Adding OSX server to AD--binding questions and server type

Similar Messages

• Win7 clients can't connect to OSX Server after 10.10.2 and Server 4.0.3 update

  I'm troubleshooting an annoying issue with our Yosemite fileserver at work and hoping someone has suggestions.
  The server is running Yosemite, clients a mix of MacOS from 10.6 through 10.10, and some Windows 7 boxes.
  With the server on 10.10.1 and the just-prior version of Server (4.0, I assume; were 4.0.1 and 4.0.2 ever available to the public?), everything basically worked. Last night, I updated the server to 10.10.2 and 4.0.3.  Nothing unusual during the update apart from a bunch of spotlight indexing processes running as individual users sucking up a lot of CPU for the first few minutes, which may be normal.
  However, now almost all the Macs are fine, but the Windows clients are all getting permissions errors when trying to connect. Even weirder, one Yosemite client was also getting an error on login when trying to connect via SMB, both on 10.10.1 and 10.10.2; the same computer connecting via AFP works fine.
  I'm inclined to think that it has something to do with the switch to SMB3 mentioned in the changelog for Server 4.0.3, although I'm not 100% sure that didn't exist under 4.0 as well, and if this is the problem I'm not sure what to try to fix it.
  I'm already aware of HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\LmCompatibilityLevel needing to be at least 3 (or non-existent, so it defaults to 3 on Win7) to work with Yosemite; these clients already have that registry key set. Suggestions?

  Addendum:  I just realized that the Windows users *can* see their own home folder when they connect to the server without the main share I'm trying to mount specified.  So it's not that they're completely unable to connect, it's just that the server isn't offering them any of the main share when they do.
  When I tried mounting the server from 10.6 manually forcing SMB (with an admin user, no less), I got the same thing--just my user folder, none of the main shared volumes...

• How to connect server using naming service IOR and server IOR in java

  I need to connect server code from my client code using naming service IOR and server IOR. what are the steps have to be followed to bind the server.
  please help me.

  Connection refused means that you can't reach the server or that the server isn't listening.
  Kaj

• Server slow down with client and server slowdown

  The problem started a couple of weeks ago and it has been hard to nail down. When people are working there are times when the computers will pause for a few seconds(1 to 5) and then continue. It doesn't seem to be any one program or type of computer (G4 or G5). Everybody that is experiencing the problem is logged in via the OS X server with their Home directory on the server. If we create a local user the problem doesn't appear. It seems to point to the OS X server but all indicators show the server is hardly doing anything thing at all. Very low CPU utilization, disk usage, network traffic, throughput, and the system memory never maxs out.
  We switched to a different X Server, same problem.Everything is running 10.3.9 client and the server version is 10.3.9

  The problem started a couple of weeks ago and it has been hard to nail down. When people are working there are times when the computers will pause for a few seconds(1 to 5) and then continue. It doesn't seem to be any one program or type of computer (G4 or G5). Everybody that is experiencing the problem is logged in via the OS X server with their Home directory on the server. If we create a local user the problem doesn't appear. It seems to point to the OS X server but all indicators show the server is hardly doing anything thing at all. Very low CPU utilization, disk usage, network traffic, throughput, and the system memory never maxs out.
  We switched to a different X Server, same problem.Everything is running 10.3.9 client and the server version is 10.3.9

• Project Server 2013: Empty issues, questions and documents list in the PWA task details pane

  Project Server 2012, SharePoint 2013
  I have a task with a few attached issues, risks and documents. And I see links to that in the PWA project plan (as icons).
  But when resource open his PWA task pane attachment lists (issues, risks and documents) are empty.
  Why? How to add documents in that lists?

  Hi,
  I have a solution that might work for you, please follow steps below:
  1) Go to your project schedule, make a small modification to any task on schedule and 'Publish' the project.
  2) While your project is being published and saved, open another window 
  Server Settings -> Manage Queue Jobs
  3) Here you can view the progress of your current Project Publishing update, check if all goes smooth and your project is published successfully without indicating any errors of issues like :
  Reporting transfer WSS links failed ( to view any error look at the last column of table on Manage Queue Job page)
  4) Also in your Project window see if the project is published and not saved as Draft.
  Basically this will give you a fair idea of your project being published or not, if not that there is some problem with your Lists ( Risks, Issues and Documents).
  Regards

• RMIRegistry and Server on different Machines

  Is it possible to run rmiregistry on one machine and then bind an object from a different machine to this registry. I can't find any documentation to say that you can't.
  If i try to, i get a hostname is a non-local host Exception.

  What im actually doing is this :
  I have a client program that wishes to transport some C code to a server for execution on that server. This would be simple enough but the client should not be concerned with where the server is, but only needs to know a name server that holds all object and server names so as they can then query this one registry for a server name and then connect to this server.
  I was hoping that you could run rmiregistry on one machine, a server on another, bind that server object to the registry and then connect to the server from the client via the registry.
  I have written my own registry object that implements this fine but i wanted to know whether this was a long winded way. Surely RMI is a java developers alternative to CORBA (according to sun web site !), in which this would be possible with the ORB running on a remote machine to client and server?

• Connection between SDM client and server is broken

  Dear All,
  First of all this is what I have
  -NW04 SPS 17
  -NWDS Version: 7.0.09 Build id: 200608262203
  -using VPN connection
  -telnet on port 57018 is succesfull
  I can login to SDM server (from NWDS and from SDM GUI) I can see the state of SDM(green light), restart it, can navigate through tabs in GUI, but every time I am trying to deploy an ear i have this error:
  Deployment exception : Filetransfer failed: Error received from server: Connection between SDM client and server is broken
  Inner exception was :
  Filetransfer failed: Error received from server: Connection between SDM client and server is broken
  I have already read a lot of topics,blogs,notes but didn't find the solution.
  Can anybody help me?
  Best Regards

  Having same issue. Nothing helped so far... Using NWDS 7.0 SP18.
  I have turned SDM tracing on and this is what I see on client side after sending first data package:
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl: debug "20120224140253 0280/17 Client: finished sending string part"
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl: debug "20120224140253 0280/0 Client: receive String part from Server"
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl.receiveFromServer(NetComm ..): Entering method
  com.sap.bc.cts.tp.net.NetComm.receive(): Entering method
  com.sap.bc.cts.tp.net.NetComm: debug "Method "receive(char[])" could not read all requested bytes. There are still 12 bytes to read"
  com.sap.bc.cts.tp.net.NetComm: debug "Caught IOException during read of header bytes (-1,          43):Connection reset"
  com.sap.bc.cts.tp.net.NetComm: debug "  throwing IOException(net.id_000001)"
  com.sap.bc.cts.tp.net.NetComm.receive(): Exiting method
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl: Exiting method
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl: debug "20120224140253 0281/1 Client: connection was broken"
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl: Exiting method
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl: debug "20120224140253 0281/0 Client: finshed sendAndReceive"
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl: Exiting method
  My connection on server is still active so I have to restart SDM server to reset and try it again.
  Anyone have idea whats happening?
  Edited by: skyrma on Feb 24, 2012 2:46 PM
  Edited by: skyrma on Feb 24, 2012 2:47 PM
  Edited by: skyrma on Feb 24, 2012 2:47 PM

• Dead 10.6 Server, Forced Upgrade to 10.9 Server

  Hello all, and thank you for your help in advance.
  The hard drive died on my 10.6.8 server. So, I am migrating to new harrdware and 10.9.2 Server 3.1.1.
  I installed 10.9.2 on the new server, Xcode 5.1.1, and Server 3.1.1. All the software is up to date.
  Then I used the Migration Assistant to pull the old data from the Time Machine backup of my 10.6.8 server.
  I setup the basic server setings, made sure the Users were still there, then I went to Websites in Server. Nothing was setup. No big deal, I setup my websites and virtial domains. Then I moved the websites from their old folder:
  /Library/WebServer/Documents/
  to their new folder
  /Library/Server/Web/Data/Sites
  and I associated each website with their proper folder.
  I turned the Websites services on, and all was good.
  I setup File Sharing, turned it on, and all was good.
  Then I went to Mail, and all was not good. Mail will not get past "Starting".
  I repaired the permissions on the drive, and I rooted around the logs. I found a couple of small problems and I fixed them. But still no luck. There's nothing in /Library/Server/Mail/Data/mail/ either, which I presume where my emails should be.
  I've been working on this for a couple of days now and I'm ready to start over, but I don't want to lose my users emails. So here's my plan.
  Question 1. I intend to export the Users from 10.9 (since they're setup all nice and pretty) and reimport them on a fresh-not-migrated setup. How do I export my users and their settings? I don't need their home folders or anything like that because they're mail only users - but they do have email aliases - and some are forward only users (no local mail storage).
  Question 2. Where does 10.9 keep user's mail? Is it
  /Library/Server/Mail/Data/mail/
  Question 3. How do I migrate users email? Do I just copy from
  /backup/…/private/var/spool/imap/dovecot/mail/
  to the 10.9 folder?
  Question 4. How do I associate the old mail with its proper account on 10.9?
  Best Regards,
  Tiger

  Those folder names are normal - thay are the GUID (GeneratedUID) for each user.
  You can check the GUID for a user with:
       dscl /Search -read /Users/bob GeneratedUID
  Or check the owner of the GUID with
       dscl /Search -search /Users GeneratedUID 7B99D102-36F6-4595-9ADD-32CD4803D870
  If you did a migration, then you've retained each user's GUID, so they are properly associated.
  I generally avoid a migration - instead opting to export users from 10.6 and import them into 10.9
  This process retains the user's GUID - but you lose their password.
  You do need to reset permissions, under 10.6 - wach GUID folder was owned by the user.
  With 10.9, all of them shoould be owned by _dovecot and group mail
  So moving mail is pretty simple.
  Export users, import into new server.
  Reset passwords
  Setup server the way you want it.
  Copy mailstore to where it should be and then change it's owner/group.
  The location of the mailstore can be checked or set with serveradmin
  sudo serveradmin settings mail:imap:partition-default
  You would reset permissions something like this
  sudo chown -R _dovecot:mail /Library/Server/Mail/Data/mail
  Jeff

• How do I bind to directory server with SSL and authentication?

  I'm running Lion Server 10.7.3, Open Directory master. In Open Directory/Settings/LDAP, I've checked the box to Enable SSL and selected a (self-signed) certificate. In Policies/Binding, I've checked the box to Enable Authenticated Directory Binding.
  Testing with a client computer on which Snow Leopard has been freshly installed and fully updated, I went to System Prefs/Accounts to bind to the new directory server. The good news is, the binding was successful, and when the client initiates an AFP connection with the server, it uses Kerberos, creating a ticket as expected. (Which doesn't work with Lion clients, alas, but that's a seperate matter.)
  Here are the problems:
  1) It looks like the binding did not use SSL. By which I mean that when I opened Directory Utility and examined the LDAPv3 entry, the SSL checkbox was not checked. (If I then check the box, everything looks fine until I restart the client, after which I have a red dot. So I'm guessing that checking the box does nothing until after restart, and that it breaks the binding.)
  2) I was never prompted to authenticate for the directory binding.
  So I get that literally I'm *enabling* SSL and Authenticated Directory Binding, but it seems like the defaults are to bind without SSL or authentication, and there's no obvious-to-me way to force the binding to use those things. How do I do that?
  What I'd really like to do is *require* SSL and Authenticated Directory Binding. I want this because my belief (correct me if I'm wrong) is that if authentication is required to bind to the server, no one will be able to bind to my server without my permission, and that SSL offers a more secure connection to my server than not-SSL. How do I require these things, or do I not really want to?
  Thank you.

  You cannot connect to databases via Muse at the moment. Please refer: http://forums.adobe.com/message/5090145#5090145
  Cheers,
  Vikas

• HT201269 When I try to setup my new iPad air, I go through all the steps for the iCloud sign-in and choosing security questions and what not. But after I hit the agree to the terms and conditions... It says Apple ID could not be created because of a serve

  When I try to setup my new iPad air, I go through all the steps for the iCloud sign-in and choosing security questions and what not. But after I hit the agree to the terms and conditions... It says Apple ID could not be created because of a server error. Have no clue what to do... I've restarted the iPad and get the same message. But my internet works just fine.

  1. Turn router off for 30 seconds and on again
  2. Settings>General>Reset>Reset Network Settings

• HT5624 how do I change the security questions on my daughters itunes account. I do not remember adding the questions and they do not make sence to me. can not figure out how to get to her  email account that it is showing for her altern

  I cant seem to be able to change the secutity questions on my minor daughters itunes account. I set the account up but I do not remember adding the security questions and they do not make sense to me. It says that the alternate account it would be sent to is@ me.com but I can not figure our how to get to it to retreive the email to reset the questions. My daughters account may have recently been hacked so I am trying to change all passwords. I changed the itunes account and added another email but I still can not change security questions in case I ever need them.
  <Email Edited by Host>

  We are fellow users here on these user-to-user forums, you're not talking to iTunes Support nor Apple - I've asked the hosts to remove your email address from your post (it's not a good idea to post personal info on any public forum).
  The reset link on an account will only show if there is a rescue email address on it, alternate email addresses are different and not used for resetting them. If she has a rescue email address on her account then steps 1 to 5 half-way down this page will give you a reset link on the account : http://support.apple.com/kb/HT5312
  Navigate to appleid.apple.com using your web browser.
  Click "Manage your account"
  When prompted, sign in using your Apple ID and password.
  Click Password & Security
  You'll be asked to answer 2 of your 3 security questions before you can make any modifications. If you are unable to remember your answers, you can choose to send an email to your rescue email to reset your security questions.
  If she doesn't have a rescue email address (you won't be able to add one until you can answer your questions) then you will need to contact Support in your country to get the questions reset.
  Contacting Apple about account security : http://support.apple.com/kb/HT5699
  When they've been reset (and if you don't already have a rescue email address) you can then use steps 1 to 7 half-way down the HT5312 link above to add a rescue email address for potential future use

• Simple question; Mac Server Setup for Mail, iCal and Address Book Services.

  Hi Guys;
  I'm new to the Mac Server world and need a few questions answered.
  I have purchased a new Mac mini Server for hosting File, Web, Mail, iCal and Address Book Services.
  I’m comfortable setting up File and Web Services however I’m a bit uneasy setting up Mail, iCal and Address Book services to be access locally and remotely(via the internet).
  My current setup is;
  Internet connection (Dynamic IP) -> Router -> Mac mini Server.
  I have purchased a domain name (Thornton-net.com) from DynDns.com + a custom DNS service as I can setup my router to update my domain’s IP address automatically.
  I can access File and Web Services remotely (thortnon-net.com) perfectly without any issues via the Port Forwarding feature of the Router.
  If I setup Mail, iCal and Address Book Services -> will Mail, iCal and Address Book clients be able to access these services hosted by the server via Thornton-net.com?
  Message was edited by: Allan.Thornton

  Welcome to the forums.
  For mail services (and specifically for your outbound mail to be accepted by other mail servers) your mail server needs to have a static IP address and matching forward and reverse and MX records, or a tunnel to a static IP (with matching DNS), or you need another mail server where you have an authorized relay. Without that, your mail will be considered a spam engine, and dropped.
  Additionally, your particular tier of service with your ISP (with a static IP) will generally allow server-oriented access and server-oriented network traffic, where a residential or other tier of service (with a dynamic IP addresses) can be firewalled.
  The ISP controls the "high ground" of the network connections here, so you pretty much get to play by their rules and requirements. If they don't offer static IP, then (presuming their T&Cs permit it) you get to tunnel (via IPv6, for instance) to a tunnel broker, and receive your network traffic via that (and with matching DNS) point of presence. That could well be a tunnel for your mail at whichever your DNS provider is here, because you'll have issues with your dynamic address. (You get to sort out if they offer that.)
  Far and away the easiest approach (if you want to host this stuff yourself) is to work with the ISP. They're inherently involved in your network, and they and they alone have full control over your reverse DNS configuration.

• I've had this iPad computer thing for a few months now. I used to just put in my password when I downloaded an app or such like. Now it wants me to set up 4 further questions and answers "for added security". How can I return to the old system?

  I've had this iPad thing for a few months. It used to just ask me for my password, but now it is demanding I set up four questions and answers for
  "added security". I don't want to do that, I just want to carry on as I was but the machine is preventing any app downloads etc.
  Seems the stupid machine is in control.
  How do I get it to listen when I threaten it with a good thrashing and a one way trip to the garbage unless it does what I say?
  Thanks

  Chick3597 wrote:
  Regardless of apple updating something or another. I have no need for the additional questions and really don't want to allow them to bully me into compliance.
  You may have no need for additional but Apple does. They don't want your iTunes account to be hacked and then go complaining to them that their security procedures are not up to standards.
  Chick3597 wrote:
  So how can I continue in the good old fashioned way?
  Its really absurd to even ask this in light of the information that you have been given already. The "old fashioned" way is gone. It's Apple's store, Apples's rules and IMO - its a wise decision on Apple's part.
  You do not have to comply at all, but you will not be able to purchase from iTunes anymore, but nobody is going to force you to do something that you do not want to do.

• I forgot my security questions and I just added a gift card. Is there anyway I can manage my account from my iPhone becuase I don't have a conputer?

  I forgot my security questions and I just added a gift card. Is there anyway I can manage my account from my iPhone becuase I don't have a conputer?

  Security questions:
  https://discussions.apple.com/docs/DOC-4551

• When adding a yahoo email account I keep getting "Server Unavailable" notification.  This started after I updated my software.  I deleted my accounts and tried to re-add them but continue to get this notification??

  When adding a yahoo email account I keep getting "Server Unavailable" notification.  This started after I updated my software.  I deleted my accounts and tried to re-add them but continue to get this notification??

  hello, this is a scam tactic that is trying to trick you into installing malware, so don't download or execute this kind of stuff! as you've rightly mentioned, you're already using the latest version of firefox installed and you can always initiate a check for ''updates in firefox > help > about firefox''.
  you might also want to run a full scan of your system with the security software already in place and different tools like the [http://www.malwarebytes.org/products/malwarebytes_free free version of malwarebytes], [http://www.bleepingcomputer.com/download/adwcleaner/ adwcleaner] & [http://www.kaspersky.com/security-scan kaspersky security scan] in order to make sure that there isn't already some sort of malware active on your system that triggers these false alerts.
  [[Troubleshoot Firefox issues caused by malware]]