We have an apple mac server (snow leopard) providing policies to 30+ apple clients (snow leopard) we are using kanaka to integrate novell edirectory with the apples so they can login using normal username and password.
The problem is this:
Sometimes the clients allow users to login without applying any policies from WGM. This results in short docks and all sorts of other issues associated with policies not applying. We have checked our DNS records/settings and they all seem to check out properly, everything can see and contact each other.
I have been unable to source where it is failing during logon and and what stage it attempts to load the policies. We did change the search path in Directory utility to look for the policy server and apply that before looking for the username/password records on the novell server. This has still not fixed the issue.
Has anyone had issues with apple clients not picking up policies from WGM but still allowing users to logon even with an AD integration?
This could be a general issue and not a Kanaka/eDirectory integration issue although im not sure.
I have never had any issues with Policies failing to apply. If they are machine based policies then they are kept on the clients. They even run when the OD isn't even there! I've had laptops that aren't on the network and the policies are still applied. But this is on 10.5.
Have you checked the console for any errors around the time when the policies fail? Would be my first port of call. You may get a hint from there with what's going on.
Also I would make sure that the binds are working correctly. I haven't used kanaka or Novell with OS X Clients (or windows ones for that matter) so am unsure if this could affect things differently with the connections to the AD/OD servers.