Active Directory Home folders problems

[CostasPPC1]

Hello to all of you

We have an AD domain (SBS 2003) and several Macintosh Tiger clients. So far, I had some success binding to AD with the Directory Access.

The problems:

a. Nothing is mounted on Desktop. Only a home folder created in Users. So, I suppose this is not a Network Home folder. It is saved locally on the client machine.

b. Suppose something is mounted on desktop. Is this the users home folder? How the local home and the network home are syncing?

c. When a user changes password, cannot login. Suppose there is some cached info somewhere. Where and what can I do?

Thanks in advance

Kostas

[macinandy]

Hi CostasPPC1, any luck with this? If not what settings are you using when you bind?

[CostasPPC1]

Thanks for the answer.

Ive tried all the binding methods. With all methodes I can bind successfuly, but the home folder is always created in the client machine.

Thanks

Kostas

[macinandy]

Hi again, can you do a dsconfigad -show in the terminal and post the results ?

[CostasPPC1]

Here it is

alexandra:/Users/alexandra root# dsconfigad -show

You are bound to Active Directory:
Active Directory Forest = graphicarts.local
Active Directory Domain = graphicarts.local
Computer Account = alexandra

Advanced Options – User Experience
Create mobile account at login = Disabled
Require confirmation = Enabled
Force home to startup disk = Disabled
Use Windows UNC path for home = Enabled
Network protocol to be used = afp:
Default user Shell = /bin/bash

Advanced Options – Mappings
Mapping UID to attribute = not set
Mapping user GID to attribute = not set
Mapping group GID to attribute = not set

Advanced Options – Administrative
Preferred Domain controller = aldus.graphicarts.local
Allowed admin groups = GRAPHICARTS\domain admins,GRAPHICARTS\enterprise admins
Authentication from any domain = Enabled

Advanced Options – Static maps
None
alexandra:/Users/alexandra root#

Thanks in advance

[macinandy]

Hi Kostas, If everything is setup in the AD acount settings correctly, especially the network home folder using the \\server\share\folder convention then it looks ok. I would change the “Network protocol to be used = afp” to SMB if you’re hosting the homes on your SBS 2003 box and change “Authentication from any domain = Enabled” to disabled. As long as graphicarts is in the search domains in the network settings for TCP/IP for the network interface you’re using and .local is in the Proxy tab under “bypass proxy settings for these hosts and domains” it should be alright.

Give that a go and get back to us.
Cheers

[CostasPPC1]

Thanks for taking time

Well, the network home folder is set up using the \\server\share\folder convention. Ive tried also the “Connect to” (drive letter) blahblah…

I have tried using smb.

The only thing I will try is to set the Authentication from any domain to Disabled.

There is no proxy set up, so I guess I dont need the Proxy conf.

Ill get back. Thank you.

Kostas

[Author]

Posts