Home Forums OS X Server and Client Discussion Questions and Answers Adding users to workgroup manager failing

Viewing 5 posts - 1 through 5 (of 5 total)
  • Author
    Posts
  • August 19, 2011 at 12:48 pm #381108
    gseifert
    Participant

    I have a 10.6.8 image for MacBooks, deployed with Deploy Studio. I manage things from a MBP running Lion.
    As I was getting carts ready for school opening, I noticed that everything works great except adding users to WGM. They appear, and I can click add, then the screen shows no machines added, yet the save button goes live, as if I had.

    I have tried using no binding via DeployStudio, setting up a 10.6.8 machine to do management with proper set of server tools, to no avail. Machines not imaged add easily!

    I have to rename the machines Bonjour name via ARD after they are imaged, just due to the way we name our machines.

    I am at a complete loss as to why this is happening. I admit to not being Mr. Syntax in being able to interpret logs, etc., but am trying to nail this asap, since I have roughly 120 machines to do in less than a week. 🙂

    Any ideas, anyone seen this before??

    Take care, and make it a great school year!
    gar
    [email protected]

    August 22, 2011 at 1:36 pm #381111
    gseifert
    Participant

    No one has ever had this happen?

    Could really use some direction.

    TIA

    September 12, 2011 at 5:47 pm #381170
    tlarkin
    Participant

    So you are doing authenticated binds to OD then? You must do an authenticated bind for the computer name to show up in the computer lists section of WGM.

    September 19, 2011 at 1:59 am #381203
    electrowave
    Participant

    I am going to assume since you used deploy studio and imaged them from the same machine you may have to destroy and recreate the Local KDC.

    If this fixes it, the cause was due to the LKDC being a duplicate from the master image. When imaging it carries over the same LKDC causing the server to believe it is a duplicate machine.

    To fix this follow these steps:

    1) In the Utilities folder, open Keychain Access. In the System keychain, find and delete the three com.apple.kerberos.kdc entries – a certificate and a public/private key pair generated from that certificate.
    2) In Terminal, run ‘sudo rm -fr /var/db/krb5kdc’ – this will destroy the local KDC database.
    3) In Terminal, run ‘sudo /usr/libexec/configureLocalKDC’ – this will regenerate the local KDC database, including a new certificate and SHA1 hash.
    4) Bind the machine to OD.

    October 20, 2011 at 8:25 am #381323
    garyuk
    Participant

    Hi

    Wonder if anyone can help.

    Have been using the above method in 10.5 for a few years now and it has worked well.

    However I have just built a new image for 10.6.8. Everything was going fine until the last step.

    I opened up Keychain Access to delete the three KDC keys but they were not there. Now in the past when revisiting an image a Repair permissions and reboot brought them back.

    But this is not working.

    Also worrying is the the three system default keys are not there either.

    I really need to get this new image out by Monday but I am at a total loss why the three KDC entries are not there.

    Any help or suggestions would be greatly appreciated.

  • Author
    Posts
Viewing 5 posts - 1 through 5 (of 5 total)
  • You must be logged in to reply to this topic.

Comments are closed

Copyright © 2025 AFP548. All Rights Reserved.