Home Forums OS X Server and Client Discussion Active Directory AD and OD playing together

Viewing 5 posts - 1 through 5 (of 5 total)
  • Author
    Posts
  • August 7, 2006 at 8:27 pm #366773
    jchristiansen
    Participant

    I am working on setting up Active Directory and Open Directory as outlined in the article posted here. Everything was working great. So far I can log in to the AD server, and mount my home directory. Works like a charm. I then tried to add the OD to Dir Services on the client. Everything still works fine, but I never get a managed enviroment. I have tried managing both the computer and the user I am logging in as. The AD user is part of an OD group that is managed. I am getting all my users in Workgroup Manager from AD, so that part is working OK.

    The only hint I have is an error in Console:
    Aug 7 15:17:44 Student-Test DirectoryService[47]: DSLDAPv3PlugIn: Required Policies not Supported: No ClearText. LDAP Connection for Node alpha.hdnet.net denied.
    Aug 7 15:17:44 Student-Test DirectoryService[47]: DSLDAPv3PlugIn: Policy Violation. Disabled future attempts to bind to [10.0.2.14] for 1 hour.

    Thanks for any help you can offer!

    August 15, 2006 at 8:45 pm #366817
    arekdreyer
    Member

    Are you using trusted binding to bind the client to the ODM?

    August 18, 2006 at 9:10 pm #366848
    jchristiansen
    Participant

    I found the issue. The server by default was not set to “disable clear text passwords”, and the client AD plugin was set to disable clear text passwords. I found they had to match, and set them both to not disable clear text passwords. Hope that helps someoen in the future.

    August 21, 2006 at 5:26 pm #366873
    arekdreyer
    Member

    In my experience, “disable clear text passwords” is enabled by default for all clients, and I’ve only seen the “DSLDAPv3PlugIn: Required Policies not Supported: No ClearText. LDAP Connection for Node xx.yy.zz denied.” message if using trusted binding.

    October 13, 2006 at 8:45 pm #367278
    stickboy11
    Participant

    I just had problems binding a 10.4.8 client to a 10.4.7 server. I was getting the clear text error in my client’s system.log. A manual bind fixed it, and within seconds I saw this in my /var/log/system.log:

    Oct 13 13:37:51 administrators-imac-g5 mDNSResponder: Service “Administrator’s iMac G5._sftp-ssh._tcp.local.” renamed to “Lab 10”
    Oct 13 13:37:51 administrators-imac-g5 mDNSResponder: Service “Administrator’s iMac G5._ssh._tcp.local.” renamed to “Lab 10”

    Neat. 🙂

  • Author
    Posts
Viewing 5 posts - 1 through 5 (of 5 total)
  • You must be logged in to reply to this topic.

Comments are closed

Copyright © 2025 AFP548. All Rights Reserved.