AD User with personal OSX Network share?

Similar Messages

• Help! Moved PCD content, now users with Personalized pages empty

  Hi
  Please help. I've moved some iViews and pages to different folders but now my users with personalized pages just shows up blank! If I go to personalize on their page the iViews is gone under Personalized page...
  I've moved the content back but its still missing...
  EP6 SP18 P2. It’s working for users with no personalization.
  Any ideas?
  Thanks!!
  Eon

  Hi Nitin
  Thanks, I had a look at the thread but I didn’t create a delta link but moved it
  I've used the cut -> paste option to move the content. I've used the PCD inspector before but they only display the IDs in there and I needed to re-organise the PCD. The logical names helped me to classify it.
  If I assign the role to a new user, it works perfectly. Its only users that personalised their page that’s getting the error.
  I think it some how if the user personalised their page, it doesn’t use the default iView location linked to that page\role but somehow a cached version of the location.
  Any ideas?
  Thank you very much!
  Eon

• Multiple Users Mounting the Same Network Share?

  Hello, first time posting...
  I'll cut right to my main question: Is it possible, on OS X v10.3.9, for multiple users to simultaneously connect to the same network share?
  Here in my office, we have a single Mac that is used by multiple people throughout the day. It has two accounts on it, 'Communications' and 'Studio'. 'Communications' is an Admin account that is used by a co-worker who spends the most time on the Mac. He created the no-limitation 'Studio' account for the rest of us to use.
  There is a certain Windows network share that we both frequently use. We've found that if one user connects to the share first, the other user will not have access to it; using 'Go -> Connect to Server' will result in the share being greyed out in the list, and the share will not show up in the Finder.
  However, there is one way around it. If Studio connects to the share first and then Communications (the admin account) attempts to make a connection of it's own *through a shortcut on the dock*, then a 'clone' of the share will be created on Comm's desktop, with a "-1" after the name (though it might be some other number).
  This may sound like I've answered my own question, but what I'm looking for is a way for the non-Admin account to access the share after the Admin account already has (so that we don't have to log-in and disconnect Communications everytime Studio needs to manage files on the share).
  We have Thursby Software's DAVE installed on the Mac, but I'm not sure how it fits into all this.
  Any thoughts, suggestions or advice?
  Thanks.

  Bizarre. It turned out I could merge them, but only in to the mapped drive - L: - and only by explicitly clicking on the drive icon - if I typed L:\series in to dialog box it converted it back to \\nas\share\series... Not helpful.

• Multiple users accessing document on network share

  In our small office we have a couple of numbers douments that are regulary accessed and updated by 3 different people on three different machines, the numbers documents they access are stored on a network share on the Mac Server in the office.
  The problem we have is that all three able to open a file at the same time, obviously this is causing all sorts of isues. People losing data they have put into the file and also causes issues with someone being unable to save the file while someone else has it open.
  Surely there must be some sort of feature that when one person has the file open, its is locked for editing to everybody else that attempts to access it, I have searched around but cant seem to find anything to solve the problem. Anybody here have any suggestions?
  Thanks
  Craig

  Once  a document is all set up, and then you are just making relatively minor edits, then you might find it useful to "share" it on iCloud and have everyone access it and edit it via Numbers on icloud.com rather than Numbers on the Mac.  That way you can all work on it at the same time without losing changes.
  SG

• User file usage on network shares

  I need to create a PowerShell script where I can show how much storage space users are using.  This would be for users on multiple network shares, above a certain amount (5 GB for example) and then exported to a CSV.  Is
  it possible to show the first level of subfolders and their totals? 
  Our Helpdesk does not have the permissions to see the folders on the shares but I do (Domain Admin).  I will run the script every so often and email the CSV to them so they can contact the users.
  Thanks!
  J

  Hi,
  Yes, that's possible. Here's some starting material for you:
  http://blogs.technet.com/b/heyscriptingguy/archive/2012/05/25/getting-directory-sizes-in-powershell.aspx
  http://blogs.technet.com/b/heyscriptingguy/archive/2013/08/03/weekend-scripter-use-powershell-to-get-folder-sizes.aspx
  Let us know if you have any specific questions.
  Don't retire TechNet! -
  (Don't give up yet - 13,225+ strong and growing)

• Data Recovery Tip For Boot Camp Users with Damaged OSX Disk

  My iMac suddenly stopped booting (endless gear on white load screen).
  It won't target mode. Disk Repair fails. It wont safe boot.
  However, it does have a Windows Boot Camp partition.
  I was able to use HFSExplorer (a free 3rd party app) to mount my OSX drive inside windows (when it wouldn't mount on my macbook connected by firewire - even though it could see the device). I then saved a load of data I hadn't yet backed up.
  This method saved me a lot of stress, so I was hoping it could help someone else out.
  BTW I'm about to do a fresh install of OSX as I can't get it to boot.
  1. This will not affect my (still functioning) Windows partition, will it?
  2. Is there anything else I can try to get it to boot right? There's 3-4 "red" errors on disk repair and it says it can't fix them.

  If you are able to access the Mac OS X volume then you should be able to install a fresh Leopard. First I would erase the volume and zero out the data if Disk Utility will do it before the install. What I am afraid will happen is that DU will tell you that it cannot unmount the volume to do the erase. If so, a new version of Leopard may still have issues.
  Dah•veed

• Mount network volume: different users same credentials, see different shares

  A set of network volumes on a NAS need to periodically be backed up to a local USB disk. Manually, I can mount most shares (from a Finder window). In a shell script I can list all files due (find) and use that list for backing up to a local USB volume (cpio). So far so good. However, I need to mount these network volumes first. The mount command doesn't seem to work for me.
  How do I mount a network volume in a shell script?
  Also I noticed that if under fast user switching user A logs in with credentials uName and uPassword, the NAS shows 6 shares to choose from. When user B on the same machine logs in with the same credentials uName and uPassword, only 5 shares are visible and one is not shown. It looks as if the credentials do not uniquely determine the volumes offered for mounting. Also, when user B mounts a share, it appears to be owned by user A (who is logged in but has not mounted any share on the NAS) rather than owned by B or by uName...
  How do I mount this volume as user uName rather than A or B?
  How can one uniquely determine the identity of the volume? Network volumes don't show UUIDs and the name given in the /Volume/ folder can change, as is discussed in message 11871367.

  eljonco wrote:
  I just checked: after a reboot, user A logs in (automatic login enabled), user A logs out, user B logs in, ls -a /Volumes only shows local HD and a USB HD. No network mounts there.
  In the finder window, the NAS shows up on the left. Clicking it and entering credentials uName, uPassword, a list of five, not 6, items is offered for mounting. So your options 1 and 4 are then ruled out, unless an alias made by user A and copied to user B's home folder would still link to user A's mounting options.
  Actually, only option 1 is ruled out. That Finder list is simply not reliable. It is likely cached somewhere and could be restored by deleting some hidden preference file. It regularly causes people to freak out when they see some sharepoint listed on a network that they have long since left.
  If you did Go > Connect to Server in the Finder and typed in the location, you could still create an alias.
  Once mounted one of 5 shares as uName with uPassword, an ls -al /Volumes shows the local drives and
  drwx------@ 11 B staff <date> sharename
  and all folders in sharename also show B:staff as user:group. I find that strange, as I did not log in to the share with credentials B, but with credentials uName. Anyhow.
  The uName user is for the network share. When MacOS X mounts that, it gives it permissions appropriate for the user who did the mounting. If you did an NFS mount as root, the server would handle permissions via UNIX uid and gid. I'm really not familiar with the details of AFP.
  As I read in a post about autoFS that 'cd /Volume/theHiddenShare' should magically mount that share, I gave it a shot. Alas, '/Volumes/theHiddenShare: No such file or directory'. Same long shot in the dark in the 'Go/Connect to' dialog gave 'The folder cannot be found'. Not surprisingly, I suppose.
  Yes. That has to be setup
  Here is what I've done to my /etc/auto_home:
  # Automounter map for /home
  #+auto_home     # Use directory service
  # Get /home records synthesized from user records
  #+/usr/libexec/od_user_homes
  myserver.org -allow_other,reconnect,fstype=sshfs [email protected]:/home/me_remote
  I'm not on a big network, so I've disabled the system functionality by commenting out "+auto_home" and "+/usr/libexec/od_user_homes". Now, the system doesn't manage /home and I am free to do with it what I want. This will mount the path "/home/myserver.org" connected to the "me_remote" user on "myserver.org". I'm using the funky MacFUSE sshfs filesystem. Your AFP file system should work much better. Your line would look something like this:
  drive5 -fstype=afp uUser@MyLocalServer:/theHiddenShare
  Run "automount -vc" to reset your automount system.
  Next use Finder Go > Connect to Server and type in "afp://uUser@MyLocalServer:/theHiddenShare".
  You want to mount the drive once so that you can store uPassword in your keychain.
  Now unmount the drive.
  The Finder mounts all go into /Volumes and, as you have discovered, can get themselves confused. This automount will be at "/home/drive5". All you have to do is enter that folder in the Finder and it will be automatically mounted. If you haven't used it for a while, it will be unmounted automatically.
  You may have to play around with this a little. I don't have any network AFP share that I need to mount on a regular basis, so those parameters may need to be adjusted somewhat.

• Network share shortcut vanished windows 8.1 after microsoft updates

  After updating a windows 8.1 desktop, the user complained that all of their "shortcuts" - which upon investigation are user created shortcuts to network share locations - are gone.    We searched for the shortcuts to see if the user somehow
  deleted or moved them, but they do not seem to be anywhere. 
  After reading several posts on disappearing shortcuts, the most likely suspect seems to be the automatic maintenance that windows performs, which includes removing unused or broken links.   As these links were not broken or unused, I would like to find
  out how the maintenance system identifies shortcuts that should be removed.   Also, is there a report that shows what was removed?   And is this report in a location that can be accessed remotely (\\computername\c$\users\username\... or something
  like this or through the event viewer connected to the remote computer). 
  I do not want to disable the automatic maintenance, but I also don't want this to occur to other users, or repeat with this one.   
  Please advise.
  Fred Zilz

  Hi Fred Zilz,
  Here is an article talking about the shortcut missing when using System Maintenance troubleshooter:
  See this KB(Applies to Windows 7):Desktop shortcuts disappear in Windows 7
  For automatic maintenance in Windows 8, please see:
  Automatic Maintenance.
  If we are sure the shortcuts are removed by automatic maintenance, we may take use of File history to restore the shortcuts back.
  Restore files or folders using File History
  Best regards
  Michael Shao
  TechNet Community Support

• Are network shares backed up by TimeMachine?

  I know that when I have an external drive, it gets backed up with Time Machine. I wonder what happens with a mounted network share, will it also be backed up? I like having Time Machine atumatically backing up my external drives, but I don't want it to backup mounted network shares.
  If this behaviour matches what Time Machine does, could somebody confirm it? if not, could anybody please indicate how am I supposed to configure my Time Machine taking into account that laptops tend to roam and that the network share name can't be predicted.
  Thanks a lot in advance,

  TimeMachine doesn't back up your Windows partition. (Hmm, I've not attempted to add a Windows partition to TimeMachine. I'll have to give that a try.)

• Really slow directory listing on network shares

  Customer of mine recently purchased 2 brand new iMacs and 1 MacMini (NOT running the server OS). They also have an older iMac, running 10.6.8, on site.
  Using the MacMini as network storage. Setup a few users and a few network shares. The MacMini is not used by any one.
  Issue seems to be that when the iMacs browse to the shares it takes a really long time for the file listing to come up.
  So here's the process from any of the iMacs:
  Connect to the MacMini (afp://server)
  Click on a shared folder
  Wait 10-15 seconds for the files to show up.
  Some of the folder may have like 2 dozen small word files in it, so I can't believe it's an overabundance of files causing the issue.
  Once the folder has all it's files listed everything is normal speed. They can even copy the files at normal speed, it's just the initially populating the folder, if you will.
  Slightly stumped as they use to use an ancient, underpowered, Vista machine to for the network storage and didn't report this issue.
  Any thoughts would be appreciated.

  This issue can be caused by a slow or incompatble DNS server on the network, especially a Windows DNS server. If the sharing clients are configured (in the Network preference pane) to query a local DNS server, change the address of the primary DNS server to something outside the network, such as the ISP's DNS. Test.

• Windows 2003 Network Shares Innaccessable

  Hi
  We have a Windows 2003 R2 server housing half of our user profiles and some network shares.  Today, the network shares became inaccessible, causing crashes for our users.  Our other server remained unaffected.
  We could ping the server and ping from the server and could still RDP.
  The servers performance also appeared unaffected.
  MOM and Event logs showed nothing.
  We also use Active Directory 2003 and Symantec Anti-Virus 11.5 - Symantec logs showed nothing out of the ordinary either.
  We resolved by rebooting the server.
  Has anyone experienced this or a similar incident and what steps should we take to glean the best information should the incident re-occur.
  Many thanks
  Shawsr8

  Hi,
  The issue most likely caused by an outdated Antivirus, please upgrade the software to the latest version of Symantec Antivirus to see if the issue still exists.
  Network shares become unresponsive after some time on a Windows Server 2003 or 2008 or 2008 R2-based-based computer running Symantec Endpoint Protection prior to 11.0.4202 (MR4-MP2) or Symantec Antivirus 10.2, and you receive an error message
  http://support.microsoft.com/kb/948732/en-us
  There is a similar thread, please also go through it to help troubleshoot this issue:
  File share become inaccessible
  http://social.technet.microsoft.com/Forums/windowsserver/en-US/19205ea0-3efe-4c9c-a625-8ccf93744948/file-share-become-inaccessible?forum=winserverDS
  Regards,
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• How to get "fast user switching" and network shares playing nice

  I've been alternating between banging my head against a wall and reading every forum I could find to try and get a reasonable compromise between using "Fast user switching" and sharing a folder from a file server.  It baffles me how the network share/mount model of OSX/AFP is completely killed by fast-user-switching; this is a big problem with Apple requiring users to be actively logged in to share music/video from iTunes which therefore essentially requires fast-user-switching if anyone else wants to use the computer.  (anyone find it odd that you can share files without being logged in, but sharing songs requires an active login for each user who is sharing?  Apple: time to make iTunes sharing a service!)
  For the sake of example, lets just say I want to share my /Groups folder from my desktop and have it be accessible to my laptop.  Here are all the things that I tried:
  Apple Method 1) Share /Groups in the Server.app on the desktop (running Lion Server), use finder on the laptop and drag the share icon to "Login Items", alternative use a startup Apple script using "mount volume"  Both of the options work and will mount the /Groups folder under /Volumes/Groups, of course when the second person logs in via fast-user-switching (and occasionally the first person for no apparent reason), they will get /Volumes/Groups-1 since /Volumes/Groups is already taken.  Tomorrow we log in a different order and now the previously /Volumes/Groups-1 user has their mount at /Volumes/Group and vice versa.  Any links, aliases, finder sidebar references, and application settings which pointed to yesterday's location are now BROKEN.  Not very user friendly to my mother-in-law who is trying to find those pictures of the kids and doesn't know anything about mount points. I also can't reasonably mirror the file location structure on the desktop so that application preferences that are synced between the two (portable home directories) work.   fail.
  Apple Method 2) Use automounter and set up by hand direct maps for /Groups or an indirect maps for the children of /Groups.  Now it will automatically get mounted to /network/servers/SERVER/Groups/ on the laptop and on the desktop it will automatically create a similar symlink structure so that the same path (/network/servers/SERVER/Groups) work both on desktop and laptop.  Cool.  Except when the second person logs in, the /network/servers/SERVER/Groups/ mountpoint is already owned by the first user and they don't have any permissions to access it.  Fail.
  Apple Method 3) Use mount_afs and specify directly the mount-points.  Have each user have their own startup AppleScript which mounts /Groups to a different location (e.g. /Users/Shared/username/Groups) that way they don't conflict with multiple users.  On the desktop, set up symlinks from /Users/Shared/username/Group to /Groups so that it will be the same as the client and applications settings will work when synchronized back/forth by portable-home-directories.  Will it work, yes it does, but what a bear to maintain.  Is this really what I should expect to do just to have multiple users on my desktop and laptop (which again is essentially required now if I want to do any type of iTunes sharing).  This can't be what apple expects.
  What I ended up doing - the "not quite apple" solution.
  Non-Apple Method 4) After a read of "Autofs: Automatically Mounting Network File Shares in Mac OS X" (http://images.apple.com/business/docs/Autofs.pdf) at the very end there is a single paragraph  of "Kerberized NFS": "A Kerberized NFS mount can have multiple connections from multiple users, each using the correct user’s credentials for each transaction. This allows administrators to support multiple users, each authenticated with their own credentials to the same mount point. This is very different from AFP and SMB mounts," (emphasis mine)
  It appears that by using good 'ole NFS (abeint with Kerberos for security!) you can actually have multiple users on the same mount point.  Roughly following the guidance at https://support.apple.com/kb/TA24986?viewlocale=en_US.  What I needed to do was:
  1) create /etc/exports on my desktop and add a single line "/Groups -sec=krb5".  The existence of /etc/exports triggered a start of nfsd which no longer has any GUI options in Lion.
  2) Add a line to /etc/auto_master on my laptop "/-  auto_mymounts" to reference a new direct map.
  3) Create /etc/auto_mymounts and add a single line "/Groups         SERVER:/Groups" to create the direct map.
  THAT'S IT.  Three lines in three files.
  Now when I log into my laptop, there is a /Groups that is a network mount of my desktop's /Groups, same location AND it works for all of my users, even simultaneously. 
  In the end I'm happy with what I've got, but man was this a difficult path just to support fast-user-switching.  In Lion, Apple appears to be getting away from NFS (no longer turned on by default and remove from the GUI controls) but clearly this really useful functionality which doesn't exist in AFP. 
  I'm really curious, after all this work.  Any other ways to accomplish this?

  In my example above, yes I chose to mount the share "Groups" to the top of the root since that is where I put it on my server and I wanted to keep them similar; but that was just my preference, it isn't a requirement.  You can export and mount from other directories.

• Access Denied when trying to open a file that is encrypted on network share with EFS

  I just recently enabled EFS on the default domain policy and created a new network share, encrypted a file and added myself to that file and tried to open the file from my workstation.  I then receive an error "Access denied", I also tried
  to create a file and encrypt it on that same share and get an error "The requested operation cannot be completed.  The computer must be trusted for delegation and the current user account must be configured to allow delegation."  
  My steps.
  1. Enable group policy for EFS, removed the expired certificate that was already there and Created a new Data recovery agent.
  2. Created a network share, created a test file, enabled encryption on the file 
  3. certmgr.msc, personal and requested a new certificate, Basic EFS
  4. On the network share and properties of file, advanced, details and added the user
  5. from the workstation tried to access the file, Access Denied.  I can create any file I won't just can't add attributes to encrypt the file or open an encrypted file
  Now if I go to the server where the CA is located which is also the AD server and create share and run the same process it works as expected.  I'm guessing I have to export the cert from the CA server as a pfx and import that to both the server that
  has the network share and the workstation but that still doesn't seem to work.  Maybe I don't understand how EFS works and this is not possible?  Any suggestions would be appreciated.

  You are correct in not understanding how EFS works.
  When you connect to an encrypted file via a network share, the encryption/decryption takes place *on* the server. To enable over the network access, the server's computer account must be trusted for delegation.
  The server actually impersonates the user and creates a user profile on the server (containing the defined EFS certificate and private key). The important thing to remember is that the files is transmitted in clear text from the server to the client.
  See http://blogs.technet.com/b/instan/archive/2010/08/11/remote-efs-decryption-and-trusted-for-delegation-requirements.aspx
  Brian

• How do I set access to the same network share on a Windows server for multiple users on an iMac (school set-up) in Lion 10.7.3?

  We've got them authenticating/binding with AD (after hours of troubleshooting to get working), and their Home drive on the Windows 2003 server loads in the dock, but they also want to be able to load the same network shares on the server e.g. "Students$" for every student that logs onto the iMac.  I realise without Lion server we can't control it by group, but if we could at least set it up consistently for the students that would be a great start.
  Thanks.

  When you install you get the opportunity to install it for "All Users".
  It sounds like you have a demo version on your Mac however, you need to delete it:
  http://www.freeforum101.com/iworktipsntrick/viewtopic.php?t=105&mforum=iworktips ntrick
  Peter

• Can I have a network user with the same name as a local user?!

  I have just set up Mac OS X 10.8 SErver with Open Directory.  I have about 20 machines that I will be setting up, some which have mainly been used localy and just used to tap into Shared Files, [historically], but am wanting to use network users for better backup and support.
  However some of the legacy accounts were not used on off the server...  What I have is the following :-
  a)    [Person A]  - They are a network user with Password [Password A]
  b)    The computer is [Person A], they have a Password [Password Old] (so it is different)
  I have Network Account Users turned on, with a green dot! (have domain all set up)
  However How do I connect using either a or b.  depending on what i feel like that day!
  ? Help any ideas.
  Ultimately I will have set up all my client machines with a client admin user and standard password... but I am not there yet!

  Moving from local (legacy) users to network users takes a one-time hassle of moving the contents of their local home folder contents up to the server. Using a finder copy never worked for me. What I finally found worked reliably was using rsync to copy the entire users local folder up to the server. Once on the server, move the files into place (if you didn't rsync them there directly. Finally, Chown all the files (on the server) to associate them with the correct userID on the server. If everything looks right on the server, you can test by trying to login as this user from another local Mac (but now as a network account), and hopefully their home folder looks like they expected.
  Note you will need admin access in the local machine and the server to rsync their home folder. You don't want to be logged into their account while trying to copy their files up to the server.
  If rsync is not your bag, a portable hard disk and/or disk image of their home folder is another way to move their stuff.
  Once you've verified that their network account got to the server ok, then REMOVE the local account.