Authentication Problem

[playdrums]

Need some troubleshooting tips here:

In OD I have a user that I can’t seem to properly change the password for. When I attempted to change the users password the user could no longer log in to a machine bound to OD. However, I WAS able to get Apple’s Kerberos tool to grant me a tgt AND I am able to mount a fileserver with kerberos authentication as this user – both with the new password. The only thing I am unable to do is actually log into a Mac OS X Tiger client machine using those same credentials. The machines are correctly bound to the directory because I am able to log in as another user and this user was able to login before attempting the password change.

The initial password change was attempted via WGM. I’ve also tried changing the pass with pwpolicy. Anyone have any ideas where the wiz-bang OD is going wrong?

This error is being written to system.log on our od master:
/usr/sbin/PasswordService: client response doesn’t match what we generated

[Gerk]

I just ran into a few accounts like this as well. The only solution I found was to delete the account in question, and remake it. To prevent possible headaches I made note of the UID on original account and manually set to the same UID when remaking the account.

This seems to have solved my problems, hope it helps.

edit: I also posted in the Open Mike forum a bigger thread related to this with more info in this thread

[Author]

Posts