[maccanada]

Redoing from scratch may well be the easiest and most stable option, but we did an article a while back on Kerberos:
[url]https://www.afp548.com/article.php?story=20060714092117916&query=kerberos[/url]

The man page is also fairly useful:
[code]man sso_util[/code]

~Ian

[maccanada]

Let me prefix this with the warning that it’s really early, it’s Monday morning and i haven’t had coffee yet.

The Kerb realm can be created or destroyed using sso_util and the search base for OD would be stored in /etc/openldap/slapd_macosxserver.conf.
There may well be other things that need to be changed.
However, I’ve not tried to hand-craft a change such as this, so I can’t say if changing things like this will work.
You’l also need to check that the new hostname correctly resolves forward and reverse.

~Ian

[maccanada]

Yes – we’ve setup Windows XP to VPN into Tiger Server using IPSEC/L2TP.
You need to make a registry change on the XP machine to enable correct NAT traversal.
See the following kb for details:
[url]http://support.microsoft.com/kb/885407[/url]

~Ian

[maccanada]

For anyone still having the issue with Step 5 ‘Changing password for user…’
I’ve just managed to recreate this in my lab and found a solution.
Try going into AD Users+Computers and right-click on the Computers folder under your domain. Run through the delegate control wizard and ensure the account you are using to bind is given correct permissions (to test you can check off every box).

Then try binding again. After delegating permissions to the Administrator account, the Directory Access bind process completed without issue.

~Ian

[maccanada]

I haven’t checked this, but I you should be able to use LDIFDE to export the users from your Windows server and then import the resulting LDIF file into OD. Of course, this is just a list, no passwords will come through.

[url=http://support.microsoft.com/kb/237677]Microsoft[/url] have an article on the export side.

[maccanada]

I haven’t come across any major disasters doing this. Obviously you’ll be doing the mirror in software.
What have you heard, and more importantly where did you hear it?

[maccanada]

I’m honestly not one for kicking someone when they’re down, but I really don’t like any kind of RAID that doesn’t have redundancy – that is what the R in RAID stands for after all. Both RAID 0 and Concatenated Disk sets offer zero protection and really serve no purpose other than increasing the likelihood of disaster because when one compnent fails, everything goes.

For what it’s worth Apple does have a [url=http://docs.info.apple.com/article.html?artnum=304511]KB article[/url] telling you how to do the firmware update on a system booting from a software RAID set. Not that it’s an awful lot of use to you now.

Someone who’s looked into RAID headers may have something to add here, and I’d hazard a guess that that is all that needs to be fixed, but I don’t have any advice aside from getting on the phone to Drivesavers. Sorry.

[maccanada]

Multicast IP addresses do not begin with 10.x.x.x
Here are some references:
[url=http://www.iana.org/assignments/multicast-addresses]IANA[/url]
[url=http://www.bombich.com/mactips/multicast.html]Mike Bombich[/url]
[url=http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/ipmulti.htm]Cisco[/url]

~Ian

[maccanada]

Have you tried holding down the option key while dropping the file?

~Ian

[maccanada]

The updates are stored in /usr/share/swupd – you can try installing one directly without going through Software Update.
Obviously as a last resort, you could delete them all and get your server to re-mirror them.

~Ian

[maccanada]

Local accounts will always hit before the network ones, so if they have the same short name, they’ll always log in to the local account rather than the OD one, so you’ll have to change one of them.

[maccanada]

How are the rest of the drives on that side of the XSR configured?

[maccanada]

Check out Andrina’s HPC article and look for pdsh

~Ian

[maccanada]

Check your DNS.

host hostname

and

host ipaddress

should come back with correct responses.
Check your hostname is set correctly too with ‘hostname’

~Ian

[maccanada]

defaults delete com.apple.SoftwareUpdate CatalogURL

~Ian

[Author]

Posts