+ Post New Thread
Results 1 to 5 of 5
Mac Thread, AD/OD Password and Keychain Syncronisation in Technical; We have 3 suites of Macs (Leopard) here all authenticating against active directory and I'm having problems keeping the Macs ...
  1. #1
    jlucas's Avatar
    Join Date
    Jan 2009
    Location
    Cornwall
    Posts
    125
    Thank Post
    13
    Thanked 15 Times in 9 Posts
    Rep Power
    14

    AD/OD Password and Keychain Syncronisation

    We have 3 suites of Macs (Leopard) here all authenticating against active directory and I'm having problems keeping the Macs keychains in sync with their AD counter-parts.

    Normally if a user has forgotten their password we change it for them from the Windows server but when they log back into the Macs their keychain no longer matches. The main problem is Safari complaining which is starting to drive our Creative and Media students round the bend.

    I've looked into the KeyChain Minder application and looks like it does the job but I'm a bit worried about how well the users will be able to use it.

    Has anyone got any experience in using KeyChain Minder or another more transparent solution?

    Cheers
    James

  2. #2

    Join Date
    May 2006
    Location
    West Bromwich
    Posts
    2,190
    Thank Post
    299
    Thanked 215 Times in 185 Posts
    Rep Power
    56
    From what I understand when a password on the Windows account has been changed, when you log into the Mac it brings up a dialog that tells you that it doesn't match the keychain and so gives you the option to update it.

    Alternatively you could just trash their keychain when an account has had it's password reset.

  3. #3
    morganw's Avatar
    Join Date
    Apr 2009
    Location
    Cambridge
    Posts
    816
    Thank Post
    46
    Thanked 132 Times in 126 Posts
    Rep Power
    39
    I've got the same problem here, I think the problem is that the keychain dialogue boxes that pop require far too much thought to work out what they mean. If you press the right buttons it isn't a problem, but it seems most people just press anything just to get to start working.

    I think the easiest solution is to use a script to delete the keychains every night, but then you wreck it for everyone who does actually understand how to use it.

  4. #4
    Carter's Avatar
    Join Date
    Sep 2010
    Location
    Canada
    Posts
    269
    Thank Post
    10
    Thanked 64 Times in 41 Posts
    Rep Power
    18
    Why use this? I have the default profile set so that when a new AD user logs in, it will copy the default profile and create a new keychain for the user. Login is only a few seconds, no difference from a local user except that it just needs to quick copy the default profile that I built.

    How do you built your default profile? If you need a hand I have a Automator script that I built that runs through and does the needed copying, trashing of unneeded files, cache, keychain, repair permissions, and so on all in one click.

    All I ever do is make the needed adjustments to the local user "default" that I have for building what I want the user to see then once I'm happy I logout to then run the script then that's it, make a copy and deploy.

    When users go to login they get the new profile and so on.

    Hmmm... may have stated more than I needed to in my response :-)

    Let me know if you want to see the script.

    Last edited by Carter; 11th March 2011 at 08:39 PM.

  5. #5
    Carter's Avatar
    Join Date
    Sep 2010
    Location
    Canada
    Posts
    269
    Thank Post
    10
    Thanked 64 Times in 41 Posts
    Rep Power
    18
    Ok, so incase what I posted above may help out with your issue I decided to go ahead and update my document and post it up with the updated script. http://www.edugeek.net/forums/mac/72...-5-10-6-a.html

    Hope this helps


SHARE:
+ Post New Thread

Similar Threads

  1. Keychain problems
    By kevbaz in forum Mac
    Replies: 5
    Last Post: 22nd November 2010, 12:40 PM
  2. Replies: 0
    Last Post: 21st April 2010, 02:47 PM
  3. Keychain Passwords on Safari
    By rolfea in forum Mac
    Replies: 2
    Last Post: 9th December 2008, 01:26 PM
  4. SIMS - NOVA to SQL Syncronisation Warning
    By BKGarry in forum MIS Systems
    Replies: 0
    Last Post: 24th October 2008, 05:47 PM
  5. Keychain issues! ?
    By PRicho in forum Mac
    Replies: 1
    Last Post: 1st February 2008, 03:43 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •