[dagothere]

We have used the RM command through Remote Desktop to delete a lab or whatever that has had issues and then rebound them. The only problem I’ve seen with this (not a huge problem) is that it leaves the machine account in AD. If you’re going to rebind the computer with the same names anyways, just say “yes” when it asks you to join the existing account in AD. If you’re using the dsconfigad command to bind, then be sure to use the “force” switch which bind to an existing account.

~iann

[dagothere]

I assume you don’t have the golden triangle setup? If your PC is a part of your AD domain, it can’t login to your OD users. Without AD, you can bind your PC to the OD SMB service. OD will act like a virtual domain controller and will let your PC login with your OD user credentials.

Even with a golden triangle setup, your users would have to be in AD, and then bind your OD Master to your AD domain. Normally, you wouldn’t have ANY pure OD users, the user accounts just come from AD.

Hope this helps.

[dagothere]

Your best bet is to run a UNIX loop/command on the server where the share is. Run this loop from a terminal prompt while working in the directory your share is in (use the “cd” command to work in the root of the share).

for i in `ls -d *`; do chown -R $i:staff $i; chmod -R 700 $i; done

Run that loop (EXACTLY as written, copy and paste it to make sure) and it will loop the user homes by name of the folder and pull the name of that folder to find the user (the name of the folder has to be the same as the users name). It will set that user as the owner (chown -R) and will allow only that user to access that folder and sub folders (chmod -R 700). It will loop through to every folder. Make sure you are logged in as ROOT user or lead the command with sudo to run the command as root.

Example: If you have home folders named Bill, Rob, Joe, and Sam, it will find users in the directory named Bill, Rob, Joe, and Sam and set them as the owner and sole users of that folder.

You can run the main portion of this command on any folder anywhere.
sudo chown -R Sam /homefolder/Sam This command will set Sam as the owner of his homedirectory and sub files. (My home directory folder here is called “homefolder” and the second “Sam” is the folders name. The first Sam is my AD user account)

sudo chmod -R 700 /homefolder/Sam will set the current owner (Sam at this point) to be the sole user of the entire home directory and will dis-allow everyone else. You can drag folders into a terminal prompt to get the exact path names.

email me with any questions [email protected] ~iann

[dagothere]

I have also come into this problem. I need to set this up soon and it has been very frustrating. It seems every manual I look at is a little different and none of them has helped me set it up all the way.

It also seems that if you try this too many times on the Mac server, it will start to act funny and possibly needs to be reinstalled.

Any help from anyone?

[Author]

Posts