Here is my issue. I have searched and searched but never get anything accomplished so I am hoping someone can help me out.
I have Mac Clients, Windows Clients, Windows 2003 Domain, and 40 Mac G5 Xserves. I want to do the Magic Triangle and connect AD and OD on this xserve so my clients can login though AD but be locked down through OD.
I set everything up on the server as follows:
Go into Directory Utility and Join Domain
Go into Server Admin and set the server as Connected to Directory Services
Joined Kerberos to Domain Controller
changed to Open Directory Master
On the Workstation I added the Active Directory Connection, and the Open Directory Connection
Now everything is working fine. I can create a group in Workgroup manager, add my domain accounts and lock them down, then on the machine I can login through the domain and NO problems.
Now here is the issue, I use the mac server to store windows shares (backups run to it)
If I browse to the share (\\technology) it asks me for a username and password.
If I remove OD it goes right through. Sometimes after I set everything up it’ll work for 24hrs, sometimes it will last 20minutes. I cannot fix this issue.
Then when I go back into Workgroup manager to unlock the Workgroup manager the Active directory connection is locked, so when i click to authenticate it will not take my credentials.
I read somewhere to run “sudo kadmin.local -q list_principals” but the responce i get is “No such file or directory while initializing kadmin.local interface”
I have gone into Group Policy and changed
Default Domain Controller Security Settings -> Security Settings -> Local Policies -> Security Options -> Microsoft network server: Digitally sign communications(always)
Default Domain Security Settings -> Security Settings -> Local Policies -> Security Options -> Microsoft network server: Digitally sign communications(always)
to disabled…. Any info I’d appreciate!
.
.
Comments are closed