+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 20
Mac Thread, Macs with AD integration - home folder error in Technical; Hello, I've recently bought a Mac mini server and have been playing around with AD/OD integration. I've got my macs ...
  1. #1

    Join Date
    Oct 2005
    Posts
    824
    Thank Post
    51
    Thanked 111 Times in 101 Posts
    Rep Power
    63

    Macs with AD integration - home folder error

    Hello,

    I've recently bought a Mac mini server and have been playing around with AD/OD integration.

    I've got my macs bound to AD and OD, and I've set the AD binding to map the user's home folder based on the entry in AD.

    I've got three issues that I'd quite like help with...

    Number 1:
    The home directory mapping seems to be working absolutely fine for staff (the home folder connects without a problem) - but it doesn't work for pupils at all - I always get a message:

    "The home folder for user "bananas" is not located in the usual place or cannot be accessed.
    The home or users folder may have been moved or deleted. If the home folder is locatedon the network, the server may be unavailable temporarily."

    Any ideas? The user can connect to the folder absolutely fine by using "Go --> Connect to Server" which is odd.

    Issue number 2:
    If I sucessfully login using an AD account, then logout and try and login again using a different AD account I get a message "You are unable to log in to the user account "bananas" at this time" (Logging in to the account failed because an error occurred).
    What's going on there?!

    Issue number 3:
    When the system boots up it takes it a brief moment to show the "Other..." user logon option. Then if I choose that to logon using an AD account it takes a few attempts (or a minute of waiting or so) before the user will authenticate properly.

    Having been initially skeptical about having Mac integration there was a brief moment when I got excited about the prospect when I got it working nicely on my macbook. Now that I've discovered these other little quirks I'm now back to being a bit skeptical.

    I'd be really grateful for any pointers.

    Thanks,

    Ant

  2. #2
    HallX's Avatar
    Join Date
    Mar 2007
    Location
    Doncaster
    Posts
    237
    Thank Post
    22
    Thanked 26 Times in 21 Posts
    Rep Power
    20
    Does your AD domain end in .local?

  3. #3

    Join Date
    Oct 2005
    Posts
    824
    Thank Post
    51
    Thanked 111 Times in 101 Posts
    Rep Power
    63
    Nope... no bonjour issues here!

  4. #4

    Join Date
    Oct 2005
    Posts
    824
    Thank Post
    51
    Thanked 111 Times in 101 Posts
    Rep Power
    63
    Further investigation shows that I get these issues on 10.5 and 10.6... bah!

  5. #5

    Join Date
    Oct 2005
    Posts
    824
    Thank Post
    51
    Thanked 111 Times in 101 Posts
    Rep Power
    63
    Hmm... found this (Mac OS X v10.6: Successive Active Directory users receive "You are unable to log in to the user account (username) at this time" alert) relating to issue number 2 - but I can't find the file it refers to in the KB article. In fact I can't even find a folder called "etc".

    Surely it's on the MacOSX volume somewhere?!

  6. #6

    Join Date
    Oct 2005
    Posts
    824
    Thank Post
    51
    Thanked 111 Times in 101 Posts
    Rep Power
    63
    Ah... I seem to be answering my own questions. (It's like an online version of talking to yourself and slowly slipping into insanity).

    So... the fix above works for 10.5 as well as 10.6. Turns out that you need to pretend that your mac is a linux box, use a terminal and vi to edit the file. Who knew?! ;-)

    Wow... one down... two to go.

    I thought these mac things were supposed to "just work". Still, I do like the shiny loveliness of my Macbook Air.

  7. #7

    Join Date
    Jun 2009
    Location
    Birmingham
    Posts
    600
    Thank Post
    92
    Thanked 72 Times in 64 Posts
    Rep Power
    24
    Getting a bit lost here. Which bit have you solved and which bit is still not working?

  8. #8

    Join Date
    Oct 2005
    Posts
    824
    Thank Post
    51
    Thanked 111 Times in 101 Posts
    Rep Power
    63
    Sorry about that - I did ramble a bit.

    Issue number 2 is solved.

    Issue 1 and 3 still here...

  9. #9

    Join Date
    Jan 2008
    Location
    Cheshire, UK
    Posts
    340
    Thank Post
    68
    Thanked 60 Times in 42 Posts
    Rep Power
    48
    Quote Originally Posted by pantscat View Post
    Issue number 2:
    If I sucessfully login using an AD account, then logout and try and login again using a different AD account I get a message "You are unable to log in to the user account "bananas" at this time" (Logging in to the account failed because an error occurred).
    What's going on there?!
    I had the same problem. What does
    Code:
    nslookup yourdomain.local
    give you. It should return a list of all the DC's available on your network, in mine there was an extra entry which was not a DC. Removing it seems to have resolved the problem here (staff are not reporting any problems at least!).

  10. #10

    Join Date
    Oct 2005
    Posts
    824
    Thank Post
    51
    Thanked 111 Times in 101 Posts
    Rep Power
    63
    Already checked out DNS - it's all hunky-dory.
    Just my normal three DCs.

  11. #11

    Join Date
    Jun 2009
    Location
    Birmingham
    Posts
    600
    Thank Post
    92
    Thanked 72 Times in 64 Posts
    Rep Power
    24
    Quote Originally Posted by pantscat View Post
    Number 1:
    The home directory mapping seems to be working absolutely fine for staff (the home folder connects without a problem) - but it doesn't work for pupils at all - I always get a message:

    "The home folder for user "bananas" is not located in the usual place or cannot be accessed.
    The home or users folder may have been moved or deleted. If the home folder is locatedon the network, the server may be unavailable temporarily."

    Any ideas? The user can connect to the folder absolutely fine by using "Go --> Connect to Server" which is odd.
    I found this to be a permission problem on the home folders. I'm presuming your home folders on on your normal Windows box in a format that looks something like \\server\users\students\bananas
    \\server\users\teachers\bananas_teachers
    Then they need to be able to read the student level folder, not just bananas to allow it to mount it at login.
    I don't know why, or if this is the best way of doing it, but it seems to work.

    Quote Originally Posted by pantscat View Post
    Issue number 3:
    When the system boots up it takes it a brief moment to show the "Other..." user logon option. Then if I choose that to logon using an AD account it takes a few attempts (or a minute of waiting or so) before the user will authenticate properly.
    Using the managed preferences, just remove the Other and have only username and password showing. Then when the light goes green you are good to go.

    Our Macs work well now, but it does take some tweaking to get right.

  12. Thanks to Tricky_Dicky from:

    pantscat (27th January 2011)

  13. #12

    Join Date
    Oct 2005
    Posts
    824
    Thank Post
    51
    Thanked 111 Times in 101 Posts
    Rep Power
    63
    @Tricky_Dicky - Ah! I did wonder if it was a permissions issue... but didn't really think too much about it. That makes sense now - I'll try it with a test user and report back.

    Thanks - I'll try changing the logon box and see how it goes!

    Have changed to "username and password" showing... but I can't see a green light... am I being dim?
    Last edited by pantscat; 27th January 2011 at 02:28 PM. Reason: Quick update...

  14. #13

    Join Date
    Jun 2009
    Location
    Birmingham
    Posts
    600
    Thank Post
    92
    Thanked 72 Times in 64 Posts
    Rep Power
    24
    The green light: Can you see above the username and password boxes you probably have the machine name? If you click on it it will scroll through various pieces of information such as time and date, IP address and then network account status.

  15. Thanks to Tricky_Dicky from:

    pantscat (27th January 2011)

  16. #14

    Join Date
    Oct 2005
    Posts
    824
    Thank Post
    51
    Thanked 111 Times in 101 Posts
    Rep Power
    63
    I never knew that! Genius! I owe you a beer...

    Is there a way to make it default to displaying the 'green light'?
    Last edited by pantscat; 27th January 2011 at 02:41 PM. Reason: ETA

  17. #15

    Join Date
    Jun 2009
    Location
    Birmingham
    Posts
    600
    Thank Post
    92
    Thanked 72 Times in 64 Posts
    Rep Power
    24
    Lol, it's one of the very handy little tips that macs are full of but are a nightmare to find.

    It will normally retain the one you last left it on.

    Is everything else working now?

SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. Replies: 10
    Last Post: 22nd November 2010, 07:15 AM
  2. Replies: 2
    Last Post: 9th November 2010, 03:40 PM
  3. Home Folder Error Message
    By Neville in forum Mac
    Replies: 3
    Last Post: 5th February 2010, 08:46 AM
  4. Moodle Error log for LDAP integration
    By apearce in forum Virtual Learning Platforms
    Replies: 4
    Last Post: 19th November 2008, 12:36 PM
  5. Macs integration-where to next?
    By HodgeHi in forum Mac
    Replies: 0
    Last Post: 19th November 2007, 12:49 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •