AD User account SMB e$ via mount_smbfs

Similar Messages

• AirPort DIsk User Accounts - SMB Access sees different files than AFP

  I have two hard drives attached to my Extreme via a powered USB hub. Both drives are formatted HFS. I have multiple user accounts configured for Disk Sharing over Ethernet WAN. When I use SMB or AFP to access the same user account from an external network I see different files. Based on the space available it appears as if the Extreme has setup the SMB account on one drive and the AFP account on the other. Is anyone else experiencing this, and if so, how do I consolidate the accounts and prevent this from happening?

  After some testing, here is my current theory. When your drives are mounted by the Extreme, it looks to find your user account folders on the first drive to mount. If the first drive to mount does not have your user folders, the Extreme creates a new set of user account folders on that drive. Consequently, when your drive with the user account folders finally mounts, you now have multiple sets of folders. I'm not sure why AFP or SMB accesses a different set of user folders, as I could not always recreate the same access patterns, but it appears that one protocol tends to see one set of user folders and the other protocol your other set of user folders. If I always mount the drives in the same order each time, new folders are not created and both protocols see the same sets of files.
  This brings up a new twist on the question. Since I will not always be around to manually remount the drives each time the Extreme re-boots, does anyone have any theories on a workaround?
  Secondarily, this means that all of your user folders need to be on one drive and any other drives mounted just become shared properties for all accounts. This doesn't seem like a very efficient use of storage space if individual users don't want a majority of their files available for everyone. Has anyone figured out how to get user accounts spread out over multiple drives?

• Improver access to protected user account mail messages via spotlight

  What happens:
  Using spotlight from USER1 finds "private" email messages in USER2. Clicking on the message opens it in a mail window, giving USER1 access to mail in folders that is has no access to. Searching for something benign like "a" provides access to all of USER2's mail. Extenuating circumstances below.
  State verification:
  1. Using "show all" within spotlight makes it possible to toggle between "USER1" and "This Mac" to verify that the message is not on "USER1."
  2. Macintosh HD/Users/USER2 shows the folders to have the "no access" folder icon. This is confirmed with "Get Info"
  3. Within "Get Info" window for folder (USER1 active), the Privilege correctly indicates that only USER2 had Read or Write access
  4. Within "Get Info" window for folder (USER2 active), the Privilege correctly indicates that only USER2 had Read or Write access
  5. All is the same if USER2 is logged out.
  6. Within "Terminal," access permissions verify that USER1 cannot 5.
  MacBook:USER2 USER1$ ls -ltotal 0
  drwx------+ 6 USER2 staff 204 Dec 19 22:29 Desktop
  drwx------+ 26 USER2 staff 884 Dec 18 17:32 Documents
  drwx------+ 4 USER2 staff 136 Dec 19 22:26 Downloads
  drwx------+ 34 USER2 staff 1156 Dec 18 09:40 Library
  drwx------+ 3 USER2 staff 102 Dec 12 16:32 Movies
  drwx------+ 3 USER2 staff 102 Dec 12 16:32 Music
  MacBook:USER2 USER1$ cd Library/
  -bash: cd: Library/: Permission denied
  drwx------+ 5 USER2 staff 170 Dec 13 12:22 Pictures
  drwx---r-x+ 5 USER2 staff 170 Dec 12 16:32 Public
  drwxr-xr-x+ 5 USER2 staff 170 Dec 12 16:32 Sites
  Extenuating Circumstances:
  As best as I can tell at this point, only mailboxes/messages that have been imported have this problem. I have done a number of spotlight searches on mail recently received: these messages are found when searched within USER2, but are not found when searched within USER1, and therefore cannot be opened.

  Additional Information:
  The message files: Macintosh_HD/User/USER2/Library/Mail/Mailboxes/FOLDERS*/*Mailboxes*.mbox/Messages/.emlx
  ...and some containing folders appear to have access permissions that are inconsistent with the higher level folders. In short, during the import process, these files and folders were given the wrong access permissions.
  Went into terminal an manually chmod'ed them.
  All now appears to be working correctly.
  Since spotlight has access to the file locations directly, it can get to these files and messages even through the directory cannot be accessed through other means.
  [This is either a bug in the MAIL Import function that sets the wrong access permissions, the spotlight program for allowing access to a file that has the wrong permission, but is within a directory hierarchy that should not allow access, or more likely, both]
  phuss

• Safari (7.0.1) is non-responsive (spinning pinwheel) upon start up.  It will work in temp user account but not in my main user acct.  I tried reinstall via comman-r prompt on start up but the problem persists.  Any suggestion for reinstall or repair?

  Safari is non-responsive after intitial start up.  Before it can load the homepage (google), it will hang and give a perpetual pinwheel until I force quit the program.  Safari works in temporary user account but not in my primary user account.  I have reinstalled osx via the command-r upon start up and the problem still persists.  Any suggestions on how to reinstall or repair safari?

  Thanks for thinking about my problem. I've already experimented with creating a new user, a co-administrator. The programs don't crash when that account is running, just as they don't crash when the guest-user's account runs. So it seems that the problem is limited to the default user's account, which is the one that was running when I installed the updates to the OS and the firmware. Another clue is that the programs that crash as soon as they are launched are *probably* the ones that were open at that time in that account. Yet deleting Saved Application States does not keep the programs from crashing when next launched.
  So the mystery continues, but these additional facts will help with the diagnosis, I hope.
  Thanks again for your suggestion.
  Gordon

• How to disable a user account and issue CoA via REST? (ACS 5.4)

  Like the subject line says, I need to disable user accounts via REST, as well as issue CoA doing the same. Is this even possible? I've been trying for a few days now and I can do GET queries on user accounts, but I can't get anything to work using PUT.

  According to this document it should be possible to use the PUT method.
  http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.4/sdk/rest.html
  Could you please tell us how are you using the PUT method? I could try to replicate it in my lab.
  Best regards

• TC with Access via User Accounts

  Hi all folks,
  I start using a new TC (2TB with 7.5.1) with access via User Accounts switched on, but it confuses me a little. In general I'm interesting in storing some more data to the TC, also I'm interesting in using seperate folder/mountpoints.
  I add some User Accounts (I used the short names from my Mac, for example lutz, test, work, gast and admin) and every User can logon/connect to the TC, with a User Folder and a "Data" Folder, but admin can't connect to the User Folder.
  All the time I try to logon/connect with the admin User, I can mount the "Data" Folder, but I can't mount the "admin" Folder (but the folder is shown).
  In the Mac Syslog I find,
  /System/Library/CoreServices/Finder.app/Contents/MacOS/Finder[111]:
  NetworkNode::handleMountCallBack returned -6602
  I got a box with,
  The operation cannot be completed because the original item for "admin" cannot be found.
  And in the TC Syslog I find,
  Syslog Protocol 6 - All Information
  Nov 18 00:16:54 Gewichtung: 5 AFP login OK from [email protected].
  Nov 18 00:16:57 Gewichtung: 5 AFP session from [email protected] closing.
  Nov 18 00:16:58 Gewichtung: 5 AFP login OK from [email protected].
  Nov 18 00:18:03 Gewichtung: 3 No Address for NTP server time.euro.apple.com.
  I got folders like this, "lutz" and "Data" and both are empty.
  From the admin Point of view the "Data" Folder looks like this and the "admin" folder can't connect too.
  "Data"
  "Data/Shared"
  "Data/Users"
  "Data/Users/lutz"
  "Data/Users/test"
  "Data/Users/gast"
  "Data/Users/work"
  "Data/MacBook.sparesbundle"
  "Data/PowerBook.sparesbundle"
  My question, is "admin" an TC internal User too?
  What's the reason I can't mount the "admin" Folder and why I got a complete view to the TC filesystem with the "admin" User only?
  It's nice to see this, but what's the reason!
  How to add some more Shared folder for data exchange?!
  Any idea what's happend,
  thanks for any help, I can't find any information about this behavior,
  Lutz
  p.s.
  The password from the User Account definitions are ignored for the "admin" user, the TC Password is used all the time.
  p.s.
  I read "http://web.me.com/pondini/Time_Machine/FAQ.html", too.

  Hi all folks,
  anyone who spend some time to add an User Account named "admin" to a TC and try to logon/connect to the TC with this user.
  If someone try to do this, don't use the same password for "admin" and the TC itself, but try to logon/connect with "admin" to the TC with the defined passwords, both. I can connect "admin" to the TC with the TC password only, not with the password defined via User Account.
  Thanks for any help,
  Lutz

• Why do i get a return comment of 'user account is in INVALID mode' when i send a pic email via cell

  my printer is the hp 3050a deskjet all in one j611g . when i send pics from phone via email, the return message via email says' user account is in INVALID mode'. why is this and how do i fix it?

  Hi shannee7, it may be because the Web Services function on your printer was removed. You could try re-enabling Web Services, which will print a new printer code by:
  Pressing the ePrint button on your printers front panel
  Scrolling down to "Remove Web Services" and selecting OK
  To re-enable Web Services press the ePrint button on the front panel
  Select OK to accept the terms of the service
  Front panel display should read "Downloading from Web" and a new Web Services info sheet should print out with a new code for your printer.
  If you have setup an ePrintCenter account you can log in and update your printers e-mail address  using the new code
  Let me know how you get on
  If my reply helped you, feel free to click on the Kudos button (hover over the "thumbs up").
  If my reply solved your problem please click on the Accepted Solution button so other Forum users may benefit from viewing the post.
  I am an HP employee.

• I transferred files and photos from MacBook to iMac via ethernet cable and using migration assistant. However every time I transferred, it created a separate user and it transferred all files and photos again and again. So now I have 3 users accounts ?

  I transferred files and photos from MacBook to iMac via ethernet cable and using migration assistant. However every time I transferred, it created a separate user and it transferred all files and photos again and again. So now I have 3 users accounts with all files and photos saved 3 times on same iMac !! Any idea how to avoid this ?

  Yes, you ran into a very understandable problem.
  When you use Migration Assistant, it cannot over-write the account that you happen to be using at the time. Upon migrating accounts, it will tell you that it is going to create a new one, but that message is easy to miss.
  If you have three identical accounts, log in to the account you want to keep, and delete the redundant ones in System Preferences > Users & Groups.
  Now that you know, the easiest way to migrate accounts is to use Setup Assistant when you first get a new Mac. That eliminates any possibility for this to occur, but most people are so eager to use their new Mac that they elect to migrate later.
  That's OK too, but in that case you would want to create a temporary account whose sole purpose is to run Migration Assistant so that you may migrate your old one with an identical name. Be sure to give the new account Administrator privileges. When that finishes you would log in to the newly migrated account, and delete the temporary account.

• Last Time Machine back-up is 45 days old and only of User Account files (not entire HD) and I must now reinstall Lion without being able to perform a new back-up. Will any new User Account files, since my last back-up, be lost when Lion reinstalls (via i

  My last Time Machine back-up is 45 days old and only of User Account files (not entire HD) and I must now reinstall Lion (via internet) without  performing a new back-up. Will any new User Account files, since my last back-up, be lost when Lion reinstalls ?

  Reinstalling OS X doesn't affect user data, provided nothing goes wrong. But it would be very unwise to assume that nothing will go wrong, especially if you're having (unspecified) system issues. You should try to back up all data before you reinstall or do anything else. There are ways to do that, even if you're unable to boot.
  If your backups include only user files, you won't be able to access them in Setup Assistant.

• Cannot login to other user accounts via Terminal

  Hi. I'm a Unix newb. I am reading Mac OS X Support Essentials and I'm a little stuck on the command line chapter. There is a command that just does not work for me.
  I am an Administrator using an Administrator account. I am using bash Terminal and trying to login to another user's account (also mine) on the same Mac using +sudo username+. The password prompt appears and I type the user's password. It throws back "Sorry, try again." I'm not sure if I am supposed to use the user's password or my admin password so I also tried my password. The response is
  sudo: username: command not found
  Is there a permission problem or something? I logged into the other user accounts in the GUI. I have the right passwords.
  Thanks in advance.
  Gary

  Note that this topic would be better posted over on the [Unix forum|http://discussions.apple.com/forum.jspa?forumID=735]. I'll ask the moderators to move it over there, so don't be surprised if it moves.
  That said, sudo stands for "super user do", and is used to identify some action to take as another user or as root. A username is not an action, so "sudo username" is not a valid command. If you have a particular command that you wish to execute with root permissions, you do something like this:
  sudo ls -al /Users/anotheruser/Documents/
  This lets you view the contents of another user's Documents folder. You can also execute commands as a specific user (though I've never tried this) using something like:
  sudo -u anotheruser ls -al /Users/anotheruser/Documents/
  I'm not sure if this answers your question or not...

• How can I sync 2 iPhones to 1 user account on an iMac via iCloud?

  My wife and I share one user account on our iMac. In the past when have had seperate user accounts but we usually would just use whichever one was logged on and then get frustrated when we had to switch over to retieve a certian file. Now that we both have iPhones setting up iCloud to differentiate between us a bit is causing a bit of confusion. I set up iCloud with my phone right out of the box no problem. However, is there a way to sync hers up without creating a separate user account on the iMac?

  Ok in a round about way I got my wife's phone to to sync with the bookmarks at least once. I set up iCloud on my PC laptop and installed Safari. Then I logged it on to my iCloud account which imported all the bookmarks over. Then, still on the PC, I switched over the iCloud to my wife's account and presto her phone had all the bookmarks. Now this probably means her bookmarks are only synched with the PC (which is okay because she spends more time on it anyway. I'm always hoging the IMac) and the iMac and the PC are not synched together.
  I'm still haveing a problem with my calander syncing with the iMac. My reminders show up but if I add an event to a particular day from my phone it does not. This even applies when I log onto iCloud.com. However, if I add an event on the iMac it does show up on my phone. All the settings are turned on on all three devices. I've tried turning them on and off. I just don't get it because it was working fine.
  Contacts seem to be syncing for both of us.... sort of. Any contacts we add on our phone syncs to the Mac but it is doubling up on people we both have.

• What is the password for the new user account that is set up via Migration Assistant?

  I recently purchased a new Macbook Pro, and used Migration Assistant to download My Documents from a previous PC desktop. The migration was successful, but afterwards the new user account that was set up to house all the new documents became inaccessible to me.
  My administrator's password works for my computer and I am able to log in and out, change settings, etc.
  However, if I try to log in to the new user account, no password works. Through the administrator's account I have also attempted to change the password, and I am allowed to do so, but when I use the new password I set up, it still denies me access.
  Additionally, if I log out the administrator's account and click the new account to log in, it prompts me to make a new password for the account, and whatever I enter is also rejected as "incorrect." (The screen shakes)
  I am very frustrated my inability to access this information I must use to work, and I have no idea what the password might be, or how to change it properly.
  PLEASE HELP COMMUNITY! I have only had my mac for about a week and I have had it up to hear with this "user friendly" system.

  You can change the password from Visual administrator. login to visual administrator, and select services,, under that you will find the system details. change the password.
  even if the visual administrator password is expired then u can go thorugh configtoo.bat and there u can change the password.
  if that even not possible then u need to login to sql and can execute the commands for changing password.
  Regards,
  mahesh

• Enabling right click for multiple user accounts via ARD

  Is there a way to enable secondary click on multiple user accounts at the same time using ARD? Is it possible to do this using a UNIX code? If so could someone give me an example of the code?
  Thanks in advance for any help.

  It should be something like:
  defaults write com.apple.driver.AppleHIDMouse Button2 2
  You'll need to get the exact domain name for your systems' mice; use
  defaults domains
  and look for the mouse driver entry.
  Regards.

• Creating User account via SQL query

  Hi,
  Is it possible to create a user account programmatically?
  thanks,
  Dekel

  In SQL, use the CREATE USER statement. In PL/SQL, see Re: Creating user in PL/sql procdure.

• Linking a new resouce with user account in Sun IDM via activesync

  Hi,
  I am having a new resource which contains the user records. Now I want to link that resource to the existing and new users in Sun IDM.
  I do not want to update and create user in the new resource. I just need that a link is created in Sun IDM when ever activesync runs on users account.
  Please guide me how to achieve the same.
  Regards,
  Nitin

  I'm afraid I can't share the exact code but it should be straight forward through the following:
  1. define a field (call it ldapDN)
  2. create a rule to user getResourceObjects to search for the user DN and return the DN to ldapDN.
  3. when ldapDN is not null, expand waveset.resources and add your LDAP resource, like:
  <Field name='waveset.resources'>
  <Expansion>
  <append>
  <s>LDAP</s>
  4. Then set the accountId for that resource as
  <Field ........ accounts[LDAP].accountId>
  <Default><s>ldapDN</s></Default>
  and you should be set... hope it helps.