802.1x Login Window Profile..

Similar Messages

• AD Radius 802.1x Login Window Connection Problems

  Mac Mini/10.10.1
  I'm using two profile manager profiles for testing:
  1. AD Certificate
      Installs certificate for AD Certificate Authority.
       Requests Machine Certificate from CA
  2. Network Settings
       Network Payload:
            Interface WIFI
            SSID our 802.1x SSID
            Auto Join - Checked
            Security Type - WPA / WPA2 Enterprise
            Use as Login Window Config - Checked
            EAP Types: PEAP
            Use Directory Auth - Checked
  Issue:
       Certificate services work fine, login window works fine. User is able to login and authenticate to wireless. However users are experiencing problems with computer sleep, roaming on network etc. I can simulate their problems by turning off air port and back on while logged in. What I'm seeing happen is that when airport is turned back on, it begins to connect to the 802.1x wireless network but does not authenticate does not receive an IP address. eventually resulting in self assigned address. If I press the connect button it will then authenticate and work as expected.
  Why is it necessary to press the connect button, why does it not automatically connect? Am I doing something incorrect or is this normal behavior?
  Going into network preferences, choosing wifi adapter and clicking connect is too much to expect from my users. And it would be annoying even for me if this happened every time I went offline.
  Thank you for suggestions.
  Joe

  Hi Geoffrey,
  I would like to know if
  EAP-TLS wireless authentication has been used since it uses user and computer certificates to authenticate wireless access clients.
  Please try to use NPS wizard to configure 802.1x wireless connection,
  and
  you will find that it
  creates new connection request policy and network policy. Network policy NAS Port type will be "Wireless -Other OR Wireless -IEEE 802.11".If
  you
  need filter by user and computer account, the log should show both authenticate user and machine account name.
  EAP-TLS-based Authenticated Wireless Access Design
  http://technet.microsoft.com/en-us/library/dd348478(WS.10).aspx
  Regards, Rick Tan

• Anyone using 802.1x credentials from login window

  I have created a multitude of mobile configs in profile manager(server) but cannot get it to pass the user credentials from the login window in the dot1x reply to an identify, it always uses the machine name.  Has anyone done this ? Windows does it fine(machine credentials when no one logged on and username/password when they log on) and from what I can glean online it looks like it should be doable. It also looks like I ought to be able to use the domain\userid format when logging on but it doesn't seem to recognize that - traces show no activity(dot1x or ldap) when used.

  I am having the same problem at my university network. I believe it has something to do with this part of the article you quoted:
  "Once configured, when a network user enters their user name and password at the Mac OS X login window, the system attempts to connect to the 802.1X network with the same user name and password. This connection is necessary to authenticate the user to a network server."
  It's not perfectly clear, but it seems the username and password for the 802.1X connection must match the username and password at login. Lame, if you ask me.
  I'm also having a different problem on my network: My wife and I have separate accounts on our Mac, and every time we switch between users the 802.1X disconnects for some reason. Very annoying, but I guess it has something to do with a genuine user authentication - not a computer authentication, if that makes sense.

• Can I have multiple libraries under different Windows profiles/logins?

  My brother and I currently share the same Windows Vista computer. In a few months we'll separate as he moves on to an iMac, but for now if he wanted to setup under his own Windows profile/login another iTunes library can he? One obviously where he'd login under his own Apple Id and containing his own iTunes music library including only his purchases from the iTunes Store. Can this be done and done easily?

  Yes of course. If your HD has space, make a complete copy of the entire library under his new login. Then, you can each delete stuff you don't want. From that point on, you can manage your own libraries independently.
  When the time comes, he can copy "his" library to his new computer.

• Internet connect: Exporting 802.1x config to login window

  Hi,
  We are trying to setup our macbooks to login to our wireless network by authenticating against active directory. I've followed all the steps in the following article
  http://docs.info.apple.com/article.html?artnum=303471
  but as far as I can see internet connect is failing to export the 802.1x config to the login window as nothing is being added to the com.apple.loginwindow plist file and the login doesn't work.
  Has anyone managed to do this?
  Does anyone know the setting to manually add to the com.apple.loginwindow file to make it work?
  Thanks
  Louis
  Macbook/Imac   Mac OS X (10.4.10)  

  I am having the same problem at my university network. I believe it has something to do with this part of the article you quoted:
  "Once configured, when a network user enters their user name and password at the Mac OS X login window, the system attempts to connect to the 802.1X network with the same user name and password. This connection is necessary to authenticate the user to a network server."
  It's not perfectly clear, but it seems the username and password for the 802.1X connection must match the username and password at login. Lame, if you ask me.
  I'm also having a different problem on my network: My wife and I have separate accounts on our Mac, and every time we switch between users the 802.1X disconnects for some reason. Very annoying, but I guess it has something to do with a genuine user authentication - not a computer authentication, if that makes sense.

• Login Window Color Profile Problem

  I just upgraded my Mac Pro from 10.4.11 to 10.5.8 and finally to 10.6. I downloaded the 10.6.4 Combo update and all was fine. When I ran the next round of updates, which included the “Snow Leopard Graphics Update,” my calibrated display color profile was switched to the standard “VGA Display” color profile. That in itself wasn’t a big deal as I readily switched it back (on all 3 user accounts) but, the Login window now uses the standard “VGA Display” color profile and it looks terrible. I have a NEC MultiSync P1150 19” VGA CRT. The video card is the nVidia 7300GT that came with the Mac. This monitor was one I originally spec’d for a friend of mine back in the late 1990’s (MFG date is 1997) and the color is so good yet that I see no reason to replace it. The monitor is not the issue here.
  My question; Is there a .conf file for the login window that I can edit so it selects my calibrated color profile instead? I’ve read the articles http://support.apple.com/kb/DL1083 and http://support.apple.com/kb/HT4286 and it doesn’t appear that I even need this update.
  I imaged my hard drive after each OS upgrade so I have a day old image to revert to 10.5.8 if needed and then run the updates again (this time skipping the graphic update) but, I would rather not have to spend the several hours to revert and upgrade again.
  I have some experience with command line editing in Unix/Linux. I just need to know the correct file(s) to edit. Also, do I have to enable the Root user to do this? I seem to remember reading somewhere that the Root user by default is not enabled in Mac OSX.
  TIA…..Paul

  So, I went ahead and restored from my 10.5.8 image. I upgraded to 10.6 and the login screen matches my user color profile. After the upgrade to 10.6, OSX changed the default color profile to “VGA Display” instead of the “VGA Display Calibrated” profile I had created back in 10.4.11. This uncalibrated color profile looked fine at this point so I left it at that setting. It actually looked a little better that my older calibrated profile. So, no real problem here.
  BTW the older calibrated profile was created using OSX calibration tools in 10.4.x. I’m going to calibrate again in 10.6.4 and see what it looks like. This monitor has excellent color. Game play is super and film photography editing on it has always reproduced very nice matching images.
  I then updated from 10.6 to 10.6.4 with no additional updates applied. The problem with the “Color Profile Challenged Login Screen” happened after the 10.6.4 Combo Update. The “VGA Display” profile had somehow been altered. I switched to Apple RGB and that matched the pre-10.6.4 VGA Display profile.
  Apparently I wasn’t paying close enough attention during the first install. I can deduce at this point that the graphics update wasn’t the problem as I had previously reported. I did set each user color profile to Apple RGB but the login window stays at altered VGA Display. I don’t feel like experimenting with previous combo updates to identify which one is the culprit. I had a few nights to work this out and now I want to get back to using my Mac for other things. I’m going to go ahead and run the rest of the other updates including the graphics update.
  I hope I can get an answer here to see if there is a conf file I can edit to set the login window to use a color profile of my choice. It’s a minor but glaring annoyance that a slightly Monk’ish person like me would like to remedy.
  Otherwise, the system runs fine (even with only 1GB RAM) and my CS1 suite appears to have full functionality.
  TAIA…..Paul

• How can i change the image just above password entry on login window

  I recently discovered that the image on my login window, right above where I type my password, has changed. It used to be the photo the computer took of me when I first set up my MacBook Pro. Now for some reason, the image has changed to a baseball! How do I change this?

  It's something you set up when you made your user profile. You selected the OS version to be displayed in your profile. It's what we see in your original topic post:
  MacBook Pro, Mac OS X (10.5.8)
  I don't know if you see that yourself of if see mine, for example.

• Folder Redirection policy is not applied to a user, when the server target is changed, but works after resetting the windows profile.

  Folder Redirection policy is not applied to a user, when the server target is changed. 
  After server target is changed via group policy, when user login  (roaming profile)first time, the the new server target has not been applied, instead it's pointing to the old folder redirection path.
  But if we reset the windows profile (roaming ), the new folder redirection works, can you please specify a solutions that the new folder redirection works when the user login for the first time. so it reduce the time on resetting users profile.
  it seems that we need to delete the old folder redirection path from the user profile (roaming user profile) via group policy or similar solutions..
  Many Thanks

  >   But when the specific users login they all get the same error, it
  Is the old server removed from the domain? Seems so - or some other
  authentication related issue, hard to tell from here...
  > seems that the roaming user profiles still keeps the old server details,
  Yes - if you change redirection targets, FR moves content from old to
  new, and only if this ends sucessfully, it will update the redirection
  target.
  Make the old redirection target accessible to the user and you'll be fine.
  Martin
  Mal ein
  GUTES Buch über GPOs lesen?
  NO THEY ARE NOT EVIL, if you know what you are doing:
  Good or bad GPOs?
  And if IT bothers me - coke bottle design refreshment :))

• New iTunes, Login Window won't open

  After installing iTunes 7.02 last night, I tried opening it. Unfortunetly it slowed the computer down a lot and I forced quit it. Later when I turned on my computer to use again, it acted very slowly, taking 45 minutes just to get to where the login window should be. But the loading bar stops just at the very end, and I am deprived of logging on. I tried numerous solutions, including trying to reinstall OS X, It wouldn't let me as there was a newer version, repairing the disk permisions with system profiler, it froze halfway through, repairing the disk with system profiler, it was unbale to repair 1 disk, go into single user mode to fix some plists, try safe booting, it wouldn't work either, I tried to use the Techtool Deluxe program that comes with Apple Care, it wasn't able to boot from that. Please help!

  I just got Tech Tool to turn on, guess it was taking a really long time.

• Desktop won't display after login window

  Hi,
  I'm trying to help my sister in-law with her computer (PowerBook G4). She claimed it was having a lot of problems and thought a clean install would fix things. However she had lost her install discs, and now I've seemed to make things worse.
  I started by trying to back up her computer - copying the hard drive to an external HD. However I kept getting a -36 Error. I then connected her PowerBook G4 to my MacBook Pro (10.5.8 2.33 Intel) via Firewire and in Target mode used Disk Utility to make a disk image. Unfortunately I got the -36 Error again. I Repaired the hard drive with disk utility, but it said everything was fine. Then I read on the forum that the -36 Error meant that it was a corrupt file that was causing the issue. Since it always errored out in the same area, I simply deleted the folder in that area. After that, the disk image worked.
  (This part is bad - I know now, but didn't when I did it:) I then put in the gray install CD from my MacBook Pro (Intel) into her PowerBook G4. I opened the system preferences and changed the startup disk from "Macintosh HD" to my install disk. I restarted the computer... it did not boot up. I connected the two laptops again and force restart in target mode. I was able to eject the CD so that when it restarted again, it reverted back to the "Macintosh HD" This is when I discovered that the gray discs are specific to computer and my plan would not work.
  However, now her computer boots up to the Login window as normal... but when you login... the "blue desktop image with design" displays, but no icons appear. The computer hard drive spins, the monitor will go to sleep and wake up, the trackpad will move the arrow, but no icons and now menus?? I've left it overnight to see if it eventually will change, but nothing changes. If I press keys, the first few won't do anything, but it quickly gets to a point where it just beeps at me each time I press a key.
  I can sign in using single user and already ran the fsck that is mentioned throughout the forums. It (like the disk utility) finds no errors. Any help or advice would be much appreciated.
  Thanks!

  Hi BD & RC,
  The new user reset worked great to allow me to login again. Instead of doing a clean install, I just went through her applications and deleted ones that I thought could be suspect for some of the issues she was having. It seems to be running fine.... with one exception... the Airport won't work.
  When I went into the Network settings, it was stuck in a continuous loop with the error "Another application has changed your network settings." I saw BD's help on another post to go into security and check "Require Password to unlock each secure system preference" to break the loop ( huge THANKS!!). After trying to set up multiple new locations, it finally dawned on me that the Airport was not an option. When went into System Profiler and chose Airport Card, it says "No information found."
  So long story short... it appears that with all the little issues going on on this computer, the monster issue wouldn't have been solved by a clean install anyway (you were right RC)... the Airport Express card must have died.
  I guess she'll either need to start connecting with an ethernet cable or buy a new airport extreme card.
  Thanks for all your help guys!

• New login window over previous one

  last night I was using my mini and installing some applications when the entire system frooze up. Did not see the beach ball at all and couldn't do a "force quit". so I did a hard shut-down. When the system rebooted, I was taken to the login window but non of my profiles were listed. I was presented with a new login window and had to enter a user name and password. but none was working. I then rebooted with the system disk, repaired permissions, but the same thing happened. I also tried to reset the passwords via the system boot disk, but it's saying that I have no users.
  how do I fixed this?

  hey Douglas
  thanks for the response, but I got it solved via the link that I had also posted to:
  http://discussions.apple.com/message.jspa?messageID=1985989#1985989
  thanks for posting.

• Timeline Video Video Not Playing Under Only One Windows Profile

  Hello.  We have an Adobe CS6 install with Premiere Pro version 6.0.5 installed and fully updated.  The problem we are having is that the video playback from the timeline is not working when logged in under one Windows profile only.  The software was originally installed under the "administrator" profile and that is where everything works fine.  However, when Premiere is brought up under the user profile the video playback doesn't work.  I have updated CS6, the video card drivers (NVidia Quadro KV4000), cleaned as many Windows and Adobe caches and verified that the Premiere General Settings are the same under each profile.  Both profiles are domain logins and not local machine profiles and both users have been explicitly granted full administrator rights on the computer.  This issue also just cropped up under the user profile and didn;t occur after initial computer setup in November.  Does anyone have any idea what else we can try?  Thank you, and here are more specs:
  - HP Z820 workstation w/ 3.3GHX Xeon E5-2643 quad core
  - Win 7 64-bit
  - 16GB RAM
  - 1TB 10000RPM boot/system drive
  - 2TB 10000RPM reserved solely as "source" drive for Premiere files
  - 2TB 10000RPM reserved solely as "destination" drive for Premiere files (preview files stored on this drive)
  - external Canopus ADVC110 used for capture of analog video using FireWire connector

  profiles are domain logins and not local machine profiles
  That's often been a problem with Adobe software.

• 10.5 Server / Permissions Windows-Profiles

  Hi,
  got some problems with Windows-Clients connecting to Mac OS X Server 10.5. Profiles are saved on the 10.5 PDC. Login works properly. Profiles are loaded.
  Problem:
  - I login at "windows-client1" with user "test" and make some changes (e.g. create folder on Desktop)
  - I login at "windows-client2" with user "test" - but the files I've created on "windows-client1" are not loaded - but they are saved in the profile on the 10.5 server.
  Seems to be a problem with file permissions. What are correct file permissions for windows profiles?
  Thanks for your help and sorry for my bad english.

  Guest access is enabled for SMB. I'm able to connect with windows client to PDC, created folder are stored on the server. But the profile seems to be loaded with its default settings.
  NTUSER.dat and NTUSER.ini have different file permissions. Tried to propagate permissions, but that didn't help.
  It would help to get informations about proper permissions for the "Profiles" Folder and the Windows Folders.

• Login Problem:  Blank screen after the login window?

  I have a user who has a 2008 MacBook Pro 15" Intel laptop running 10.5.4. It is bound to AD, with managed mobile account on the laptop (cached user credentials). The user is off the LAN right now on a road trip and is having problems logging into the laptop. When she logs in with her user ID and password, the login window takes a long time (15 minutes!) to authenticate her, and then when the login window finally goes away and the user's profile starts to load (expecting to see the Finder, Dock, menu bar UI etc), nothing happens - the screen sits at the default desktop picture and the user's account never loads.
  Her AD password has not expired. She is a local admin on the laptop too.
  Other local user accounts can log into the laptop without problems.
  I have 100+ other identical users who dont have this problem.
  I assume that a user-specific file has been corrupted. Any guess on which ones?

  Due to the number of problems with "upgrading" to this OS level, I suggest you try the very clean and very forceful AutoLoader OS Reload:
  http://supportforums.blackberry.com/t5/BlackBerry-​10-OS-Device-Software/Upgrading-OS10-devices-using​...
  Beware that it is completely destructive...the device will be "like new"...no data, no apps, no accounts, etc. Be sure you take a full backup first, as well as make full manual documentation of all apps, accounts, configurations, etc. Sometimes a restore reintroduces the very corruption one is trying to eliminate, and manual reconfiguration is necessary.
  You can also use this to fall back to a prior OS if you desire...you can install any OS level for which you can find an AutoLoader. (Hint...search over on the CB site!)
  Good luck and let us know!
  Occam's Razor nearly always applies when troubleshooting technology issues!
  If anyone has been helpful to you, please show your appreciation by clicking the button inside of their post. Please click here and read, along with the threads to which it links, for helpful information to guide you as you proceed. I always recommend that you treat your BlackBerry like any other computing device, including using a regular backup schedule...click here for an article with instructions.
  Join our BBM Channels
  BSCF General Channel
  PIN: C0001B7B4   Display/Scan Bar Code
  Knowledge Base Updates
  PIN: C0005A9AA   Display/Scan Bar Code

• When i login to update my existing apps, the login window shows the wrong apple id. and it's all prayed out, i can't change it. how do i solve this problem?

  When I login to update my existing apps, the login window shows the wrong apple id. i cannot change it because it is all grayed out. how do i solve this problem?

  Content and Apple IDs -
  Content is forever tied to the Apple ID that bought it. Apple does not transfer content from one Apple ID to another. Apple does not merge Apple IDs. You will never be able to access your content bought with one Apple ID with a new Apple ID.