14140 on line 1127 of PMMUGMainView.mm'. I get the same if I try to create a new active directory user so it looks like workgroup manager is having problems writing to the active directory.
View 7 Replies
View Related
May 2, 2012
I have installed Lion Server with Web and Profile Manager services. When I log into the profile manager web page I receive the message "Not Found The requested URL /wiki was not found on this server."Â
Info:
Mac mini, Mac OS X (10.7.3)
View 3 Replies
View Related
Mar 9, 2012
Is there a way to backup the database in the profile manger?
Info:
iPhone 4, iOS 4.3.3
View 3 Replies
View Related
Mar 12, 2012
I am working on getting profile manger working on 10.7.3. After turning profile manger I can get to a logon screen but after I logon I get this error in my browser. I am guessing the issue is with apache routing but I don't know.Â
View 5 Replies
View Related
Apr 14, 2012
10.7.3 private server (hostname is myserver.private) with profile manager turned on.I can access the profile manager locally from the server through https://myserver.private/mydevices, but when I try the same thing from the client (as suggested in the help window) I get the following error in Safari:Â Safari can't find the server Safari can't open the page
View 3 Replies
View Related
Jul 2, 2012
Trying to upload a IPA for ad-hoc deployment to a device group of IOS devices. File goes to upload and nothing happens.
Profile Manager Log has the following exception:
Jul 3 13:03:07 cif-podcast.qut.edu.au ProfileManager[441] <Error>: Caught unhandled exception undefined method `each' for nil:NilClass at /usr/share/devicemgr/backend/app/models/cfprefs_knob_set.rb:45:in `replace_string_types' ....
View 2 Replies
View Related
Feb 9, 2012
I am running a 10.7.3 Lion Server bound to Active Directory. There are only several local admin users on the machine; everyone else authenticates against AD. AFP connections work fine, using both local and AD accounts. SMB connections work fine if you use a local account but any AD account is rejected as having the wrong password when connecting via SMB. I've tried using the adusername trick (our AD server is named "ad") even though you're not supposed to need that with 10.7.2 and above... it doesn't help.Â
I have tried both a Windows 7 client and a 10.6 client, specifying SMB as the protocol in the Connect To Server dialog. Both fail, and they also take several minutes before reporting the bad password (the slowness in responding is yet another problem I've read as being an issue). Checking the kdc.log file on the server I see:Â
2012-02-09T09:54:22 digest-request netr: failed user=AD\dlennie DC status code c000006d
2012-02-09T09:54:22 digest-request: netr failed with -1073741715 proto=ntlmv2
2012-02-09T09:54:22 digest-request: od failed with 2 proto=ntlmv2
[code]....
I am using the full DNS name for the server, and on my test clients there are no firewalls or other network issues that would prevent connection to the server. We're mostly Macs here but the Windows users become a rather vocal group when something doesn't go their way. The confusing part to me is that AFP authenticates just fine and SMB doesn't.
Info:
Mac Pro, Mac OS X (10.7.3), OSX Lion Server
View 1 Replies
View Related
Feb 9, 2012
I've been looking around and I have yet to find an explanation or guide on how I could push shortcuts to websites and applications to the IOS/OSX Desktop or Dock via profile manager? I feel like the functionality is there, but I'm just missing something really obvious.
Info:Mac OS X (10.7)
View 5 Replies
View Related
Mar 1, 2012
If the MDM portion of Profile Manager allows you to track phone info like IMEI and phone number?
Info:
Profile Manager, Mac OS X (10.7.3), Lion Server
View 1 Replies
View Related
May 30, 2012
I have a Mac Mini running Lion Server. We are going to use it for software update, profile manage , vpn, ect. When I'm not on the LAN I can load the [url]... however when I'm on our LAN I'm unable to load this site. I can start load the site from the LAN by putting,[url]..., but the page then redirects to [url]...auth?redirect=[url]... and will not load because of the domain name. This problem is also causing me to not be able to push profiles to machines while they are conected to the LAN.
My goal is to be able to load the site from anywhere as [url]...
Info:Mac mini, Mac OS X (10.7.4)
View 2 Replies
View Related
Jun 27, 2012
when pushing a config to a device it fails and the client records an error 403 forbidden.
View 1 Replies
View Related
Mar 1, 2012
I am managing a bunch of Macs and we are using Active Directory groups to assign certificates for 802.11x. I am binding the device to AD using JAMF software and was wondering if I could use a script to then add the deive to an active directory group.Â
Info:
iMac, Mac OS X (10.7.2)
View 3 Replies
View Related
Apr 19, 2012
I have been reading through the Lion Server pages for Active Directory and came across the following question. Does the procedure listed in the URL below allow the users whose Macs are joined to the OS X server, to login with Active Directory credentials. Pass-through auth. for lack of a better term. [URL]...The procedure reads as if it is just joining the server to the domain and not configuring authentication.Â
Info:
Mac OS X (10.7.3), 8GB RAM, 500GB HDD
View 2 Replies
View Related
Jun 13, 2012
Im having all kinds of 'not found' issues with lion server but i think alot of them may stem from not being able to stop kerberos from running on Open Directory.Therefore currently im running two Kerberos realms OD and Active directory.. When I try and stop it in terminal it errors see below...Â
shutting down kadmind
kadmind shut down
shutting down kdc
[code]....
then on server admin it shows kereberos for OD as "running".. still so i know it hasn't worked?
Info:
Mac OS X (10.7.4)
View 1 Replies
View Related
Jun 27, 2012
We have a local Admin account on all Macs, enterprise wide, for local and remote administration.
All Macs are joined to Active Directory. Our users DO NOT have Admin rights.Â
On ALL our LION Macs (10.7.4), when joined to Active Directory, we lose functionality to the local Admin account.
We can log into the local Admin account, but the desktop is useless. Nothing opens. We cannot create any files/folders without getting an Access Denied error.
AND then best part... everything on the Desktop, files/folders, are gone! Almost like a bran spankin' new account. With no access to anything locally.Â
Info:
Mac Pro, Mac OS X (10.7.3)
View 4 Replies
View Related
Feb 7, 2012
I have setup profile manager. Trusted profile is installed.When a user logs in the profile is added. In the profile the users email address is correct. [URL] When i turn to Mail, agenda and contacts in the system preferences the mail address is displayed as : [URL]This is also being displayed in the Mail account settings.Â
Info:
Multiple Systems, Mac OS X (10.7.2)
View 1 Replies
View Related
Mar 15, 2012
i've setted up my mini server as "server.domain.private"because i don't want it to be published on the internet by default, i want to have control on wich webapp is published.my main goal is to have a new Vhosts wich is serving only the webapps i need to be running and ,why not, hosting multiple VhostS enabling just some (or one) webapps each [url]). in other words: i want control on what is published where and how in order to publish Profile Manager i did: - created a new virtual host on the web service called "server.public-domain.com"- enabled the webapp on that Vhost from terminal as found in: [url] using this command "webappctl start [url]"- restarted the whole server but this seems not to work as expected.. should it ??? after some dirty work on the apache config (copy/paste from the original vHost of some "proxypass" and "balancemembers" and "include" regarding devicemngmt) i got it to ask me for password when browsed from the outside world, BUT after login it will redirect my browser to "server.domain.private" wich is obviously not working from outside.Â
Info:
Lion Server, Mac OS X (10.7.3), profile manager / ical server / ios
View 1 Replies
View Related
Jun 21, 2012
Adding 10 IMACS with OS 10.7 to my active directory domain. I would like for all users to have the same basic user settings at log in. how I can configure the MAC clients.
Info:
iMac, Mac OS X (10.7.4)
View 1 Replies
View Related
May 15, 2012
I am running an open directory/active directory network. Authentication is from the Windows server 2003 active directory. It has worked fine until the last month. Now clients stop authenticating & when I check the AD plugin it says network accounts are not available. I can force the server to unbind, then renew the binding & everything works great.Is there any work around or fix for this other than upgrading the windows server to 2008?Â
Info:
OS X server, Mac OS X (10.6.8)
View 2 Replies
View Related
Dec 15, 2006
I have a few labs that will be running Tiger. I have an XSERVE that is running Tiger Server. All of my users are stored on a Windows 2003 server in AD.
I know how to bind an OSX machine to AD. What is the best way to set up my mac labs/Xserve so that when the users log in they get their home folder on the Windows server but have their preferences managed by Workgroup manager?
View 1 Replies
View Related
Dec 25, 2010
i want to learn one think about Mac OS X Server 10.6.i have got 300 clients Windows and i want to setup Mac OS X Server work like a Active Directory same as Windows... (User's Account,Profile ....etc) is it possible with Mac OS X Server or not ?
View 2 Replies
View Related
May 14, 2012
Im having problem problems all over Lion Server. I can't manage Profile Manager on client machines..nothing authenticates. So I thought I would rebuild the Open Directory replica functions....however in recreating an Open Directory I get an error.
"Cannot replicate a directory with augment user records. Your server cannot become a replica of 'server.com' because its directory contains augment user records. Please refer to the Open Directory Administration Guide for more information about this issue."
How do I get rid of the augment users records? By the way..I set this server up per Lynda Lion Server essential training. Part of the server functions with File Sharing and users accessing folders..but Profile Manager does not authenticate on client machines.
View 1 Replies
View Related
May 3, 2012
I have a couple of new users I've added to our directory recently. They are unable to connect to our internal jabber (iChat) server. Users that have connected previously are experiencing no difficulty. A quick overview of the layout of the system: two XServes, one is OD primary (aspen) the other is OD replica and iChat server (vail). I've modded some config files (long ago) to allow user IDs for jabber to be user@ourcompany.office instead of user@vail.ourcompany.office. It works quite nicely.Â
Excerpt from the logs shows a failed login attempt followed by a successful login attempt. Successful logins are happening from Messages (beta), iChat under Snow Leopard, and Pidgin under windows. Failing logins are all from iChat under Snow Leopard. Please ask questions, I'm happy to add any other pertinent data! May 3 16:21:45 vail jabberd/c2s[99718]: [13] [::ffff:10.255.170.122, port=52584] connectMay 3 16:21:47 vail jabberd/c2s[99718]: [13] [::ffff:10.255.170.122, port=52584] disconnect jid=unbound,
[code]....
Info:
Xserve, Mac OS X (10.6.8)
View 4 Replies
View Related
Feb 13, 2012
Today when we started trying to add users to our server (we use it only for afp access at this time), we noticed that new users belonging to a group "storage" were unable to login from client machines via afp (clients both 10.7.2 and 10.6.8). Â
When we tried editing the users accounts to change which groups they belonged to, it would appear in workgroup (and server preferences) that the changes would take but there was still no access.Â
As a test case, we modified an existing user who had no issues logging in to belong to a diffenent group and have different sharepoint access. The changes looked good in workgroup and server prefs, but when the user logged in, he was only able to acces his old sharepoint and not the new one (and since his permissions to the old were removed, he shouldn't have access to that sharepoint).Â
Also, for some reason users cannot be deleted within workgroup manager any more. The login used was the diradmin account.
Info:
Mac mini, Mac OS X (10.6.8)
View 2 Replies
View Related
Feb 22, 2012
The functionality was part of the Server App in Lion Server but was not included in Lion.Â
Info:
iMac, Mac OS X (10.7.2), Lion Server
View 2 Replies
View Related
Jul 17, 2010
Any app for MAC OS that will display my active windows? The app can run in the menubar or dock, or mount next to the doc. Basically, something like the taskbar from Windows XP and Vista. Not Windows 7 as that shows the active programs, but not specific windows. I'm basically looking for an Expose alternative. So if I have 10 different windows running for Firefox, I can quickly look at my menubar or somewhere near the dock, and just click the window I want to see. Yes, I know that is what Expose is for, but I prefer to see me active windows without using a shortcut.
So far here's what I've tried:
-Going to System Preferences, and unchecking "Minimize windows into application icon" in the Dock settings. This offered a partial solution as the icons could not be distinguished for the same program. 10 firefox windows minimized would just show 10 firefox icons.
-Googling the following terms:
app switcher for mac
mac expose apps
show running apps in menubar
show expose items in menubar
pin active applications to menubar in mac
always show expose for mac
application management for mac
I've also tried running these apps:
alunch: [URL]
WindowFinder 1.4: [URL]
Running Applications for Mac: [URL]
XMenu: [URL]
Himmelbar: [URL]
All of these apps more or less place one icon in the menubar, which when clicked on shows your running apps, favorite apps, and system folders. This is fine, and is very similar to the windows start button. However, they all fall short because they only place one icon in the menubar, which must be clicked on to show active apps or active windows. Can someone please point me to an app that will always be on my screen, and will show icons or labels of active windows.
Again, similar to Windows taskbar before Windows 7. I know this is a difference in Mac and Windows, and that I can use the dock to see my active applications, and use the various shortcuts to see my windows, but there's got to be an app that will just always shows my active windows. So if I have Apple Mail Open, and have 3 compose new mail windows going, I would like to see 4 icons or labels somewhere in the menubar or near the dock. I'm on a Macbook Pro - OS 10.6.4
View 7 Replies
View Related
May 28, 2012
I'm just setting up a new Mac Mini (5,3) Server but I can't find 'Workgroup Manager' installed, only the 'Server' app. Is this the difference between the Mac Mini and a 'real' server?Â
The server app seems to do most things but I want to create all the user accounts with a pre set password but force each user to create their own password on first login, I can't seem to find this option in the 'Server' app. I can do this in Workgroup Manager on my old 10.4 server that's being replaced.Â
Info:
Mac mini, Mac OS X (10.7.4)
View 2 Replies
View Related
