AD authentication but home directory on OD Server - how to do this?

I would like my users to authenticate to our current AD, but host portable home directories on an AD/OD integrated Mac OS X Leopard server. Any help on how to do this? Thanks.

ps. If anyone knows that this is impossible, please let me know. I'm wondering if this setup is not correct.

Similar Messages

  • I have problem c connecting to cellular data network. There is massage "couldn't activate cellular data network, PDP authentication failure". What is it and how I solve this problem?

    I have problem c connecting to cellular data network. There is massage "couldn't activate cellular data network, PDP authentication failure". What is it and how I solve this problem?

    If you have a data only plan for the iPad with your carrier, if no change after powering your iPad off and on you will need to contact your carrier.

  • When launching Illustrator on Mac OSX 10.9 I get an erro that the program is no longer supported on PowerPC. I tried moving the plug-ins to a different folder as the Adobe site suggested but no luck. Any ideas how to get this launched again? Same issue fo

    When launching Illustrator on Mac OSX 10.9 I get an error that the program is no longer supported on PowerPC. I tried moving the plug-ins to a different folder as the Adobe site suggested but no luck. Any ideas how to get this launched again? Same issue for Photoshop and InDesign

    You will need to uninstall, run the Cleaner tool and reinstall you adobe applications. Adobe apps don't take kindly to inplace updates of the OS on Macs.
    Use the CC Cleaner Tool to solve installation problems | CC, CS3-CS6

  • Every time i have to download the update for iPhone But i have the updated file how to resolve this.

    Every time i have to download the update for iPhone But i have the updated file how to resolve this.
    any prodouct

    i am having the same problem, my error message is that basically it (connection) has timed out! i have tried all day to get it to go thur

  • Creative Cloud locked up and had to Uninstall. Upon reinstall it initializes and downloads 2/3 but then stops every time. How to remedy this?

    Creative Cloud locked up and had to Uninstall. Upon reinstall it initializes and downloads 2/3 but then stops every time. How to remedy this?

    After running cleaner tool, follow below steps :
    End all Adobe process from Task Manager .
    1) Open Control Panel and Navigate to Control Panel\Programs\Programs and Features .
    Under Program and Features list,If present remove Adobe Creative Cloud option.
    2) Open C:drive and navigate to C:\Program Files (x86)\Common Files\Adobe.
    Open Adobe folder and delete folders named Adobe Application Manager and OOBE.
    3) Navigate to C:\Program Files (x86)\Adobe.
    Open Adobe folder and if present delete Adobe Creative Cloud folder.
    4) Press Windows button (located between Ctrl and Alt buttons) along with R button together at a time , you will get a run command window.
    Type in below command and hit 'Enter' key.
    appdata
    Then navigate to Local>Adobe.
    Open Adobe folder and delete folders named AAMUpdater and OOBE.
    5) Click on the below link and download Adobe Application Manager and install the same.
    Once the installation process is completed , it will create shortcut icon on Desktop.
    Double click on it and update, it will get updated to Creative Cloud :
    http://download.adobe.com/pub/adobe/creativesuite/cc/win/ApplicationManager9.0_all.exe

  • Hello again, I'm still learning about my imac so here I go with latest question- I've installed word 2011 and would like to know how to email the document I have just written straight to a recipient but can't seem to find how to do this. Please advise

    Hello again, I'm still learning about my imac so here I go with latest question- I've installed word 2011 and would like to know how to email the document I have just written straight to a recipient but can't seem to find how to do this. Please advise in simple terms
    Also how do I save to a file.
    Thank you clever world!!

    To save you file click the disc icon in the tool bar or file save as:
    To email the Word document to someone compose a new message and click the paper clip to attach the Document.

  • ACL - how to (easily) deny access to everthing but home directory

    I was trying to set up a very restrictive drop box for users to leave and take files from. I set up a special USER and then thought I could use the ACL's to deny access to the system except for the home directory. From reading the documentation I tried the following
    1) at the root level I denied read/write access for USER
    2) at the home directory I allowed read/write access for USER
    and then I tried to 'remove inherited' ACLs. I can't seem to get this to work. USER is always denied. Any help appreciated

    Never mind. I figured out how to do this from the command line using chmod +a to do multiple directories at once. I still don't know why the top level ACL wouldn't propagate to the lower directories but once I did this on the /* directories everything was fine.

  • WLC connect LDAP for Authentication, but could not connect to server

    Hi Everyone, I got a problem when I use WLC 5508 connect to LDAP for authentication, but no luck there, it's a simple config, but not easy to work on my job, I got the following messgae:
    Service Port - Not connected
    Distrubution port include:
         Management Interface - in AP Management VLAN - 30
         Student AP interface - in Student VLAN - 20
         Staff AP interface - in Staff VLAN - 10
    AD is in Staff VLAN - 10
    WLC LDAP Server setting
    Base DN:OU=wws_ou,DC=ww,DC=yc,DC=com,DC=hk
    User Attribute: sAMAccountName
    User Object Type: Person
    Debug aaa all enable message
    *LDAP DB Task 1: Jul 09 01:40:58.969: ldapInitAndBind [1] called lcapi_init (rc = 0 - Success)
    *LDAP DB Task 1: Jul 09 01:41:00.969: ldapInitAndBind [1] configured Method Anonymous lcapi_bind (rc = 1005 - LDAP bind failed)
    *LDAP DB Task 1: Jul 09 01:41:00.969: ldapClose [1] called lcapi_close (rc = 0 - Success)
    *LDAP DB Task 1: Jul 09 01:41:00.969: LDAP server 1 changed state to IDLE
    *LDAP DB Task 1: Jul 09 01:41:00.969: LDAP server 1 changed state to RETRY
    *LDAP DB Task 1: Jul 09 01:41:00.969: LDAP_OPT_REFERRALS = -1
    WLC GUI Log:
    *LDAP DB Task 1: Jul 09 02:56:13.045: %AAA-3-LDAP_CONNECT_SERVER_FAILED: ldap_db.c:1038 Could not connect to LDAP server 1, reason: 1005 (LDAP bind failed).
    *LDAP DB Task 1: Jul 09 02:56:11.045: %AAA-3-LDAP_CONNECT_SERVER_FAILED: ldap_db.c:1038 Could not connect to LDAP server 1, reason: 1005 (LDAP bind failed).
    *LDAP DB Task 1: Jul 09 02:56:09.045: %AAA-3-LDAP_CONNECT_SERVER_FAILED: ldap_db.c:1038 Could not connect to LDAP server 1, reason: 1005 (LDAP bind failed).
    LDP Message of LDAP BaseDN:
    Expanding base 'CN=Frankie F. Yeung,OU=wws_ou,DC=ww,DC=yc,DC=com,DC=hk'...
    Result <0>: (null)
    Matched DNs:
    Getting 1 entries:
    >> Dn: CN=Frankie F. Yeung,OU=wws_ou,DC=ww,DC=yc,DC=com,DC=hk
    4> objectClass: top; person; organizationalPerson; user;
    1> cn: Frankie F. Yeung;
    1> sn: Yeung;
    1> givenName: Frankie;
    1> initials: F;
    1> distinguishedName: CN=Frankie F. Yeung,OU=OU=wws_ou,DC=ww,DC=yc,DC=com,DC=hk;
    1> instanceType: 0x4 = ( IT_WRITE );
    1> whenCreated: 8/10/2011 10:28:14 China Standard Time China Standard Time;
    1> whenChanged: 8/10/2011 10:31:26 China Standard Time China Standard Time;
    1> displayName: Frankie F. Yeung;
    1> uSNCreated: 3850555;
    1> uSNChanged: 3850571;
    1> name: Frankie F. Yeung;
    1> objectGUID: 6ebfc7e9-6989-4f11-bae7-62c23af67edc;
    1> userAccountControl: 0x10200 = ( UF_NORMAL_ACCOUNT | UF_DONT_EXPIRE_PASSWD );
    1> badPwdCount: 0;
    1> codePage: 0;
    1> countryCode: 0;
    1> badPasswordTime: 0;
    1> lastLogoff: 0;
    1> lastLogon: 0;
    1> pwdLastSet: <ldp error <0x0>: cannot format time field;
    1> primaryGroupID: 513;
    1> objectSid: S-1-5-21-3867848445-1581729766-1247451615-2172;
    1> accountExpires: <ldp error <0x0>: cannot format time field;
    1> logonCount: 0;
    1> sAMAccountName: fckyeung;
    1> sAMAccountType: 805306368;
    1> userPrincipalName: [email protected];
    1> objectCategory: CN=Person,CN=Schema,CN=Configuration,OU=wws_ou,DC=ww,DC=yc,DC=com,DC=hk;
    Hope I can resolve this problem ASAP, thanks!

    Your AD is in the Staff Vlan so maybe the WLC uses the Staff interface instead of management to contact the AD. I don't know how you sniffed exactly.
    The comment about eap methods you saw is when you use LDAP with dot1x security. It is the same as saying "You cannot do peap-mschapv2 or eap-fast-mschpv2 with LDAP".
    But you can do LDAP for web authentication, that has no eap methods.
    Your original problem was a binding problem from the WLC, so we can expect that the WLC really is sending traffic towards AD.

  • JDeveloper ESB designer view points a server, how to change this to another

    Hi,
    I have developed a ESB service that deployed and tested on my Local system. Its tested and running well.
    However now I have to develop another service that has to be registered under one of the existing service group.
    But in the eSB designer view I can see only localsysem specific EBS systems/and service groups. How to change this to point to other server.
    -- Khaleel

    Hi Chandrasekhar,
    Thanks for your reply. Yes thats correct. Infact after doing some research finally I got it.
    However I hope a restart of the JDeveloper as a 4th step is required. but it works well.
    Thanks.
    --Khalee                                                                                                                                                                                                                                                                                                                                                                                                                                                                       

  • Ipod touch 4 freezes in middle of video and turns it black but audio still continues to play, how to fix this and what possibly caused it?

    Help out? i was watching a 43 min episode and it works fine in the first like 20 minutes but later on in freezes, it turns the screen completely black afterwards, there's still sound, but theres no video, the screen is completely black while audio continues to play. How to fix this? and what were the possible causes for this?

    Try:
    - Reset the iOS device. Nothing will be lost      
    Reset iOS device: Hold down the On/Off button and the Home button at the same time for at
    least ten seconds, until the Apple logo appears.
    - Delete/unsunc he video and then resync/redownload
    - Reset all settings                 
    Go to Settings > General > Reset and tap Reset All Settings.
    All your preferences and settings are reset. Information (such as contacts and calendars) and media (such as songs and videos) aren’t affected.
    - Restore from backup. See:                                               
    iOS: Back up and restore your iOS device with iCloud or iTunes
    - Restore to factory settings/new iOS device.                       

  • My iphone 4s while texting or in an app will randomly exit and go back to the home screen, any suggestions on how to fix this?

    Not sure how to fix this, but it's extremely annoying.  Anyone having this same problem?

    Close All Open Apps... Sign Out of your account and try the Reset again.
    If no joy... Connect to iTunes on the computer you usually Sync with and Restore...
    Backing up, Updating and Restoring
    http://support.apple.com/kb/HT1414
    The Basic Troubleshooting Steps are:
    Restart... Reset... Restore from Backup...  Restore as New...
    If you try all these Steps and you still have issues... Then a Visit to an Apple Store or AASP (Authorized Apple Service Provider) is the Next Step... Be sure to make an appointment first...

  • HT1368 My wishlist is not working on the app store i can not find the add to wishlish icon but it is working fine with the itunes store so i am able to add films and music but not apps does anyone know how to fix this

    My wishlist is not working in the app store on my ipad it is woking fine in itunes store so i can add films and music but the icon "add to wish list" is not available on the app store so does anyone know how to fix this 

    The wish list only works on apps you have to pay for. To get it tap the icon of the app you want to save. After it opens at the upper right corner is a box with a arrow. Tap that then tap add to wish list list in the box that opens.

  • Cancel iCloud plan but still having 3GB used. How to solve this?, Cancel iCloud plan but still having 3GB used. How to solve this?

    Want to cancel iCloud plan but I can't because I still have 3GB used. How to solve this guys ?

    Is the 3GB used a part of the 5BG you get for free? If so, you can delete the 3GB if you want to by going to:
    Settings>iCloud>Storage & Backup>Manage Storage> Under backups, click on the name of your iPhone then delete backup. Do the same thing on anything else that is showing as stored.
    Once you've done all of that you can delete the account if you want or you can skip all those steps and just delete the account.
    Settings>iCloud>Delete Account

  • SAP R/3 Authentication with Active Directory on Win2k server.

    Hello list ,
    We are running SAP R/3 4.7 with WebAS 6.2 on Solaris and a Windows 2000 Active Directory domain. Our users access SAP in 3 ways
    1) SAP GUI .
    2) SAP BW
    3) Travel & Expense - a java application that records users travel details and posts a transaction to SAP using the SAP userid and password.
    Wish to implement SSO for all our users.
    Some research we have done suggests
    1) Using Kerberos for authentication. while it appears that microsoft krb 5 implementation will work only on windows servers, it is not clear how well are other krb implementations supported by SAP. OSS note # 150380 and link http://help.sap.com/saphelp_nw2004s/helpdata/en/44/0ebf6c9b2b0d1ae10000000a114a6b/content.htm
    2) OSS note # 352295 suggest there could be some issue using KRB 5 shipped with unixes.
    "All of the major Unix vendors seem to be shipping a version of Kerberos 5 these days. These implementations should be wire-interoperable with each other and with Microsoft W2K (not necessarily W2K3!), however they may not be interoperable with SAP's shared library interface to GSS-API v2 mechanisms."
    3) There are some commercial solutions like - CyberSafe that provides krb based SSO at a fee. Has anyone tried this software ?
    I have created an OSS ticket but we are still in a queue since 5 days already.
    Has any one from the list implemented a similar solution ? What are the best practices and way to go for a robust solution.
    4) Another option that we have is to start with user synchronization. Where in Users created in Active Directory get synchronized with SAP .
    What is mandatory for us is that Users marked disabled in Active Directory should be blocked in SAP by synchronizing user information at regular interval. If anyone has implemented this solution I will appreciate if they give me some pointers.
    Thanks in advance.
    Harsh Busa

    Tim,
    you are perfectly right: that Vintela product is not certified (as SNC solution).
    But you are not quite right regarding the separate treatment. The major difference between that product and the SNC certified products (such as CyberSafe, Entrust, ...) is: Vintela uses different SNC libraries on the client side (=> our Windows SSPI wrappers, see <a href="http://service.sap.com/~iron/fm/011000358700000431401997E/352295">SAP note 352295</a>) and the server side (=> their own SNC library, not certified). And that is actually also one reason why that solution cannot be certified ...
    Well, those Windows SSPI wrappers provided by SAP (=> gsskrb5.dll, for example) are also not "SNC certified", but SAP provides support (being in contact with Microsoft). Well, as some people might know, there are also some interoperability issues between different Microsoft OS versions ... - resulting in reactive patches of our SSPI wrappers.
    I really do <u>not</u> want to promote <u>any</u> product - neither the one of Quest Software Inc., nor the one of <a href="http://www.cybersafe.ltd.uk/">CyberSafe Ltd</a>, nor <a href="http://www.entrust.com">Entrust Inc.</a>, nor <a href="http://www.secude.com/">SECUDE IT Security GmbH</a>, nor ...
    I do not even want to disencourage anyone from implementing his own Kerberos-based solution (or any other solution which provides an GSS API), provided that this person is able to help himself. Reason: if products of different vendors are used and interoperability problems occur the usual finger-pointing will start. In the end you'll not get support by anyone ... - as long as you are aware of this (and capable of helping yourself) you can go ahead. Some (known) universities are belonging to that group ... - but it might not be appropriete to the vast majority of customers.

  • Default profile not working when home directory on Windows server.

    Hi,
    Using 10.6.4.
    I have created a default profile (stored in /System/Library/User Template/English.lproj) and this works fine for new local users.
    If I bind to AD (Using UNC path from Active Directory to derive network home location) and login as an AD user for the first time the default profile is not applied.
    Has anyone experienced this problem?
    Thanks,
    Dom.

    I'm experiencing the same thing, and am wondering if you had any success?

Maybe you are looking for