Mac OS X Lion Server :: "Connect To Directory" In Server.app?
May 5, 2012
I'm trying to do something fairly simple — allow users from an external LDAP server to access services on my Lion server. Following Apple's instructions, I can't find the "Connect to Directory" choice in the Manage menu of Server.app. I always start by turning off OD by using Server Admin to configure as "Standalone Directory". This is what I see in Server.app after doing that.
Apple's instructions say if the Manage Network Accounts option appears, you need to first set up the server to host network accounts. So I click that option, which seems the be the same thing as creating an OD Master using Server Admin, as far as I can tell.Then I try to add a new user.For some reason, the "type" dropdown list exists, and lets me choose "Imported user from directory", even though I haven't setup any other directory server. Of course, when I search for a username, it finds nothing.Apple's instructions say to now choose "Connect to Directory" from the Manage menu, but that option doesn't show up. I only have what shows in the screenshot above, sans "Manage network accounts" now. How can I get this to appear?
View 2 Replies
ADVERTISEMENT
Mar 12, 2012
I have several messages "Module: SystemCache Misconfiguration detected in hash 'Kerberos'" in my System Logs. Having browsed the forums, I found this most likely to be caused by User Records in the local LDAP database created with Workgroup Maager instead of Server.app. [URL]I wanted to fix these entries with the directory editor pane but the tool fails to connect toDirectory service /LDAPv3/127.0.0.1/.If I supply wrong user credentials, the message indactes a wrong username or passworf, but if I give the right credentials for the administration user of the LDAP directory, it simply sais "failed to connect (5000)". how I can convince the directory editor to let me edit the database?
View 1 Replies
View Related
Feb 9, 2012
I am running a 10.7.3 Lion Server bound to Active Directory. There are only several local admin users on the machine; everyone else authenticates against AD. AFP connections work fine, using both local and AD accounts. SMB connections work fine if you use a local account but any AD account is rejected as having the wrong password when connecting via SMB. I've tried using the adusername trick (our AD server is named "ad") even though you're not supposed to need that with 10.7.2 and above... it doesn't help.Â
I have tried both a Windows 7 client and a 10.6 client, specifying SMB as the protocol in the Connect To Server dialog. Both fail, and they also take several minutes before reporting the bad password (the slowness in responding is yet another problem I've read as being an issue). Checking the kdc.log file on the server I see:Â
2012-02-09T09:54:22 digest-request netr: failed user=AD\dlennie DC status code c000006d
2012-02-09T09:54:22 digest-request: netr failed with -1073741715 proto=ntlmv2
2012-02-09T09:54:22 digest-request: od failed with 2 proto=ntlmv2
[code]....
I am using the full DNS name for the server, and on my test clients there are no firewalls or other network issues that would prevent connection to the server. We're mostly Macs here but the Windows users become a rather vocal group when something doesn't go their way. The confusing part to me is that AFP authenticates just fine and SMB doesn't.
Info:
Mac Pro, Mac OS X (10.7.3), OSX Lion Server
View 1 Replies
View Related
Feb 22, 2012
The functionality was part of the Server App in Lion Server but was not included in Lion.Â
Info:
iMac, Mac OS X (10.7.2), Lion Server
View 2 Replies
View Related
Jun 27, 2012
I work remotely a lot. After I upgraded to Lion server, I am unable to connect to the VPN service remotely unless I physically go over to the server (mac pro) and log into the desktop manually.Â
Previously, if my Snow Leopard server restarted (due to power failure, etc) and it re-booted up to the login screen, I could still logon to the VPN remotely as the VPN service would always startup (at the login screen) without a user having to be logging in. Â
Now, with Lion Server (10.7.4), if the server restarts, I cannot login back to the VPN. I have to get someone to go over to the server and manually login, then I can access VPN just fine. (I do not, and will not turn automatic login on on my server due to the huge security risk.)Â Â
How do I get the Lion Server VPN service to startup before or at the logon screen even if no user is logged in?
View 11 Replies
View Related
May 15, 2012
I am running an open directory/active directory network. Authentication is from the Windows server 2003 active directory. It has worked fine until the last month. Now clients stop authenticating & when I check the AD plugin it says network accounts are not available. I can force the server to unbind, then renew the binding & everything works great.Is there any work around or fix for this other than upgrading the windows server to 2008?Â
Info:
OS X server, Mac OS X (10.6.8)
View 2 Replies
View Related
Dec 15, 2006
I have a few labs that will be running Tiger. I have an XSERVE that is running Tiger Server. All of my users are stored on a Windows 2003 server in AD.
I know how to bind an OSX machine to AD. What is the best way to set up my mac labs/Xserve so that when the users log in they get their home folder on the Windows server but have their preferences managed by Workgroup manager?
View 1 Replies
View Related
Dec 25, 2010
i want to learn one think about Mac OS X Server 10.6.i have got 300 clients Windows and i want to setup Mac OS X Server work like a Active Directory same as Windows... (User's Account,Profile ....etc) is it possible with Mac OS X Server or not ?
View 2 Replies
View Related
Mar 14, 2012
I am trying to setup test server with following services:
DHCP
DNS
Open Directory
Profile Manager
Software Update
But not having much of success. I have installed 10.7.3 on virtual machine (Using Fusion 4) on Mac Pro and given a 4 GB of RAM. This machine is running in its own bubble, it has no communication even with host. So I have configured DHCP and DNS services which seems to be working fine (I have confirmed with another client which can get IP and DNS server address from this server).
Now whenever I have tried to run OD setup using both tools (Server App and Admin Tool), it takes forever to configure (more than 1 hour) and then it fails with error saying "check your network settings". I have checked and machine has proper IP address (tried both DHCP and Static) and also used "lookup" utility to resolve the DNS address both ways (forward and reverse).
View 5 Replies
View Related
May 5, 2012
I've recently upgraded to Mac OS Lion Server, and I'm having a big problem that's keeping me from finishing my last bit of work on a project. I've been trying to create network users so that they can sign in on any computer, and access their files via the server, but I've been told time and time again to create a Directory Administrator.Â
When I try to create one, I get this error
View 8 Replies
View Related
Mar 1, 2012
I am managing a bunch of Macs and we are using Active Directory groups to assign certificates for 802.11x. I am binding the device to AD using JAMF software and was wondering if I could use a script to then add the deive to an active directory group.Â
Info:
iMac, Mac OS X (10.7.2)
View 3 Replies
View Related
Mar 4, 2012
After a reinstall I can´t config Open Directory Master.
[code]...
Info:Mac OS X (10.7.3)
View 6 Replies
View Related
Apr 4, 2012
1) In an environement that contains two directory servers (one master, one replica), how does a client find the replica in the event that the master goes offline?
2) Is there any command to issue from the client side that will return all available directory servers in the domain?
View 13 Replies
View Related
Apr 19, 2012
I have been reading through the Lion Server pages for Active Directory and came across the following question. Does the procedure listed in the URL below allow the users whose Macs are joined to the OS X server, to login with Active Directory credentials. Pass-through auth. for lack of a better term. [URL]...The procedure reads as if it is just joining the server to the domain and not configuring authentication.Â
Info:
Mac OS X (10.7.3), 8GB RAM, 500GB HDD
View 2 Replies
View Related
May 23, 2012
I've got a new Mac Mini Server that I'm using to set up file sharing for the first time. I've enabled OpenDirectory and verified that the users I'm creating are being created in (they show up in the Server app and Workgroup Manager app, but not in System Preferences | Users).Â
File sharing seems to be working fine, but I don't like the fact that each user has access to their home folder share when they connect to the server using a mac elsewhere on the network. I prefer only the shares I explicitly set up to be available.Â
Thus, a couple questionsWhy is there a home folder created on the server at all? Do I really need a /users/johndoe folder for each and every account in OD?How can I configure sharing such that I won't see the home folder when I connect from another mac on the network? I don't want to leave little "cubby holes" for my users to stuff files into
View 2 Replies
View Related
Jun 13, 2012
Im having all kinds of 'not found' issues with lion server but i think alot of them may stem from not being able to stop kerberos from running on Open Directory.Therefore currently im running two Kerberos realms OD and Active directory.. When I try and stop it in terminal it errors see below...Â
shutting down kadmind
kadmind shut down
shutting down kdc
[code]....
then on server admin it shows kereberos for OD as "running".. still so i know it hasn't worked?
Info:
Mac OS X (10.7.4)
View 1 Replies
View Related
Jun 27, 2012
We have a local Admin account on all Macs, enterprise wide, for local and remote administration.
All Macs are joined to Active Directory. Our users DO NOT have Admin rights.Â
On ALL our LION Macs (10.7.4), when joined to Active Directory, we lose functionality to the local Admin account.
We can log into the local Admin account, but the desktop is useless. Nothing opens. We cannot create any files/folders without getting an Access Denied error.
AND then best part... everything on the Desktop, files/folders, are gone! Almost like a bran spankin' new account. With no access to anything locally.Â
Info:
Mac Pro, Mac OS X (10.7.3)
View 4 Replies
View Related
Mar 7, 2012
So this is my first time really implementing Macs in an Active Directory environment and everything is going fairly well, except when it comes to the Home directory. All of my users are running 10.7, and with the latest patch, they can all log into the Domain without any issue. The problem is that their Home directory in the dock is displayed as a question mark. I'm guessing I'm missing something in the configuration, but everything looks right. Anyone have the 411 about how to set up a Mac user to map a Home directory to a network share on a Wiindows 2008 AD network?
Info:
MacBook Pro, Mac OS X (10.7.2)
View 1 Replies
View Related
May 21, 2012
I have an OSX Lion 10.7.4 Server set up with Profile Manager and it is joined to AD.Â
I am able to see AD groups in the Profile Manager groups section. I can also see and add AD users and groups using the server app.Â
I have enabled the "Can Enable Remote Management" check box for Domain Users through Profile Manager. I have also added Domain Admins to the Workgroup group in the Server app. I'm not sure that I want or need either of these options, but they were suggestions to try. I am not able to log on to the Profile Manager or My Devices pages with AD logins.Â
I found these directions about nested groups in Workgroup Manager [URL] but I don't have a [URL] local group or any groups like are shown in the picture.Â
Info:
Mac mini, Mac OS X (10.7.4)
View 3 Replies
View Related
Jun 3, 2012
updated to 10.7.4 and cannot turn on my Open Directory service in Server Admin. It's there, but says it is stopped, and it won'y start.After reboot it is still the same.
View 3 Replies
View Related
Jun 21, 2012
Adding 10 IMACS with OS 10.7 to my active directory domain. I would like for all users to have the same basic user settings at log in. how I can configure the MAC clients.
Info:
iMac, Mac OS X (10.7.4)
View 1 Replies
View Related
Apr 20, 2012
I'm getting ready to migrate our company server to a new server box. I'm doing a complete clean install, and migrating specific information over (we had some corruptions from the initial installation Lion Server). All our users are in LDAP, not the Local directory, and I can't seem to figure out (and don't have the ability to test) if using the Ser Admin app's Archive feature of Open Directory, will include all LDAP information. My understanding is that if I create an archive and restore to it, then all of my users and there information will be put back like nothing happen, but can't get any clarification on it.
Info:
Macbook Pro, Mac OS X (10.7.2)
View 10 Replies
View Related
Feb 5, 2010
I have been given the attached one-pager with screenshots of how to configure a Windows Outlook client to work with our corporate email system (Exchange).
I want to configure the Mail client on my Mac, however.
Can anyone give me a clue where these things are entered? When I add a new account in Mac Mail, and choose Exchange 2007, I don't see similar fields. My guesses so far have resulted in "the server cannot be contacted on port 443
View 4 Replies
View Related
Mar 20, 2012
I'm trying to using Server admin on a remote Mac to manage our xserve. Both are running 10.6.8 and I've installed the Server Admin tools onto the mac. Both the Workgroup manager and Server Monitor work OK on the mac, but whenever I try and connect the Server Admin it always comes up with the error : "The login information is incomplete for this server or is not valid. The server failed to accept the login information you provided for <servername>. Check the name and password and try to log on again" I can't connect using the server name, FQDN, or IP address. The macs are all using OD and AD and I've tried both AD and local OD accounts (all administrative) but to no avail. DNS is working OK and I can resolve the server-name with dig and dig -x. I can screen share the server so connectivity isn't the problem.Â
View 8 Replies
View Related
May 22, 2012
I have problem with a clients windows laptop. It used to be able to connect to their companies mac server. But since he got back from a trip the laptop doesn't connect anymore. I can ping the server. And when I try to redo the network drive I'm prompted to enter my credentials. But whatever I enter it doesn't work.I already tried to use SERVERNAMEuser.... and also check security policies.
Info:
Windows XP
View 3 Replies
View Related
Apr 30, 2012
I am running multiple services with the latest version of OS X Server (10.6.8) on my MacMini (web, vpn, mail, ichat, ical, address book, etc.) . Everything has been working fine for the last year and no changes have been made to the server, settings, ISP, or DNS, with the exception of installing the latest system software updates. Now, when I try to open my websites or connect remotely via VPN I get a "cannot connect to sever" message. All other services are still working as they should. The server is hooked up to an Airport Extreme via a cable modem with a static IP. I have tried the following thus far:
1) checked all cables and they are plugged in and seated properly.
2) restarted the server, airport extreme, and cable modem
3) turned Web services off and on again in Server Admin
4) checked the DNS via the web and my site addresses are pointing to my static IP address
5) checked the Airport's port mapping to make sure Web Service was still on
6) checked my websites SSL certificate to make sure it's current and enabled
7) tried disabling SSL
8) created and enabled a new self-signed SSL certificate Â
Recent log activity shows:
Apr 29 11:38:49 xxxxxx-corp org.apache.httpd[47667]: Syntax error on line 13 of /etc/apache2/proxy_sites/0000_any_8443_localhost.conf:
Apr 29 11:38:49 xxxxxx-corp org.apache.httpd[47667]: SSLCertificateKeyFile: file '/etc/certificates/xxxxxx-corp.com xxxxxxxxxxxxxxxxC96C30F1986D48D59D227F1.key.pem' does not exist or is empty
Apr 29 11:38:49 xxxxxx-corp com.apple.launchd[1] (org.apache.httpd[47667]): Exited with exit code: 1
I'm assuming the "key.pem' does not exist or is empty" part is the issue, but I am a novice and have no idea what that means.
Info:
Mac mini, Mac OS X (10.6.7), Server
View 1 Replies
View Related
Jun 3, 2012
is it possible to change a local account to a open directory account
Info:
Mac mini Server (Mid 2011), Mac OS X (10.7.4), Lion Server
View 1 Replies
View Related
Feb 9, 2007
On my Xserve, the Server Admin app has quit working. It wascomplaining that the servermgr_info plugin had failed. NowServer Admin reports the following message;
There is no server available at the address you entered. Xserve Dual 1.33GHz G4
10.4.8 Server Admin 10.4.7I have tried repairing permissions; rebooting; deleting the server admin preference file; ran fsck; using the FQDN, or the127.0.0.1 or hostname.local. Nothing works to get server adminto run again. Server won't run on the local xserve, or from another machine remotely.
View 6 Replies
View Related
Feb 16, 2012
I am currently trying access profile manager on both my macbook air and iphone 4s on local wifi. However, it would just hang when i try to access it via "http://macmini.local/profilemanager". If i try go to go url...I can access url... fine and ping "macmini" fine.
Info:
Mac mini, Mac OS X (10.7.3)
View 2 Replies
View Related
Feb 23, 2012
Is there an option in Mac OS X Lion (10.7.3) where I can set my system to automatically login to my university's remote folders and drives on their network?
Info:
Macbook Pro
View 2 Replies
View Related
