Forum Replies Created

Viewing 5 posts - 1 through 5 (of 5 total)
  • Author
    Posts
  • May 11, 2009 at 9:36 pm in reply to: 10.5.4: AD administer group users lose rights when off network #376152
    erd
    Participant

    Thanks, dds. I am not very familiar with dscl. Do I need to add any other text to the command:
    dscl . -append /Groups/admin GroupMembership
    I’m just trying to type it in terminal first to test and then will push out as script.

    Thanks.

    January 8, 2009 at 12:20 am in reply to: 10.5.4: AD administer group users lose rights when off network #375089
    erd
    Participant

    Thank you for the reply, Macleod. I’ll test this out.

    June 2, 2008 at 10:00 pm in reply to: Can’t change user password from command-k (AFP) – OSX server bound to AD #372989
    erd
    Participant

    have computers on 10.4.11 and bound to AD. Just enforced complex password policies in the organization. Prior testing allowed Active Directory users on OS X machines to change their passwords via System Preferences > Accouts > change password.
    Now I get the error message “you cannot change your password to the password you entered.” Does this work for anyone on 10.4.11 still? Only other option would be to install the microsoft UAM software to allow change password from the connect to server option.

    August 11, 2007 at 9:34 am in reply to: Open Directory Changing the Dock #369696
    erd
    Participant

    Don,
    I usually empty the dock out (remove all app icons I don’t want from the standard dock) and then use terminal to copy the new com.apple.dock.plist file from that user to the User Template.
    I think this will create an “empty” dock for any user that hasn’t already been created on the workstation.

    Launch terminal
    at prompt:
    cp (path to empty dock plist) /System/Library/User\ Template/English.lproj/Library/Preferences

    Test the dock appearance by creating a new account on the computer and logging in.

    Hope that helps… not sure how well it will work with network users… I think it does though.

    d

    August 28, 2006 at 9:56 pm in reply to: Mac users on Active Directory keep getting locked out! #366932
    erd
    Participant

    We have just recently moved some OS 10.4.7 users to authenticate to AD. Some users will get locked out on 1 computer and is able to login on the computer next to it.
    Noticed ( on the computer that the user is locked out on ) that NetInfo Manager has the locked-out user name listed twice under users. One of the user’s reports “authentication_authority” is “:DisabledUser;” the other user (same name) reads “;LocalCachedUser;/Active Directory/….”.
    After deleting the disabled user’s name, that user can now log in. The user is not disabled or locked out on the Active Directory side, only on that particular computer.
    Not sure why the computer locks out the user.

  • Author
    Posts
Viewing 5 posts - 1 through 5 (of 5 total)
Copyright © 2025 AFP548. All Rights Reserved.