Home Forums OS X Server and Client Discussion Active Directory Cannot bind 10.5.6 Mac to AD with multiple DCs

Viewing 5 posts - 1 through 5 (of 5 total)
  • Author
    Posts
  • March 17, 2009 at 5:25 pm #375723
    CostasPPC1
    Participant

    The title speaks. I cannot bind 10.5.6 Mac to AD with multiple DCs. Is there anyone found a solution to this?

    Thanks

    Kostas

    May 28, 2009 at 6:57 pm #376326
    bezzoh
    Participant

    A newly built Mac or one that has been previously bound but ‘mysteriously’ stopped working?

    May 28, 2009 at 7:35 pm #376328
    traveler400
    Participant

    I am having the same issue, I’ve provided some detail:

    https://www.afp548.com/forum/viewtopic.php?showtopic=24445

    May 28, 2009 at 8:55 pm #376329
    bezzoh
    Participant

    It is all down to the computer account password changing by the looks of that, however I’ve read 2 conflicting bits of advice on this subject.

    1. set the dsconfigad passinterval to 0 to prevent the Mac from resetting its own password altogether…
    2. set the passinterval to 10 or somewhere along those lines to prompt the mac to initiate the password change rather than a DC which would do it every 14 days…

    I’m still testing…

    May 29, 2009 at 9:11 am #376332
    bezzoh
    Participant

    Came in this morning to another one no longer logging in. One of the kerberos files had again 0kb’d, whereas the other had updated at 7am this morning. the console at that time reflected the following…

    29/05/2009 07:00:14 com.apple.launchctl.System[2] launchctl: Please convert the following to launchd: /etc/mach_init.d/dashboardadvisoryd.plist
    29/05/2009 07:00:14 com.apple.launchd[1] (com.adobe.versioncueCS3) Unknown key: ServiceDescription
    29/05/2009 07:00:14 com.apple.launchd[1] (com.apple.blued) Unknown key for boolean: EnableTransactions
    29/05/2009 07:00:14 com.apple.launchd[1] (org.cups.cupsd) Unknown key: SHAuthorizationRight
    29/05/2009 07:00:14 com.apple.launchd[1] (org.ntp.ntpd) Unknown key: SHAuthorizationRight
    29/05/2009 07:00:27 blued[48] Apple Bluetooth daemon started.
    29/05/2009 07:00:27 com.apple.launchd[1] (com.apple.aslmanager) Throttling respawn: Will start in 2 seconds
    29/05/2009 07:00:28 com.apple.launchd[1] (com.apple.aslmanager) Throttling respawn: Will start in 1 seconds
    29/05/2009 07:00:28 com.apple.launchd[1] (com.apple.aslmanager) Throttling respawn: Will start in 1 seconds
    29/05/2009 07:00:28 DeployStudio Local KDC Configuration[42] LKDC:SHA1.2E372FE784E719C833D4D36252FFD90B6FACAE58
    29/05/2009 07:00:28 com.apple.launchd[1] (com.apple.aslmanager) Throttling respawn: Will start in 1 seconds
    29/05/2009 07:00:28 com.apple.launchd[1] (com.apple.aslmanager) Throttling respawn: Will start in 1 seconds
    29/05/2009 07:00:29 com.mcafee.virusscan.ScanManager[41] kextload: /usr/local/vscanx/Extensions/Virex.kext/ loaded successfully
    29/05/2009 07:00:30 com.apple.launchd[1] (com.mcafee.virusscan.VShieldEPOInterface) Throttling respawn: Will start in 10 seconds
    29/05/2009 07:00:32 com.apple.RemoteDesktop.agent[84] stream had too few bytes
    29/05/2009 07:00:32 org.ntp.ntpd[14] Error : nodename nor servname provided, or not known
    29/05/2009 07:00:33 com.apple.launchd[1] (com.mcafee.virusscan.VShieldEPOInterface) Throttling respawn: Will start in 7 seconds
    29/05/2009 07:00:33 com.apple.launchd[1] (com.mcafee.virusscan.VShieldEPOInterface) Throttling respawn: Will start in 7 seconds
    29/05/2009 07:00:39 com.apple.launchd[1] (com.mcafee.virusscan.VShieldEPOInterface) Throttling respawn: Will start in 1 seconds
    29/05/2009 07:00:40 com.apple.launchd[1] (com.mcafee.virusscan.VShieldEPOInterface) Throttling respawn: Will start in 10 seconds
    29/05/2009 07:00:48 com.apple.KerberosAutoConfig[99] Couldn’t find KerberosClient config record
    29/05/2009 07:00:48 com.apple.launchd[1] (com.apple.KerberosAutoConfig[101]) Check-in of Mach service failed. Already active: com.apple.KerberosAutoConfig
    29/05/2009 07:00:48 com.apple.KerberosAutoConfig[102] Couldn’t find KerberosClient config record
    29/05/2009 07:00:51 com.apple.launchd[1] (com.mcafee.virusscan.VShieldEPOInterface) Throttling respawn: Will start in 9 seconds
    29/05/2009 07:00:59 com.apple.DirectoryServices[32] Enter machine password:
    29/05/2009 07:01:00 com.apple.DirectoryServices[32] Enter machine password:
    29/05/2009 07:01:00 com.apple.DirectoryServices[32] Enter machine password:
    29/05/2009 07:01:01 com.apple.DirectoryServices[32] [2009/05/29 07:01:01, 0, pid=109] /SourceCache/samba/samba-187.7/samba/source/libads/kerberos.c:ads_kinit_password(228)
    29/05/2009 07:01:01 com.apple.DirectoryServices[32] kerberos_kinit_password [email protected] failed: Cannot find KDC for requested realm
    29/05/2009 07:01:01 com.apple.DirectoryServices[32] [2009/05/29 07:01:01, 0, pid=109] /SourceCache/samba/samba-187.7/samba/source/libads/kerberos.c:ads_kinit_password(228)
    29/05/2009 07:01:01 com.apple.DirectoryServices[32] kerberos_kinit_password [email protected] failed: Cannot find KDC for requested realm
    29/05/2009 07:01:01 com.apple.launchd[1] (com.mcafee.virusscan.VShieldEPOInterface) Throttling respawn: Will start in 10 seconds
    29/05/2009 07:01:12 com.apple.launchd[1] (com.mcafee.virusscan.VShieldEPOInterface) Throttling respawn: Will start in 10 seconds
    29/05/2009 07:01:22 com.apple.launchd[1] (com.mcafee.virusscan.VShieldEPOInterface) Throttling respawn: Will start in 10 seconds

    Despite the AV entries, I no longer think this is to blame, its clearly struggling to find a server, and our domain does have multiple dc’s behind firewalls on other sites and i’m worried the clients might be trying to communicate with them.

    Any thoughts and/or suggestions appreciated…

  • Author
    Posts
Viewing 5 posts - 1 through 5 (of 5 total)
  • You must be logged in to reply to this topic.

Comments are closed

Copyright © 2025 AFP548. All Rights Reserved.