Admin account issues, even root can't resolve!

Similar Messages

• After upgrading to lion vevo, youtube, and hbo no longer plays videos. I'm assuming this is some kind of plug-in issue. How can I resolve it?

  After upgrading to lion, vevo, youtube, and hbo no longer plays videos. I'm assuming this is some kind of plug-in issue. How can I resolve it?

  Adobe has published a list of known issues relating to Mac OS 10.7 Lion here:
  http://kb2.adobe.com/cps/905/cpsid_90508.html
  The download page for Flash Player for Mac is here:
  http://get.adobe.com/flashplayer/?promoid=ISMRZ

• Trackpad Admin Account Issue

  This morning, I was cleaning my computer, and when I started up my computer later on, I discovered that the trackpad of my MacBook could not click. I could move the pointer around the screen, but then my clicks on the trackpad would not register. I signed on to another account on my computer, and to my surprise, the clicks registered.
  Any idea how to resolve this issue? I've had the same problem before with a guest account, but I'm not so sure how to resolve this with an admin account.

  You may need to use an external mouse to do this but open System Preferences (under the Apple menu) and go to the Trackpad pane. Check the settings there.
  Best of luck.

• ISE password expiration for Admin account issue

  OK .. we have been working on getting ISE up and running for a little while now and I have come across an odd and reoccurring issue with my admin accounts. I cannot figure out if there is something that we have missed in the setup or if there is and actual issue with the password policies. It seems that there is a "user" type password policy and then there is an "admin" type policy and am trying ti figure out if they are stepping on each other or something. I am running version 1.2.0.899 with patch 5,1.
  Here is the issue. I have started receiving password expiration reminders for the two admin accounts I have setup on the cluster. I have my address setup for an admin user named "admin" and an admin user named "wberry" and I receive two different e-mails for both accounts. The issue that I have is the dates listed in the e-mails. This is one e-mail that I get:
  The password for your local admin "wberry" is expiring on Mon Jun 01 09:43:03 CDT 2015. Please update immediately, by going to https://mem7700.spd.mli.corp/admin, signing-in, and clicking on the user name at the upper right corner.
  This is the second email that I get for the same account:
  Your network access password will expire on Thu Dec 03 08:43:03 CST 2015. Please contact your system administrator for assistance .
  As you can see the dates in the two messages are completely different. My admin policy is set with expired 180 days after creation and last change and the reminder is set to 10 days prior to expiration. The user password policy lifetime is also 365 days if password not changed with the reminder after 355 days. 
  Thoughts / recommendations.
  Brent

  Here you go:
  http://www.cisco.com/en/US/docs/app_ntwk_services/data_center_app_services/application_networking_manager/4.1/user/guide/UG_over.html#wp1053919
  In fact, to reset the password, you must choose the change password option before you login the GUI.
  Cheers,
  Dom.

• Newbie: Admin account issues

  I just installed a fresh copy of Leopard Server. After the install, I was faced with the "Administrator" account that I created during installation, and a "Local Administrator" account that I did not create.
  What is the functional difference between these two?
  Which one should I be using to update the server OS, create users, groups, sharepoints, etc.?

  Well,
  my initial reaction is that canyon-sized leaps of logic don't help anyone.
  I think where many people get into difficulties (be it Mac OS X Server or just as much, MS Small Business Server), is they start out with unrealistic expectations,
  perhaps don't read all the documentation, and/or when they do, gloss over server & network fundamentals that are absolutely vital to know and understand, prior to setting up any server(s).
  I do think Apple did themselves and everyone a dis-service in the extent to which 10.5 Server was marketed as (suggesting that) not requiring a certain level of skill, knowledge and expertise - in working with servers and networks.
  In fact, setting up and maintaining a server requires a significant amount of knowledge and know-how, a sizable skill set, and a willingness to both learn and work (maintain, troubleshoot, investigate) methodically.
  To answer your question:
  The "Administrator" account is an OpenDirectory admin account, for working with OpenDirectory
  based accounts, whereas the "local" admin is just that - for working in the (server-) local directory.
  Many of Apple's services in 10.5 (wiki, for example) require user (and group) accounts be "network" (ie: OD) accounts, in order for things to work correctly.
  For updating the server, you can use the localadmin account.
  For "create users, groups, sharepoints, etc.?" , depending on what you have in mind, you probably want to use the "Administrator" account.
  The "directory" based accounts in this case will beOpen Directory accounts,
  and OD is given an excellent introductory explanation here (note however that it's pre-10.5 but apart from the bit about NetInfo is still completely relevent):
  http://www.mactech.com:16080/articles/mactech/Vol.22/22.10/2210MacInTheShell/ind ex.html
  For more on that, see
  http://www.apple.com/server/macosx/resources/
  namely "Open Directory" under the Tech Briefs section,
  as well as the "Open Directory Administration" , and other guides there.

• Lion Admin account issues

  What looked like a very smooth change at the beginning is turning into a very tedious affair. Apart from having to deal with no support for PC-software, I am experiencing a problem with my admin account. It was transferred from Snow Leopard to Lion but is only partially recognized. Sometimes, when trying to make changes, I get the admin password prompt, on other occasions it won't allow me to install anything new. I tried to set up a new admin account, but to no avail.  I am still told that I am logged in in a standard account. Rebooting, logging out and in again, etc. does not help. Can anybody help with this, or do I need to revert to 10.6.8 until Apple has fixed this glitch? And how would I do that? Thanks for any suggestions.

  the directory services entry for your admin group is corrupted and needs to be replaced. see this post by biovizier for a solution.
  http://discussions.apple.com/thread.jspa?messageID=9141393#9141393

• Even root can't access volumes

  Three of the four volumes connected to my XServe show a lock icon on them for all my users, even the root. I suppose I'd like to know how this could happen, but more importantly, how do I fix permissions on these? I've tried chmod as root, but it doesn't work since the root doesn't have access.
  In SA "File Sharing" the volumes show no ACL and POSIX user of "_unknown" having Read & Write. I suppose "_unknown" implies a deleted user, but I haven't changed the original administrator account since install. I have created and turned on Open Directory, but the original administrator is still present in the local directory.
  Help?
  I am currently trying to repair permissions on the boot drive, which I can access. Disk Utility cannot access the other three drivers to verify or repair permissions...
  One of these volumes shows the administrator account having an ACL of "Custom". What does "Custom" mean?
  Message was edited by: Jupeman
  Message was edited by: Jupeman

  the directory services entry for your admin group is corrupted and needs to be replaced. see this post by biovizier for a solution.
  http://discussions.apple.com/thread.jspa?messageID=9141393#9141393

• Can't run programs from non-admin account: redux

  Background: I have years of experience with PCs, very little with Macs. I work with children in a group home. The tech support people who set up this iMac (OS X 10.2) have long since departed, and no one in the organization has any clue as to what changes they made to this system, and I'm sure that those tech people made some changes. For example, in admin accounts other than "root," either there is no access to the Utilities folder or the folder has been well hidden.
  The Problem: The boys in this home will use a non-admin account. The programs I have installed for them will run under admin accounts but not under the "boys" account, which is non-admin. The system tells me that the account does not have enough access privileges to run the programs. (Program that had been installed before I got access to this iMac will run under the "boys" account.)
  In discussions on this forum several months ago, I thought the answers I got here had helped me solve the problem. Then, for administrative reasons, I did not touch the iMac until last week. What I thought had been solved is not solved.
  From "root," using the "Capabilities" option in the Accounts folder, I have added to the "Add other applications..." section the programs I want "boys" to have access to. But this doesn't work. When I log in to "boys," access is denied: insufficient access privileges.
  If I give up on this system, the boys will not be able to use this iMac, and that would be a shame.

  I realize that it sounds like I ignored all the previous advice before I drafted this latest post. But the first thing I did when I returned to the iMac was to look at the posts.
  I didn't touch the system for six months. I was waiting for approval from administration to upgrade the OS. By the time I got the approval, upgrading was no longer an option -- according to the manager of the local Genius Bar. This system is not capable of running 10.5, and Apple will no longer sell 10.4. I can find 10.4 on the Net, but those are private sellers and the price is too high.
  Now that I've got that out of the way, the current task: I have no idea why, but the gains I accomplished six months ago have disappeared. The "boys" account can run none of the software I installed. No one else has touched the system. (I live alone.)
  I logged on as "root" and went to Accounts. Using 10.2's Capabilities function, I tried to check all the boxes for "boys." But when I close the screen and then re-open it, the system has unchecked "Open all System Preferences"; "Change Password"; and access to "Utilities."
  At this point I cannot create new folders under "boys." "boys" can run software that was installed before I got the machine, but that's all.
  I have to assume that I inadvertently did something that wiped out my previous gains. But I ain't got a clue.

• Lost Admin account while installing Leopard

  While installing Leopard I've somehow lost my only Admin account. Consequently I can no longer install new software. I've attempted to boot backup using the Leopard install DVD and holding down the "C" key but it boots straight back into Leopard without the option to change the password. I've also attempted to boot into single user by holding down the Apple and "S" key but that didn't work ether. Of course attempting to reinstall Tiger doesn't work because I get a pop up that states it can't be installed. At this point I've ran out of options and look forward to any helpful suggestions.

  Here is what I had to do:
  Insert the 10.5 Install CD.
  In the finder go to the 'Go' menu and select 'Go To Folder'
  In the field provided type: /Volumes/Mac OS X Install DVD/Applications/Utilities and hit enter
  Open the Startup Disk application
  Select the install DVD as your start up disk. You must quit the start up disk app, it will not let you restart for it.
  Restart the computer with the DVD in the drive.
  You can now set or reset the password for the Administrator (root) account.
  Set the start up disk as your normal start up disk. Reboot.
  Log in with the id root and the password you set/reset
  Open System Preferences
  Select Accounts
  Set the desired account to an admin accout.
  Log out of root (This is VERY IMPORTANT)
  log in to your admin account.
  You may want to disable your root account at this point but since this issue could reoccur it may be better not to, though this creates certain security issues.
  April.

• Domain Admin Account

  Hi - we are implementing secure Domain Admin accounts. We have 4 domain controllers (one 2008 and 3 2012's) in our environment. I am trying to restrict the Domain Admin accounts so that they can only log onto the 4 DC's. I added the DC's to the "Log
  On To" tab in the account setup.
  I have no issues logging into the 2008 DC, however, I cannot log into the 2012 DC's. I get "The Local Security Authority cannot be contacted". We found an article that stated you have to also add the workstation you are logging in from to the "Log
  On To" options. Is that the only option to accomplish this? I don not want to have to add all possible combinations of workstations where one of the engineers could be logging in from.

  The role separation is part of how it should be done, but it sounds like you found that out the hard way.  But encouraging users to log on to interactive sessions on DCs is usually a really bad idea.  Ideally, nobody would ever see a DC's desktop. 
  You'd probably be better served by creating a management workstation or server, installing RSAT, preventing anyone but domain admins from logging on, and using that for management. 
  But most people just use "run as different user" to launch admin tools with admin credentials on their regular workstations.

• How to reset admin account

  On our development database someone changed set administrator=no for my admin account. How do I set it back to admin? It’s not letting me in.
  Thank you for your help!
  pakya

  If someone else set your account to a non-admin, then they must have an admin account....can't you ask them to set you back to an admin?

• Restoring admin account from non-admin account

  For a while I've had a problems booting and logging in, which is either a HD or corruption problem, but once in to my admin account, I'm fine for the rest of the day. (This isn't a question about these problems, I know I must do something separately about that.)
  This morning I had greater problems than usual, followed by a problem in my admin account - having saved a document once, the next time I got ("[document] could not be saved"). So I restarted, but couldn't get from my login account to my main admin account (after the login details box disappeared, I was left with the empty Leopard splash screen). A second restart brought the same result. I can assume my admin account has some corruption?
  I'd like to restore the admin account from the Users folder on yesterday's Time Machine backup, but how do I do that from one of my other accounts, all of which are non-admin accounts?

  christopher rigby1 wrote:
  2. They put Leopard on my machine as - incredibly - they didn't have Tiger install disks, but they couldn't give me the Leopard install disks so I can't do a system restore.
  That's a violation of the license. Legally, you're running pirated software. Worse, you can't restore OSX or Apple apps, repair your internal HD, do a full system restore from your TM backups, etc.
  You need a retail Leopard disc, period. If the folks who installed it won't supply it (you might gently suggest that you'll report them to Apple), call AppleCare and pay the $129. If you're going to run Leopard, you need to pay for it.
  Or, return to Tiger. On your EHD running Tiger, use the Restore tab to copy the entire Tiger OSX volume to the internal HD. Be sure to check the +Erase destination+ box. That will, of course, erase everything on your Leopard installation. You might be able to copy some of the data elsewhere temporarily, then copy it back, but any data used by Leopard may not work with the Tiger apps.
  I've now determined, by trying to login to the iMac HD via Restart+option that my admin account is corrupted - I can login to every other account but not that one.
  However, as I explained, i can see all its folders and files via the Tiger account with the same name and password. Here is a possible action plan, let me know what you think?
  Does that sound workable?
  Doubtful.

• Can't delete admin account even as Root

  We're experimenting with integrating our Mac users into Active Directory. I've read that you should delete the user account in Sys Prefs first and leave the home folder.
  The problem we're having is that I can't delete the users account in system prefs even if I log in as the root user. I get a generic error after about 10 minutes of looking like it is working that says the account could not be deleted.
  My guess is it has something to do with the fact that I had already logged into the same acount with an Active Directory login and the permissions have been changed on certain files and now it can't complete archiving the home folder because of some rights issue.
  I have unbound the computer from the AD forest and ran disk permissions to no avail. I'd like to keep the existing home folder to use with the network login if possible so I haven't tried the quick delete option.
  Any advice would be greatly appreciated.
  Thanks
  -T
  MacBook Pro 2Ghz, iMac, XServe, G5   Mac OS X (10.4.8)  

  You can't delete an account if it is logged in, or if it is the only admin account on the system. So make sure that there is at least one other admin account, and that the account you want to delete os logged out.

• Can't login to local NON-admin accounts-Directory Access set to server

  I have a strange problem on a set of laptops that I cannot resolve and am hoping someone can help me.
  Here is the issue:
  I have a set of building laptops (PowerPC, OSX.4.11) that seemingly will not "search locally" in the authentication process. The logins seem to work fine for NETWORK logins to our Open Directory Master xserve, but these machines will not login to any LOCAL non-admin accounts. The local root and local admin account logins do, however, work fine. ?? The remainder of the building computers (Intel iMacs OSX.4.11) appear to have the exact same settings and login fine both locally and via the network home directories.
  I have tried the following:
  Deleted DirectoryService preferences folder (MacintoshHD-->Library-->Preferences->DirectoryService)
  Deleted the mcx cache in Directory Access
  Tried adding a new non-admin user to test (still will not login)
  Removed and re-created LDAP configuration (all set to custom)
  Tried setting the LDAP to the automatic settings ("Add DHCP-supplied LDAP servers to automatic search policies")
  Disabled all network connectivity (turned off Airport and disconnected the ethernet cable), still cannot login to local accounts
  Tried to bind in LDAP configuration (when I did bind the machine, it would no longer authenticate to the network authentication server, so I did an "unbind" and restarted and it went back to performing the network logins, but still will not login to local non-admin accounts).
  Reset passwords in System Prefs and also re-typed them in NetInfo Manager
  Deleted login keychains
  Deleted mcx.plist
  Reinstalled the OS from disk and local logins worked TEMPORARILY--UNTIL I set the LDAP directory access to authenticate to our server (which I also need for the network logins to work),then, the issue started again.
  *Same results with both ethernet and wireless connectivity enabled.
  *Note: I also manage these local accounts via WGM (installed on the local machine) and even tried disabling that and still no luck.
  Please help...I have spent hours and hours trying to find a solution and nothing seems to work! What am I missing??

  Mostly just a bump...
  How about that .local extension, or trailing / ?

• Mac Mini Snow Leopard Server - can't login with admin account

  SO....i was having problems setting up network accounts from my mac Mini Server. I took it to the Apple Genius bar one night after work to get some help on why the login screen appears for Other..but could not login into any of the accounts I created.
  They made an appt for me for the next morning since they had a "guy" that could help the next morning.
  When I got there for my second appt..they said they don't support server issues. Only consumer products..I though the server WAS and i WAS a consumer of their products..so..they gave me a number of a consultant..of course..for pay...
  So later that day I was trying some other configurations....the power came out while I was checking a monitor cable..and when I restarted I couldn't login to the master admin account.
  Since mac mini server doesn't have a DVD drive..you have to boot up with their Server DVD from another computer and the Server installs it through airport.
  So I did the boot up via airport from the server install DVD.
  Did the Utility disk repair AND password changed. Got some error about not being to able to login if I don't change the keychains to the account.
  Rebooted the server.
  It didn't work.
  So now stuck with a login window..and NO ACCESS to change anything.
  HELP!!!!

  You can access to system with root account.
  If you didn't enable before, boot from SLS DVD and activate from menu (after choose language).
  After that, reset all the passwords (there is a menu to do that).
  After that exit from installer and reboot.
  At login screen you can try to login with your user and new/blank password.
  If it fails, you have to login with user root and the password you choose before.
  With root user, you can access to all system, be very carefull.
  Now you can create a new user and import all the files (you have to do a little work with permissions)
  I hope i help you!