Home Forums OS X Server and Client Discussion File Serving AFP Sharepoint issue…

Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • August 12, 2008 at 3:22 pm #373715
    Bimmerworld
    Participant

    Hello all. Working on a new 10.5.4 OD setup and having a slight issue with
    getting an AFP sharepoint to mount on a client workstation.

    Server and client are both 10.5.4, when the client attempts to login you can
    see “try” to log in, in the AFP logs, however it logs out almost
    instantaneously.

    The client gives the following message at the loginwindow:

    “You are unable to login to the account “x” at this time. Logging in to the
    account failed because an error occurred.

    Checking the servers system log, the following is logged:

    ODMaster /usr/libexec/mount_url [5519]: The address for odmaster.x.loc is a
    local address, not allowed!

    Any insights would (as always) be much appreciated!

    August 13, 2008 at 1:31 am #373726
    Bimmerworld
    Participant

    Re-did/reinstalled the whole setup today with a better DNS setup.

    Domain Name is now “x.net”
    OD Master is “odmaster.x.net”

    All forward/reverse DNS is working properly. AD servers hosting DNS with all Mac server/OD records added.

    Re-setup the “golden triangle” setup, and still having the same issues.

    Interestingly enough if I set the client machines (also 10.5.4) AD plugin to use “SMB Homes” it works, but when switched to “AFP Homes” it exhibits the same behavior as before.

    If I manually (apple-K) log into the AFP share with a test user (from AD) it works just fine. It seems only to tweak out when trying to use AFP homes via the AD plug in.

    The user home inside of AD is set to “\\odmaster.x.net\Staff”, ive also tried it with “\\odmaster\Staff”

    August 13, 2008 at 2:41 pm #373735
    Bimmerworld
    Participant

    Logged into client machine with test user after disabling AD plugin “derive home directory…” setting.

    Cannot mount AFP share without entering username/pw

    CAN mount SMB share without entering username/pw

    Could this mean AFP is not getting kerberized properly? How would I check/correct this if it is the case?

    August 14, 2008 at 2:51 am #373744
    Bimmerworld
    Participant

    More fun today.

    Reinstalled the server/updated it etc.

    All DNS/hostnames working
    Bound to AD
    Set up OD master
    Kerberized it

    And tried the following experiment…

    Bound a 10.5.4 client to ONLY AD and configured it’s AD plugin NOT to use any network homes.

    Logged into the client, and did an “Apple-K” to “afp://odmaster.x.net”

    And it allowed me to get to the share WITHOUT the authentication window popping up (Kerberized I assume)

    As soon as add the network home location in AD, and set the clients AD plugin to use it via AFP, it exhibits the same behavior as before. (can’t login because of error blah blah, AFP logs a quick login/logout for the user). When set to client’s AD plugin is set to SMB homes, it works just fine.

  • Author
    Posts
Viewing 4 posts - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.

Comments are closed

Copyright © 2025 AFP548. All Rights Reserved.