Mac OS X Lion Server :: Cannot Login To Domain After 10.7.4 Update
May 16, 2012
Here again dealing with how OS X deals with .local domains I think.Was previously bound and all was working fine. Have just updated to 10.7.4 When trying to login using the "Other User" the button stays red and says Network accounts unavailable. I can ping domain server by name and IP.Permissions have been rebuilt.
Have rebound. Had a problem at first unbinding inside the Open Directory Utility as it said it could not connect with the domain and an unused account would be left if a forced unbind was done. Tried again by using the minus button instead of the Unbind button and it worked without any message.
So then binded to the domain and all looked good. Green button next to Network Account Server in the Users and Groups.
Info:iMac (27-inch Mid 2011), Mac OS X (10.7.3), VM Ware with XP Pro
I've just set up DNS on Lion Server and whereas previously I could connect to a system on my network by the hostname (e.g. via ssh), using the Lion Server DNS requires the fully-qualified name. Is this by design? I've checked all my settings and it all seems to be correct. Â
I have not set up ssl before so i have a very basic question. I would like to support my Mac Lion server based email with a basic SSL cert that was provided with my domain name.Â
When setting up the certificate would i set the dNSName to  domainname.com or to server.domainname.comÂ
My mail server host name is set to server.domainname.com so i would assume this is the correct one, but emails are addressed to name@domainname.com so
I want to be sure i am setting this correctly before i generate the csr
Normally, you can create a DNS record that points to the zone itself, e.g.:Â
@Â Â 10800 IN AÂ Â Â 196.197.200.201Â
How do you accomplish that on a Mac OSX Lion Server? The DNS requires you to enter a hostname and it does not accept "@" as the hostname as it normally appears in the zone file. (manually modifying the host file does not work - I tried that ;-) )Â
I have been unable to find any references on how to best automate certain "tasks" in Lion so that I can do the following:Â
create predefined DNS names based upon the clients domain name create predefnined web address based upon the just created DNSÂ
For example.... We have the customer "Sammy's Flower Garden" and his domain is "sammysflowergarden.com". At the command line, I would type:
$ clientsetup sammysflowergarden.com This would then create a base folder structure (this part has already been written)ClientDomains    -    S         -    sammysflowergarden.com              -    production              -    staging              -    archive              -    design                   -    template    Â
[code]....
From what I have read, alot of modifications outside of the Lion serveradmin tooling can result in some rather unusual if not nasty behaviour. If this is true, then I would assume that I could not just write out to a file in /var/named/ and have it automaticly picked up by the server? The same for the apache instance? I still want to be able to use the GUI interface when needed. Â
I have MAC OS X 10.7.3 After joined to Windows Domain 2008 R2 and reboot system - i have not items, where is i must enter domain credentials.But, if i login as local user, and logoff - i have item for entering domain credentials.Why this item not show me after restart? How i can fixed it?
I have binded my Lion system to AD. I have configured Mac local update server also. When i run software update on lion it asks for Domain controller passwordÂ
Is there is any way for allow domain user to run software update on mac
I'm trying to setup a Lion Server as an internet server - not as a web server - I need access to a different port. When I use the Server UI to go to Web, I can select to edit my domain name but then in the edit window, the Domain Name field is blank, and I can't change anything such as the port, SSL Cert, etc. As best I can tell, I have the DNS setup but I'm not sure I've done it correctly. I can add a second domain name and can edit the details for that. I'd hoped I could delete the first one or swap them but no luck. I can't access the domain name from outside the LAN but it may have just not propagated yet. I can access the IP address and do see the default home page.
OS X Maverick (10.9.3)..I have an iMac I need to have the user at the login window, log into AD. The iMac does not have an operable ethernet port. I suspect the iMac is old enough, the thunderbolt port is video only, since a known working thunderbolt to ethernet adapter did not connect (I think the iMac is Mid 2011 and I suspect the iMac is out of warranty). Wireless works fine, and I have made the iMac a member of the domain using the private network, after logging in locally. I cannot create the user's mobile account, because I need to have the iMac use wireless at login, connecting to the private network, at login. Â
Is there a way to have the login process use wireless to initiate the login for the mobile account and creation of said account?I know there is a way to do this under Windows, just hope there is a way under OS X.Â
i've setted up my mini server as "server.domain.private"because i don't want it to be published on the internet by default, i want to have control on wich webapp is published.my main goal is to have a new Vhosts wich is serving only the webapps i need to be running and ,why not, hosting multiple VhostS enabling just some (or one) webapps each [url]). in other words: i want control on what is published where and how in order to publish Profile Manager i did: - created a new virtual host on the web service called "server.public-domain.com"- enabled the webapp on that Vhost from terminal as found in: [url] using this command "webappctl start [url]"- restarted the whole server but this seems not to work as expected.. should it ??? after some dirty work on the apache config (copy/paste from the original vHost of some "proxypass" and "balancemembers" and "include" regarding devicemngmt) i got it to ask me for password when browsed from the outside world, BUT after login it will redirect my browser to "server.domain.private" wich is obviously not working from outside.Â
Info: Lion Server, Mac OS X (10.7.3), profile manager / ical server / ios
[URL] I can access via server admin but cannot log into the server from the login window at the server itself with the exact same admin credentials that I used through server admin.Â
I recently updated my Server running 10.7.0 to version 10.7.3 and single-sign-on no longer works for my users. The 10.7.3 Lion Server System is bound to our Active Directory Server running on Win2003 R2 Server. I tried un-binding and rebinding the system but.. no luck. When a user now tries to login to our shares via AFP with SSO credentials they recieve the message Â
I can run the id command from terminal on the OS X server and it is seeing AD users. Unfortunately, no one can log into the server shares via AFP with an AD user.Â
I don't understand how it happened, but a school I work with has had the SUS rip through 80Gig in a few days (Snow Leopard Server 10.6.8). Same as with my home server (Lion Server 10.7.3).
I installed the 10.7.3 Server Combo update today, and now when I try to use Server.app to administer my server, it just shakes to tell me they are invalid (even though I'm logged in to the server with that username/password).
Info: Mac mini, Mac OS X (10.7.2), Server | 2.53 ghz | 4GB | (2) 500GB
I noticed that my Lion Software Update Server has exclamation marks next to all updates from 6/11/12 to 6/13/12. I can not get then to copy, enable or download to my unmanged computers. There are two updates drom 6/15/12 that are working. There are 12 updates in total with this issue.Â
I am running Lion Server 10.7.4, with Software Update Server running. My clients are all configured to hit that server as I have them pointed to it via a preference modification (I've also used Workgroup Manager with the same results). What's happening is this:
Client runs SW update locally, it goes to my server and either:
1. It finds no updates (although this is false). If I run same update to Apple's servers ot finds updates
or
2.It finds updates but not all of them.This is what's happening more of the time.
I can verify in the access logs on the server that clients are in fact hitting the server.Is there some sort of cache that needs to be cleared? I was reading something about an Apache issue, or perhaps DNS? I have tried both local IP address as well as name of server.
"Software Update can't connect to the Update Server" - so I can't even check to see if updates are available.This has been going on for sometime. For a while if I created a new admin account and used that it would work, but not today.Tried creating a new admin account but to no avail.
I clcik on the Apple Icon, (top left hand side of screen), click on SOFTWARE UPDATE, it runs for a split second, then: [URL]after which I check my internet connect to see that it's fine. (And I attempt to run SU with nothing else using the internet). [URL] I've checked the forum and found a few people with the same problem. I've tried deleting PLISTs and using 008.008.008.008 DNS address, [URL], but still cannot get it to work. I still have my old G4 Power running OS 10.5.8 connected to the same modem (Netcomm NB6PLus4w Modem which has 4 ports) as my Mac Mini, and it runs Software Update without any issues. So it's not my internet connection and it's not the Apple server, so it's something about the Mac Mini that's not right.
Mac-Mini 2.4 GHz Intel Core 2 Duo - OS 10.7.2 - 8GB 1067MHz DDR3 Memory.
Info: Mac mini, Mac OS X (10.7), Netcomm NB6PLus4w Modem
I have a Mac Mini Lion Server which is running open directory. I have several users which I created a while ago and they are able to login to the server from both Lion and SL clients. I created a new user account today and for some reason I am unable to login using the new user account from a SL computer. I've been able to login using a lion client, but SL, no dice. Â
on setting up an OD master to accept kerberos from a AD domain and I can't get AFP to work.
What I've done:
1. Bind OD Master to AD 2. Destroyed the OD Kerberos realm 3. Ran sudo dsconfigad -enableSSO
When I log into a client that is bond to both AD and OD and try to access a SMB share on the AD side it works. When I try to access a SMB share on the OD master it work. When I try to access a AFP share on the OD Master it fails with the error " The user Authentication Method required by this server can't be found". Now I think this error is because I'm forcing Kerberos authentication, if I change AFP setting to any method authentication I get promoted with the AFP login window, I enter my AD account information and I'm able to mount the share.
I have a Mini Server, 10.7.3. 8GB, SSD 256, use it for FCPX mostly. Just moved all datafiles to external disks and re-installed Lion, but now I cannot access my user account. When I started up the system after it had installed, it asked me for company name and email address, but then I cannot access my user account any more.
Do I need to re-install the system again, or how can I solve this? I don't remember what email address I used originally when I got the server and registered it, whether it was my personal or the business address, which I gave this time. Â
I do remember the login name and password that I have always used, but these don't work anymore and I have too many jobs pending this week.
Info: Mac mini, Mac OS X (10.7.3), Server 2.0Gz 8GB SSD256
I'm running server 10.4.8, how do I authenticate NT domain users on this? I tried to set the server to be a Backup Domain Controller, but then it wants Open Directory to be in replica mode. The problem there is that it needs an Open Directory server to replicate.
I'm not sure - but for some reason I am no longer able to login to my wikiserver via Safari. I can with firefox, chrome, IE, etc but not in Safari. Username doesn't matter. (either total admin or just a user).
I have 3 servers in my office. I have plan to configure these three together in my office. My plan is one server just only for login purpose and other two to keep the home folders and shared folders.the function is when one network user log in to one client machine, it just login(by using first server)and disconnect from first server and connect to the either two (means direct to the homefolder i created either of two server). Means first server as login server and other two are file servers.
I have a brand new iMac running 10.7.4 bound to AD with mobile accounts to be created at login. We've had dozens of users log into this Mac with their AD credentials with no problems. Login proceeds as expected, home folders are created, etc. One user cannot log in. The login window will freeze (spinning beach ball) after he enters his credentials and the computer has to be manually shut down. After a restart you can see that his home directory has been created, with proper permissions, but he still cannot log in (spinning beach ball). However, he CAN log onto other AD bound Macs, just not this one. And he CAN log onto a bound Windows machine, so apparently there's nothing wrong with his account. There is no OD server in the mix. The computer is bound to our AD domain only. The system log shows the proper UID but indicates that the user name can't be found. But then the user folder (with the correct name) is created anyway. Later there is an entrry that the UID can't be found.
I have just done a little design on iweb 09 on my new imac 27" and have uploaded it to my hosting. Its succesfully uploaded but the problem is thisIf my web address was say www.macs4u.co.uk the website. When i type that in now it goes to www.macs4u.co.uk/www.macs4u.co.uk/welcome.html and shows that site i just uploadedWhy cant i just have it uploaded to my server so when i type in www.macs4u.co.uk it stays as that and show the website??
I've registered a domain and it works wine when anyone enters www.mydomain.com. However when I type the domain name without 'www', I get the following:Network Error (tcp_error) A communication error occurred: "Operation timed out" The Web Server may be down, too busy, or experiencing other problems preventing it from responding to requests. You may wish to try again at a later time. For assistance, contact the IS Support Center. Â
Info:  iMac G5 PPC,  Mini Server,  MBP  TV, Mac OS X (10.6.4), iPad2, iPhone, AppleTV
I have a problem with Network Users defined on my Lion Server accessing the server through VPN or Profile Manager (via Safari) ... I keep on getting authentication errors. Is this because they are network users or am I missing something else?
This works: when I logon to my Lion Server with either local or network users everything seems to be OK including home directory synchronisation.
I tried the following for VPN:my local server account can logon to the server (ie my secret key, user account/password combination are OK ("chap peer authentication succeeded for ...")when I try the same with two of my network accounts I keep on getting authentication errors (VPN) but I'm sure I use the same userid/password combinations as above ("chap peer authentication failed for ...")
I get similar results when I access the Profile Manager (url..)my local server account can logon on to the Profile Manager and sees as all the informationwhen I try this with one of my network accounts (which has devices assigned) I keep on getting 'incorrect user name or password
Is there a way to disable or hide the sleep button at the login screen? I am trying to send updates and/or commands from ARD.... But the end users are putting the computers to sleep by pressing the sleep button. This is causing the ARD updates/commands to fail. The computers and severs are all Lion OSX. If I can disable the sleep button at login then I can send the updates/commands. I normally only do the updates/commands when there is no user logged in.So I am not concerned with the case where the user is already logged in and puts the computer to sleep. I have already setup an MCX in WGM for the Energy Saver.
