AD user missing home directory

Similar Messages

• Need to write/delete a file (token) to/from user's home directory

  I want to build a class that runs on Windows/Unix clients. It needs to get to users' home directories (both environments) and write the token on login, delete it on logout.
  What method (or code snipet) would get a user's home directory?
  What method (or code snipet) would write/delete a file from it?
  Thanks much

  Even if you are not writing an Applet, this is applicable. But I thot if you were, you might need this.
  See 'SignedAppletDemo.java'
  http://developer.java.sun.com/developer/technicalArticles/Security/Signed/

• Change NAME of User Account, Home Directory, Time Capsule and Network

  Hi All.
  I have a small home network and I would like to do this for all four of these.
  I think I have instructions on doing this for User Account, Home Directory and Time Capsule.
  Can anyone give me the "it is OK to do this" so I don't have to worry about something going wrong in the future?
  Also, can I do this for my network and does anyone know where I find this?
  Thanks.

  hotwheels 22 wrote:
  So I gather I cannot rename the name of the "Macintosh HD" which I guess is the name of my Hard Drive?
  Technically, it's the name of the OSX volume or partition, but is often just called your internal hard drive, since most folks only have one partition.  But some have multiple partitions, usually for dual booting, such as OSX and Windows; or Lion and Snow Leopard. 
  Yes, you can rename it easily (but you might check whether that will cause a problem with DejaVu).  It won't be a problem for Time Machine.
  Just right-click it in a Finder sidebar or on your desktop.  Do not use any slashes or colons, however -- you might want to avoid any punctuation or special characters.
  And then - In Accounts I have "Full Name" as literally my first and last name.
  Yes.   Each user account has a full name and a short name.  The full name isn't used for much.
  the HOME FOLDER is showing a totally different name than the "Full Name".
  Correct.  It's the same as the short name.
  So I set the HOME FOLDER name through some hocus pocus in the article and then what is the relationship between these things?
  The short name and the home folder name should be the same.  The article shows how to rename the home folder, create a new user account with a matching name, then delete the old account. 
  If you're not comfortable with the instructions in the article, I'd strongly advise not doing it.  You may end up having to do a full system restore.  I don't know, but perhaps your local Apple Store will do it for you.
  Functionally I have a HARD DRIVE and a HOME FOLDER and then the Full Name (listed in Accounts) is just sort of what I get called by...?
  The hard drive (OSX partition) is where your entire Snow Leopard installation is:  OSX itself, your Apple and 3rd-party apps, and one or more home folders.  (Many folks who share a Mac have separate home folders for each user.)
  have I been smoking?
  No comment. 

• How to get the user's home directory in Unix if I know the username?

  I have a problem to determine a user's home directory in Solaris system.
  for example, I know the username as "smith", how can I know smith's
  home directory (the absolute path string)? pls help me...

  if the user is the one running the program, you can always get the home directory using System.getProperties ("user.home");
  If you are trying to get the properties of another user, you could try using setProperties to change the user name first, before getiting the home directory, but it probably won't work because of the security manager. You could read the /etc/passwd file and parse the path out, but once again, the user of the code would have to have appropriate permission.

• Solaris 10 NIS Client user account home directory

  Hi all,
  I am newbie of NIS in solaris and i am setting up NIS(central authentication of user) ,So related to this i have setup and server and client but
  i am getting problem while accessing user account in client side.
  in client side i can login user which i have created in server but it is not able to find its home dir .even though i added user with the -m option on server and home dir of user is created in server side .
  *(No directory! Logging in with home=/)*which i have created in NIS server.
  also i am not able to create any directories or files in the client system it says.
  bash-3.00$ mkdir a
  mkdir: Failed to make directory "a"; Permission deniedBoth the server and client have same domainname and NIS service is also running properly.
  on the server side this is the entry of the /etc/auto_home
  # Copyright 2003 Sun Microsystems, Inc. All rights reserved.
  # Use is subject to license terms.
  # ident "@(#)auto_home 1.6 03/04/28 SMI"
  # Home directory map for automounter
  +auto_home
  * SS09:/export/home/&here SS09 is the NIS server name and i can see it both server and client side .
  bash-3.00$ ypwhich
  SS09
  bash-3.00$
  bash-3.00$
  bash-3.00$ svcs nis/client
  STATE          STIME    FMRI
  online         11:53:05 svc:/network/nis/client:defaultSo please help me regarding this ...
  Thanks
  anuj
  Edited by: anuindia on Apr 16, 2009 11:02 PM
  Edited by: anuindia on Apr 16, 2009 11:03 PM

  Look over on http://docs.sun.com for the NIS guide for your version of Solaris.
  alan

• Moving User's Home Directory from one Xserve to another

  Does anyone know the procedure for moving users (Home Directory) from one server to another?
  Is there an application that can do this?
  Xserve G5   Mac OS X (10.4.4)  

  I see your problem and I think I will soon have the same one.
  I suppose one option would be to delete out the .plist. Then when the user logs in the server should recreate it. If the user had customized it they would of course lose any information.
  You could also setup a loginhook that would just run the needed defaults write... and update them as needed. Actually I think that would be the easiest option. The only down side would be making sure every use logs in once before you remove the script.
  Hmm I guess another option would be a script that loops through all the users accounts and runs the command as the user. sudo -u usershortname defaults... But I am not sure if this would have to be done on the server it self or if it could be done through a client.
  Sorry for the rambling but I am trying to come up with an answer..

• Network user can't see local home directory

  Hi there,
  I have a Mac Mini running Lion Server with Directory Services turned on. I've been using this to allow network users to log into Lion clients, as well as set up mobile accounts. This has been working fine.
  Now I've just created a new network user for use with a Mountain Lion client and have experienced some strangeness with this new user's home directory. The binding to the directory was fine, and the credentials for the network user were fine. However, when logged in, this new user has his home drive mapped to /Network/Servers/<servername>/Users/<username> rather than the expected /Users/<username>. This has bad side-effects. For instance, Chrome tries to save downloads to the server instead of locally.
  What I can't work out is why the home directory isn't pointing to a local location. The other users (on Lion) have the same home directories defined in their Open  Directory profiles. The only difference is the new user is on Mountain Lion, but I don't think this has any bearing to the problem.
  Can anyone offer some advice?
  Benjamin

  So I took my Mac Mini running OS X 10.8 Server, along with two client laptops: one exhibiting the problem I described, and the other where network logins and home directories worked as intended.
  Long story short, the guys at the Bar couldn't figure it out. The user definitions in Open Directory seemed ok, but they still couldn't work out why no local home directories were being created. Not sure if this helps, but in trouble-shooting, we also discovered that trying to login with a network user on the problematic laptop didn't work when the server wasn't on the network. It's as if the server is required to be present.
  Anyway, the case has been referred to the business team, which is supposed to have more expertise with OS X Server.

• OD users missing from user lists on servers bound to open directory

  Hi,
  I've got an OD master set up on a 10.4 server. Two other servers (one 10.4 and one 10.5) are bound to the first for directory services. If I open Workgroup Manager on the OD master, I see a complete list of users. If I open a user/group "drawer" on either of the other servers, to add users to SACLs or share point permissions, the lists are short numerous users (4 out of 12 starting with the letter "A" alone).
  Has anyone ever seen this? I removed and rebound one of the servers, but it still had only a partial list of users. A have compared parameters for users who show up with those who don't, but can see no difference?
  Thanks,
  Sue

  This may be a stupid question but have you run sudo chown on the user's home directory after creating it?
  I had the same problem and my solution is posted here: http://discussions.apple.com/thread.jspa?threadID=1290158&tstart=0
  Let me know if that works. If not, we'll work on it together.

• User cron jobs won't run without home directory

  I have a situation where the users are defined through ldap without home directories, but our application creates cron jobs for these users. If a home directory is defined, the cron jobs run. If no home directory is defined, the cron jobs will not run. Is there a way to configure cron to use a global home directory, instead of the user's home directory?
  Kevin

  The crontab man page says that cron changes to the users home
  directory and then sets up some simple environment and run sh.
  it also talks about /etc/cron.d/cron.allow
  So it looks like those users need to be given a home directory
  like /tmp , but you need to think about the implication, are the accounts locked to stop logins
  truss -fpl $(pgrep cron)
  might show you what it is doing.
  it also talks about /etc/cron.d/cron.allow do you have such a file?
  tim

• Home directory creation for local user accounts using powershell

  Through Computer Management when I create a user, a home directory is created for the same user in the folder C:\Users.I am creating a user through powershell in a remote machine.I am using the following script to create user 
  $comp = [ADSI]'WinNT://localhost,computer';
  $user = $comp.Create('User', 'account7');
  $user.SetPassword('Welcome1');
  $user.SetInfo();
  The account is getting created. But no home directory is created for this user. How to create a home directory for a user using powershell? Also the user created through GUI is a member of the group 'Users' by default. How to add the user created to the
  'Users'  Group.

  Hi Cmm user,
  Thanks for your posting.
  To set the attribute of homedirectory for a user in powershell, please also try the cmdlet set-aduser:
  import-module activedirectory
  $HomeDrive=’Z:’
  $UserRoot=’\\CONTOSO-FPS\Users$\’
  $HomeDirectory=$UserRoot+$AccountName
  SET-ADUSER $AccountName –HomeDrive $HomeDrive –HomeDirectory $HomeDirectory
  I hope this helps.
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• OIM - Provisioning AD User Home Directory

  Has anyone had success in provisioning a user's home directory in Active Directory?
  Currently we are provisioning two custom attributes to AD for this: homeDrive and homeDirectory. homeDrive is a literal "H:" and homeDirectory is \\server\home\%username%.
  When this is done from AD the user's home directory is created automatically in \\server\home, but when I provision these values from OIM the literal value of %username% is kept in the homeDirectory field and the user directory is not created.

  I have populated the field both ways, with %username% and also with the userid. In neither case is the user's home directory automatically created. However, when you supply %username% when creating a user in the AD Users and Computers console, the directory is created. So I guess that I need to kick off some sort of script to create this unless there is a better solution. How would you go about kicking off an external script?
  BTW/The NTFS permissions required for this can be found here:
  http://support.microsoft.com/kb/555046

• AES-256 user home directory sparse image bundle in Lion?

  Snow Leopard and previous had file vault to protect users' home directories as, I believe, AES-128-encrypted sparse image bundles. As I understand it now, under Lion, the options are to enable AES-128 whole disk encryption, or, if upgrading an existing snow leopard machine with a legacy file vault user account, to maintain that legacy file vault user home directory. However, under this second approach, additional users' home directories cannot be individually "file-vaulted" and instead, would require that legacy file vault  be decrytped and then the entire disk be encrypted.
  I am thinking that it would be advantageous from a security standpoint if an individual user home directory could remain encrypted, if that user were not actively logged in. Then, all contents would be inaccessible to other users, including administratively privileged users, and also that user's home directory would remain encrypted when the computer was turned on and booted up because as I understand it, file vault 2's real strength lies in protecting "data at rest" versus "data on a powered up and mounted file vault 2 volume".
  To that end, I am wondering, regardless of whether file vault 2 is enabled or not, whether an existing user home directory and all of its contents be converted to an AES-256-encrypted sparse image bundle, using Disk Utility, and exist at the /Users directory space, mounting and decrypting "on the fly" from the login window at user login just like how a legacy file vault home directory is treated under snow leopard, independently of whether file vault 2 was enabled on the whole disk or not. This would also permit later addition/conversion of another "file vaulted" user account whether fle vault 2 were enabled or not.
  To recap, an AES-256-encrypted sparse image bundle that would mount upon user login just like a legacy file vault user home directory does. Does anyone know if something like that is doable, and has that road already been travelled successfully? If so, I'd love to read a step-by-step, play-by-play, set of instructions on how to do just that.

  I think I got a solution worked out.  I don't mind if things get installed in /opt as long as pacman tracks it, and I found ruby-enterprise-rmagick in the AUR as an orphan.  I adopted it, updated it, installed it, and it's working great with my code.

• Deleting user account and their /home directory

  hi,
  I'm a parent volunteer helping to admin a mac lab at my son's K-5 public school. The lab is running o/s 10.5 server on a mini with about 30 imacs as clients.
  I noticed that when I delete a user in workgroup admin, the user's home directory is not deleted at the same time. Is there a way to force the home directory of a user to be deleted at the same time a user is deleted. Its extremely tedious to have to delete the home directories manually.
  This question was previously posted under Open Directory forum, but I've not received any replies so I thought I would try here. Thanks in advance for your assistance.
  William

  william_sf wrote:
  when I delete a user in workgroup admin
  Workgroup Manager only deletes the user record in Open Directory. There is no known preference that I know of that will delete their data (the home folder) at the same time.
  Welcome to the world of the SysAdmin.

• Home directory and personal website trouble after 10.6.7 Server

  Xserve recently upgraded to 10.6.7 Server and it seems to have broken two features:
  When doing Connect to Server as an LDAP user their home folder is no longer available as a mountable volume. The share that holds all user home folders IS available so that's not the end of the world.
  However this also broke the personal web sites, so going to:
  http://<serveraddress>/~shortname now just gives a 403 error
  and I get these errors in the error_log (under WebServer in Console)
  [Tue Aug 24 11:38:48 2010] [error] [client 10.2.104.16] File does not exist: /Library/WebServer/Documents/~walshd
  [Mon Apr 25 09:11:22 2011] [error] [client 10.2.104.16] (62)Too many levels of symbolic links: access to /~walshd failed
  [Mon Apr 25 12:39:39 2011] [error] [client 10.2.104.16] (62)Too many levels of symbolic links: access to /~walshd failed
  The sharepoint is on an old XServe RAID unit connected directly to server via FibreChannel, but that hasn't changed in a long time...only recent change was running all Software Updates which included moving up to 10.6.7 Server.
  Any ideas what I'm missing or where to start looking to resolve this?
  Thanks!

  Camelot wrote:
  When doing Connect to Server as an LDAP user their home folder is no longer available as a mountable volume. The share that holds all user home folders IS available so that's not the end of the world.
  There are so many ways of configuring home directories that this can't be answered without more information.
  For example, are you using automount to mount the user's home directory when they log in?
  or do the clients mount a static mount and their Open Directory record just includes a link to the (mounted) home directory?
  We are using automounts to get users their home folders. And when logging in at a terminal with an LDAP account you do get into your account as expected. It's only Go -> Connect to Server that won't give the home folder as a sharepoint and the web service for user sites that we agree are most likely tied together.
  I have both userdir_module and apple_userdir_module enabled at the moment, although when I tried just one or the other I was getting an Object does not exist rather than the permission error.
  I think the key to solving this is in the console log entries httpd -> error_log:
  errors before posting:
  [Tue Aug 24 11:38:48 2010] [error] [client 10.2.104.16] File does not exist: /Library/WebServer/Documents/~walshd
  [Mon Apr 25 09:11:22 2011] [error] [client 10.2.104.16] (62)Too many levels of symbolic links: access to /~walshd failed
  [Mon Apr 25 12:39:39 2011] [error] [client 10.2.104.16] (62)Too many levels of symbolic links: access to /~walshd failed
  [Mon Apr 25 14:40:17 2011] [error] [client 10.2.104.16] (62)Too many levels of symbolic links: access to /~walshd failed
  [Wed Apr 27 06:57:03 2011] [error] [client 10.2.104.16] (62)Too many levels of symbolic links: access to /~walshd failed
  [Wed Apr 27 06:57:17 2011] [error] [client 10.2.104.16] (62)Too many levels of symbolic links: access to /~walshd failed
  with userdir_module disabled and apple_userdir_module enabled:
  [Wed Apr 27 06:57:32 2011] [error] [client 10.2.104.16] File does not exist: /Library/WebServer/Documents/~walshd
  [Wed Apr 27 06:57:34 2011] [error] [client 10.2.104.16] File does not exist: /Library/WebServer/Documents/~walshd
  [Wed Apr 27 06:57:35 2011] [error] [client 10.2.104.16] File does not exist: /Library/WebServer/Documents/~walshd
  [Wed Apr 27 06:57:49 2011] [error] [client 10.2.104.16] File does not exist: /Library/WebServer/Documents/~walshd
  [Wed Apr 27 06:57:50 2011] [error] [client 10.2.104.16] File does not exist: /Library/WebServer/Documents/~walshd
  with userdir_module enabled and apple_userdir_module disabled:
  [Wed Apr 27 06:58:02 2011] [error] [client 10.2.104.16] File does not exist: /Network/Servers/staff.lsrhs.net/Volumes/Staff/Home/walshd
  [Wed Apr 27 06:58:03 2011] [error] [client 10.2.104.16] File does not exist: /Network/Servers/staff.lsrhs.net/Volumes/Staff/Home/walshd
  [Wed Apr 27 06:58:04 2011] [error] [client 10.2.104.16] File does not exist: /Network/Servers/staff.lsrhs.net/Volumes/Staff/Home/walshd
  with both enabled again:
  [Wed Apr 27 06:58:22 2011] [error] [client 10.2.104.16] (62)Too many levels of symbolic links: access to /~walshd failed
  The strangest thing about this issue is that it happened  after I applied a bunch of updates last week:
  2010-04-22 12:52:17 -0400: Installed "Remote Desktop Client Update" (3.3.2)
  2010-04-22 12:52:23 -0400: Installed "AirPort Base Station Update 2010-001" (5.5.1)
  2010-04-22 12:52:39 -0400: Installed "QuickTime" (7.6.6)
  2010-04-22 12:52:41 -0400: Installed "Xserve EFI Firmware Update" (1.1)
  2010-04-22 12:52:44 -0400: Installed "iLife Support" (9.0.4)
  2010-04-22 12:52:59 -0400: Installed "Java for Mac OS X 10.5 Update 5" (1.0)
  2010-04-22 12:53:21 -0400: Installed "iTunes" (9.1)
  2010-04-22 12:54:31 -0400: Installed "Security Update 2010-003" (1.0)
  2010-04-22 12:55:16 -0400: Installed "Safari" (4.0.5)
  2010-04-22 13:15:22 -0400: Installed "Java for Mac OS X 10.5 Update 6" (1.0)
  Could any of these have broken the home directories sharepoints or is this just a huge coincidence?

• Portable Home Directory Incomplete Sync

  All,
  I have just discovered a particularly disturbing issue with PHD. I recently had a user overwrite a file that was on his desktop and request a restore from backup. I did a search for the file on the backup that backs up all network home directories on the server and it was not found. I then checked the user's home directory on the server, and surprise it wasn't there either. Upon further checking, no files from the desktop had been synced to the server for over a month! This occurred while a regular sync has been happening on startup/logout and hourly the whole time and no errors have been logged.
  Now being curious and worried I checked some other users and found that the same issue is occurring on about half of the other computers. But the specific problems vary from machine to machine. Some users were syncing properly except for some files on the desktop. Some were missing files that were several months old but had all the current ones. In a word, random.
  Exception rules seems to be observed for the most part.
  I am going to investigate this more but wondered if anyone else was seeing this sort of weirdness? I am suspecting that the problem may have coincided with the 10.5.4 Server upgrade, but this is just speculation at this point.
  Ideas?
  Bob

  hi there, i am having the exact same issue with some portable accounts. we are running 10.5.4 server and 10.5.4 clients.
  i have noticed rogue ACLS appearing now in server admin for leopard, as described in a previous post.
  User = Everyone, Type = Deny, Permission = Custom, Applies To = This folder, All descendants.
  strangely, some of our users have the rogue ACL and some don't.
  even after deleting the ACL for the user, portable home syncing still does not work.
  on the client it goes through the process and the blue bar shows you it checking folders and seemingly updating. the give away for me is following the apparently successful sync, when you click on the mobile directory icon in the menu bar the date has not updated and clearly upon checking with the network account, new data has not synced.
  any ideas would be great... until now i have had to manually drag data from the client to the network folder by mounting the network folder over afp, then wipe the client and recreate the portable account... even then i am not sure how long syncing has been successful, though that has seemed to fix things.
  i am not sure if something is breaking in the user's library on the portable account?
  any insight would be most welcome.