AFP548 - Topic: 10.4 server connected to a directory system (AD)

This topic has 1 reply, 1 voice, and was last updated 19 years, 7 months ago by chwebster.

Viewing 2 posts - 1 through 2 (of 2 total)

Author

Posts
September 8, 2005 at 9:03 pm #363181

chwebster
Participant

I am trying to get a test 10.4 server connected to my AD domain so that I can make this server a plain old AFP file server whose permissions are controlled by the AD user or group. I was able to bind fine and join the Kerberos realm fine.

When I go into WGM, I can see all my AD users. I can drag them into the ACL of the folder I shared. However if I click off that folder and click back in, the user name disappears and is replaced with a long number. In addition if I try to log into the server with that user it tells me the user is invalid or bad password.

Shouldn’t this be pretty straightforward?

I had a problem with users with spaces in the short name also and I fixed that and am still having a problem on my 10.4 file server.

Craig

September 9, 2005 at 1:30 pm #363189

chwebster
Participant

I double checked my Directory Access authentication tab and for some reason the AD custom path wasn’t listed. I added that in and restarted the server and it is now keeping the users properly in WGM as their username.

I was able to log in to the AFP server from a Mac client using the AD user. However I have one AD user whose names are different in AD (Pre-Windows 2000 name vs just plain User logon name) and that user cannot log into the AFP server. I need to find some documentation on what fields to map the schema to – on both the AD and the OS X side.

Craig
Author

Posts

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

Comments are closed

Copyright © 2025 AFP548. All Rights Reserved.