Forum Replies Created

Viewing 15 posts - 1 through 15 (of 581 total)
  • Author
    Posts
  • in reply to: fsockopen(): unable to connect to localhost:2000 #366864
    Anonymous
    Participant

    did you get this issue resolved? I get a similar error. Looks like port 2000
    has to be set for telnet access, but that is not security issue. Posted on
    Apple discussions, but no replies there either.

    in reply to: RAID-5 Network Area Storage Solution or Something Similar #365977
    Anonymous
    Participant

    I’m really surprised that there aren’t any thoughts or answers to this yet.

    in reply to: Getting there ! #365921
    Anonymous
    Participant

    it’s worth noting that allowing guest access to a home share that will actually be used as a home share is a little brain dead, from a security perspective. Students are smart.

    in reply to: Per-user or per-group password policy in OD? #365919
    Anonymous
    Participant

    policies are not currently applied to admin users at all in 10.4.

    in reply to: VeriSign Cert problems on 10.4.4 Server #365904
    Anonymous
    Participant

    Did you find a solution…I’m having the same problem!

    Thanks for any help!

    🙂

    in reply to: Os 10.4.5 server OpenDirectory problem #365624
    Anonymous
    Participant

    This may help:


    typedef enum PWDisableReasonCode {
    kPWDisabledNotSet = 0,
    kPWDisabledByAdmin = 1,
    kPWDisabledExpired = 2,
    kPWDisabledInactive = 3,
    kPWDisabledTooManyFailedLogins = 4
    } PWDisableReasonCode;
    in reply to: VeriSign Cert problems on 10.4.4 Server #365591
    Anonymous
    Participant

    We had to strip out the passphrase to make the cert work with Tiger Server.

    in reply to: kerberos / php on a mac #365253
    Anonymous
    Participant

    pam_auth and kerb is a horrible hack.

    Use the built in mod_gssapi.

    -m

    Anonymous
    Participant

    Override the “Never” setting by holding down the option key at login. It’s much easier than deleting a file.

    in reply to: PHD – after server crashed – Please HELP! #364749
    Anonymous
    Participant

    If all else fails, archive your local account, then delete the whole thing and create it after a network login. You can then restore any missing files from your archived copy.

    in reply to: dot files and PHDs (to sync or not to sync)? #364748
    Anonymous
    Participant

    Adding Full Path ~/. to Background Sync worked for me.

    in reply to: Home directory creation failures #363013
    Anonymous
    Participant

    Okay, so I’ll answer my own question. It turns out I was incorrectly specifying the location for my home directories. I changed it from “afp://xserve.domain.com/Volumes/X-RAID/Users” (which, btw, is what DID work under Jaguar server) to “afp://xxx.xxx.xxx.xxx/Users/” and, voila, it’s now working as advertised! Home directories are automatically created by WGM in the correct location (on my X-RAID) and users can authenticate and log into their accounts configured with portable home directories.

    in reply to: Home directory creation failures #363002
    Anonymous
    Participant

    Bump. I’m having the same problem. Tiger Server 10.4.2 with Users’ home folders on a Fibre Channel attached X-RAID.

    Location of home directories is: “afp://xserve.domain.com/Volumes/X-RAID/Users”. Using WGM “Create Home Now” button and command line “sudo createhomedir -u usershortname” do not generate a home folder. All users are in LDAP directory. Logging onto the server via AFP DOES NOT create the home directory, but user is able to logon and access shares corresponding to his/her access privs.

    Any help would be greatly appreciated.

    in reply to: Connecting Computer to Active Directory #362589
    Anonymous
    Participant

    Joel, when you refer to the DS debug logs what are you talking about?
    I used:
    "sudo killall -USR1 DirectoryService"
    [then]
    "tail -f /Library/Logs/DirectoryService/DirectoryService.debug.log | grep ADPlug"

    I am game to try packet traces to see what is happening, but I have no clue what would be best and what I would be looking for.

    I found the following link on Apples site:

    "http://developer.apple.com/qa/qa2001/qa1176.html"

    …which recommends using one of the following. Since the first is expensive I will probably use tcpdump…

    EtherPeek, Ethereal, FrameSeer, Interarchy, NetMinder, tcpdump (included with all versions of Mac OS X)

    So what exactly will I be looking for here? Will it be a clearly labled "ERROR" or something more subtle?

    You mention common issues at this stage include very locked down security policies on the domain controller. This is a good possibility do I have to turn off digital signing like when setting up SMB shares?

    As far as Time issues, I take it to mean that I need to make sure all clocks are in sync with the DC so that kerberos is happy.

    ~still looking/

    in reply to: Connecting Computer to Active Directory #362573
    Anonymous
    Participant

    steve, i am getting the same thing, it goes through all steps and stop at step 4 which is where i see "[email protected]@my.domain.net"

    kerberos seems to authenticate correctly then it just fails sometimes telling me i don’t have the rights. I am the domain admin. I do have the rights. I also tried manually adding the computer name then just binding with the same name.

    in addition i have done some of the other suggestions on afp for steering my machine more directly to dns including adding the dns server to my list, modifying rendezvous (bonjour), shutting off rendezvous, as well as editing my hosts file. nothing works. I am beginning to think it doesn’t work.

    i have also done several reformats, clean installs, panther, tiger. same deal. i am pretty close to recommending that we blow off the server purchases we are looking at.

    if you find a solution or get it to work can you please post the solution here. i will give it another couple of weeks then I am going to fold up.

    thanks!

Viewing 15 posts - 1 through 15 (of 581 total)