AFP548 - Topic: AD logins only after reboot

This topic has 7 replies, 5 voices, and was last updated 15 years, 2 months ago by mcal27.

Viewing 8 posts - 1 through 8 (of 8 total)

Author

Posts
August 10, 2009 at 9:36 am #376815

Foggy
Participant

10.4 server 10.5 client
AD server is server 2008

After a reboot on the client I can log into any account on the AD and the network home mounts and everything is good. Problem is on log out the next user gets”you cannot log into this account at this time” error. Until I reboot.
Any clues as to where to look to troubleshoot this one?

dsconfigad -show all looks fine, time is synced, server shares are good,

I am only using the AD for authentication and an xServe for the SMB file service. NFS is not running on the server but in WGM under users I see NFS shares turn up (although grey) randomly.
I plan to use another server for machine management but have not set this up yet.

Help much appreciated
Carl

August 10, 2009 at 10:15 am #376816

sheridanp
Participant

Just a quick couple of things, I am no expert… but

Make sure you don’t list the “user names” for the osx login window, but the traditional user name and password dialogue box used by windows and other operating environments, this can be changed in WGM, machine group login preference. Secondly, if you’re using SMB shares a fix that worked for a magic triangle environment that I work at is to disable automount on the workstation, since automout doesn’t work with SMB shares anyway.

To switch off automounting edit the hostconfig file located at /etc/hostconfig and set the AUTOMOUNT value to OFF and then restart.

But hey I am no expert, and for you post your problem online you must be already be pulling your hair out over it… I know I have. 😉

PS Make sure your dns resolution is good, especially if you have multiple dns servers on your network, make sure they are all working as intended.

August 19, 2009 at 1:59 pm #376898

Tom H
Participant

Same problem here with Server 2k3 and 10.5.7 clients…

First user can login fine, but then it will not be able to mount any others home folders until the machine is restarted.

Seems to be a auto mount problem, is there any way to clear them out and the /Network/Servers when a user logs out so that they are clear for the next login ?

August 20, 2009 at 9:50 am #376907

Tom H
Participant

Changing the Automount_Timeout from 3600 to 60 seem to improve the situation, you cannot logout and then straight back in but given a few minutes you can then log back in.

However i need to test what nock on effects this may cause ? and why the default is nearly 1 hour, when even the documentation says its default is 10 minutes ?

November 24, 2009 at 3:09 pm #377565

mbrunt
Participant

Hi – any updates on this? I’m having the exact same problem with 2 suites of 25 macs.

Thanks

February 9, 2010 at 11:06 am #377962

mcal27
Participant

One thing that seems to solve this on every site for me so far is to re-arrange the share setup on the windows server. The default (in my experience) for windows admins is to have every users home as a separate share. In some situations the Macs seem to struggle with this, and if the home folder setup is changed to fewer shares containing multiple home folders then the Macs will operate correctly. Even going so far as to have a single sharepoint with all the user homes in at one site.

Solved the intermittent login issue for me in a flash. It kinda fits as this is closer to the way Mac Server works with home shares.

Al.

ACSA 10.5

February 9, 2010 at 11:08 am #377963

Tom H
Participant

[QUOTE][u]Quote by: Tom+H[/u][p]Changing the Automount_Timeout from 3600 to 60 seem to improve the situation, you cannot logout and then straight back in but given a few minutes you can then log back in.

However i need to test what nock on effects this may cause ? and why the default is nearly 1 hour, when even the documentation says its default is 10 minutes ?[/p][/QUOTE]

This still fixes it every time for us

February 9, 2010 at 3:18 pm #377966

mcal27
Participant

Thanks Tom. I’ll give it a try when next onsite. Would be nice not to have to get the windows admin to jump thru quite so many hoops 🙂

Would also be nice if Apple documented abit more…

Al.

ACSA 10.5
Author

Posts