Error -14278 during dsconfigldap bind

[sunnyape]

Hello

I’m using a script to bind a collection of 10.6 Macs to a local 10.5 OD server. Sometimes, during the bind, I get a weird error back from the OD server. It is random and, if I wait a few hours and try again, that Mac will usually bind OK.

Here my bind string followed by the verbose logFile results:

—–

dsconfigldap -f -n “Primary” -a $odmaster -c MAC_NAME -u $oduser -p $odpassword -l $localAdmin -q $localAdminPassword -v >> $logFile

—–

Binding Mac to OD server blah.blah.blah
dsconfigldap verbose mode
Options selected by user:
Force authenticated (un)binding option selected
Add server option selected
Server name provided as
LDAP Configuration name provided as Computer ID provided as
Network username provided as
Network user password provided as
Local username provided as
Local user password provided as

Step 1 – Server Information Discovery
Status: Success – Server Responded.

Step 2 – Validating Record/Attribute Mapping
Status: Success – Valid Record/Attribute Mapping

Step 3 – Detecting Required Security Levels and Binding requirements
Status: Success

WARNING: No Security Levels configured by Administrator!

Your LDAP server supports Secure authentication.

Directory Binding is ENABLED but OPTIONAL.

Directory Binding is being Forced as requested.
Step 4 – Attempting to bind computer as MAC_NAME
Status: Failed Error Code -14278

[sunnyape]

I just read the man pages on DirectoryService and can see that the error -14278 converts to ‘ePlugInNotActive’

I know the plug-in is active, as I write the pref file first and restart the service, thus:

[code]defaults write /Library/Preferences/DirectoryService/DirectoryService “LDAPv3” “Active”
killall DirectoryService[/code]

If I manually use the Directory Utility app to do the OD bind, all works well. Any ideas why the OD plug-in sometimes reports that it is not active when doing a bind via dsconfigldap

[Author]

Posts