Cannot create mobile account

Similar Messages

• "Grouped" user cannot create Mobile account

  Hello
  Leopard Server 10.5.4 and Leopard client 10.5.4.
  In Server, we have a group of users called Group1. In this group we have a user called User1. When we try to create a mobile account, prompts for password, and then "There was an error creating mobile account" appears.
  When we try to create Mobile account for any user outside any group we have no problem.
  The Mobility prefs are the same in the Group1 and in the account outside the group.
  Any help appreciated.
  K.

  Look in the system log for clues.
  Also you can turn on ManagedClient logging from Terminal this way:
  sudo defaults write /Library/Preferences/com.apple.MCXDebug debugOutput -2
  Then reproduce the problem. The log will be here:
  /Library/Logs/ManagedClient/ManagedClient.log
  Remove /Library/Preferences/com.apple.MCXDebug.plist to stop logging (and increase performance).
  And please file a bug with Apple.

• 10.5.3:  Can't Create  Mobile Account

  I have a MacBook Pro that authenticates to Active Directory.
  When I try to create a Mobile Account
  [ System Preferences --> Accounts --> Mobile Accounts:Create ]
  I get prompted to
  "*Enter your password to create a mobile account*"
  However, it does not accept the password, responding with
  "*Incorrect password*"
  After three attempts, I get
  "*Mobile account creation canceled*"
  and then logged off.
  I've tried both my Active Directory account password, and the local administrator password. Neither work.
  At least I can get that far; in 10.5.2, the Mobile Account:Create button was greyed out.
  Is anyone else having the same problem? Is there a fix for this?
  I'm going to be out of the office next week for a conference, and would really like to get this working before then.
  UPDATE: When trying to enable FileVault for my A.D. account, I get the following message:
  *You cannot turn on FileVault for this account.*
  *This account is either a network account or the home folder is on a server. You cannot turn on FileVault for these types of accounts.*
  This makes this problem more than a minor annoyance, as my company policy -- and plain common sense -- requires encryption enabled for laptops.
  Message was edited by: Robert Racansky

  Hi Robert
  On the Active Directory Server SMB Digital Signing Requirements (there are two: Server and Client) need to be disabled. It's not enough to leave them undefined. Once that has been done make sure client clocks are within 5 minutes of the server's time clock. In the Network Preferences Pane make sure the mac is using the AD DC for resolving internal DNS Services and the Search Domain field is filled in with the appropriate AD Domain Name. It's also advisable to fill in the WINS Tab with the relevant information for the AD..
  Launch Directory Utility and select the Services Icon (click Show Advanced Options to see this). Select the Active Directory plug-in and click the disclosure triangle to show Advanced Options. Leave everything as the default and select 'Create Mobile Account at Login'. Fill in the Active Directory Domain field with the relevant information. For example if the AD's FQDN is adserver.addomain.com then the information should be addomain.com. Now click Bind. In the resulting window key in authentication details for an account that has authority for the AD Domain. Typically this would be the AD admin account name and password. What follows next will be a 5 step process. Depending on how well the AD has been configured this should take anything from 5-10 seconds and possibly 1-2 minutes. If it takes a short time this will be a good sign as to the 'health' of internal DNS Services as well as the AD configuration. The longer it takes the more the likelihood of problems.
  By the way there is no magic fix for integrating/binding mac clients to an AD Server. Over 90% of how well this goes will rest with how well the AD is configured.
  If the bind has been successful you should see a Kerberos TGT (ticket granting ticket) has been created in /Library/Preferences. It will be a file called edu.mit.Kerberos. You can inspect this and it should show the relevant details regarding the KDC (Kerberos Distribution Center). If you now log out you should see the Log in window display the local admin user as well 'Other'. It should look like a shadowed head and shoulders in front of a star field. Select this and supply your AD name and password. Provided the AD admin has defined a UNC path in the Profiles tab for your account on the AD Server for home folder creation and that you have full read/write privileges for that folder then you should be logging into your locally created home folder that also gets created at the same time on the AD.
  Its best if you sync when logging out as there have been problems syncing at other times. Mileage may vary.
  Hope this helps, Tony

• Users unable to create Mobile Accounts

  Good afternoon.
  I have an interesting problem with the creation of Mobile Accounts.
  We have a Computer Group with its Preferences set to allow the creation of Mobile Accounts & Portable Home Directories; with due consideration given to what to synchronise and what not to. The iBooks & Mac Books in this group are all used by one staff member only. They are all running 10.4.7 and have 256 or 512 MB RAM.
  The first two laptops added to the list allowed their users to create Mobile Accounts & PHDs no problem, and they continue to work. But any other machines I add to the group refuse to allow the creation of a Mobile Account. It seems that Workgroup Manager does no pass on their changed Preferences during subsequent logons. I have tested this by renaming a laptop at its entry in the group and seeing if the name is changed on the machine at the next login. It is not, but stepping through the machine’s settings at the logon display does give me a green light for network availability.
  I can create a Mobile Account on a machine by logging on as a user and amending their account Preferences, but this does not provide the same degree of flexibility in configuring synchronisation settings.
  Has anyone else seen this problem please?
  Brian Bowell ICT Support
  [email protected]
  Tel: 07 856 6537
  Fax: 07 856 6588-- -

  The problem was an error in naming the computer group. Renaming it solved the problem.

• 10.4.11 - Can't create mobile account

  I reimaged one of our powerbook G4 laptops and ran S/W update getting it to version 10.4.11. After rebooting I could not create an Active Directory mobile user account. Tried all the normal things - repair permissions, rebind to AD and reboot, even trashed the edu.mit.kerberos file and all plists in /Library/Preferences/DirectoryService and rebind from scratch. I probably trashed the mcx settings in NetInfo Mgr, but I don't recall for sure. Also the 'ol reset-nvram and reset-all in OpenFirmware. Nothing helped - kept getting the "can't login, users home folder is on an AFP or SMB share". When I logged in as my local admin user, I could connect to the homefolder path using the mobile-user's credentials (with Kerberos).
  My solution was to reimage the laptop again (ver 10.4.10), bind to AD & reboot, create the mobile account and then run S/W update to 10.4.11.
  I'm not really looking for a solution here, just a warning to people that you may not want to create images at 10.4.11 if you use mobile accounts. I plan on using my 10.4.10 images for the time being.
  Ta ta,
  JHL
  P.S. I haven't tried this yet on our iBooks, eMacs or iMacs.

  Similar issue...
  Updated an iBook G4 today to 10.4.11. After reboot it logged in with a Network Account (not mobile account this time - AD set to not create mobile account and to not create local home). I unbound from AD, rebooted and created a NetRestore image. Rebound to AD, set the Authentication order and rebooted. Now the network account wouldn't login - gives the Can't login now, homefolder on an AFP or SMB server error. (homefolders, sharepoints and permissions just fine.)
  Now for the strange part... I got sidetracked for about a half hour, then I went back to the iBook and the Network account was able to login again. After several unbinding/reboot/rebinding/reboot processes, I narrowed it down to it takes about 11 or 12 minutes after binding to AD for the network account to login properly.
  I had another tech install the 10.4.11 update on an eMac and the logins worked ok. But when I had him unbind/reboot/rebind/reboot, he had the same 11 to 12 minutes before a network account can login (same error.)
  Now for another strange part... he tried unbind/rebind again, but left AD 3rd in the Authentication order (after NetInfo and LDAP for OpenDir). The network account could login right away - these are AD useraccts.
  In my experience since 10.3, I've always had to put AD before LDAP/OD in the authentication order for the user-acct to authenticate name/password to Active Directory properly. I plan on trying this with the iBook tomorrow.
  My homefolders for these accounts are on x-server running 10.4.10 (haven't been brave enough to update the servers yet.)
  Has anyone else experienced these 10.4.11 anomolies with network or moble accounts? Either with 10.4.10 or 10.4.11 servers?

• Cannot create an account to register my printer and acquire my password

  I have a HP Photosmart Plus wireless printer. I cannot create an account to register and acquire my password. It tells me my email address is incorrect...which it is not and/or my password is incorrect. If I go to "forgot my password, it keeps telling me to enter my e-mail address even though I have done that. I tried to sign in using my Facebook account....doesn't let me and tried creating an HP Passport account. Cannot do ANYTHING!

  Hi,
  Thank you for posting,
  You will ge this error message if you have a Snapfish account created on your name.
  Please go to www.hp.com/go/eprintcenter and click on the Sign in Button. In the Sign in Page, please click on the Snap Fish icon and then enter the email address and the password and that will login to the eprint center.
  If you are still unabel to login, please click on Forgot Password on the Snap-Fish popup screen and then you will get an email with a temporary password and a link to reset the password. Once the password is reset, please go back to www.hp.com/go/eprintcenter and click on the Sign in Button. In the Sign in Page, please click on the Snap Fish icon and then enter the email address and the password and that will login to the eprint center.
  Say "Thanks" by clicking the Kudos Star in the post that helped you.
  Please mark the post that solves your problem as "Accepted Solution"
  (Although I am employed by HP, I am speaking for myself and not for HP)

• Cannot Create Blackberry Account?

  I can't set up my Pearl 8110.
  All I get when I get to e mail set up is   "Cannot create and account: An account alreday exists for this Blackeberry device.   It then tells me to call VodUK, who tell me Blackberry is active"
  I've set up through the wizard but when it comes to e mail set up, it won't let me when I enter PIN & IMEI as it says already registered. Phone is brand new unlocked. I';m using a Vodafone SIM and the phone is branded Vodafone.
  How can I resolve this?

  Yes, you need to contact Orange andn ask that the PIN be removed from the old account there.
  1. If any post helps you please click the below the post(s) that helped you.
  2. Please resolve your thread by marking the post "Solution?" which solved it for you!
  3. Install free BlackBerry Protect today for backups of contacts and data.
  4. Guide to Unlocking your BlackBerry & Unlock Codes
  Join our BBM Channels (Beta)
  BlackBerry Support Forums Channel
  PIN: C0001B7B4   Display/Scan Bar Code
  Knowledge Base Updates
  PIN: C0005A9AA   Display/Scan Bar Code

• Retroactively create mobile account at login?

  Hi all,
  With one laptop configuration, after binding to AD, I overlooked the "create mobile account at login". This resulted in the main user of this laptop being able to authenticate only if they're connected to the LAN.
  How could one retroactively allow an AD account to be mobile once it's created? The obvious step of checking the proper enable box does not retroactively change the mobile status of an existing account.

  I learned that I'd misunderstood the problem- it was that no network accounts could authenticate on this machine, and the only way the main user could authenticate was to go off the LAN, not on.
  It was a clock time skew. I discovered it while trying to unbind from AD, and got an error regarding time. AD was disallowing network logins to the machine, and it was only the mobile account that was working.

• Cannot creat icloud account

  cannot creat icloud account .i have latest version ios 7

  What happens when you try?  Any error message?

• Cannot create an accounting document  for year-end-closure

  Good morning,
  I am dealing with an urgent issue related to the year-end-closing.
  The accounting document cannot be created because the account 9600700000 does not exist in standard chart of accounts.
  The system wants to pick up an account which is used by the chart of accounts of the country CAGR. This is used for the analytical ledger at the end of the month.
  When I compare it with another example which was posted correctly, I see that the account 9600700000 was used in the Special ledger.
  Do you have any idea how to create the accounting document?
  Thank you very much.
  Kind regards,
  Linda

  Issue solved

• IPhone 3G Cannot create mail account from IPhone.

  Cannot create Pop email account from IPhone. Keeps asking if I want to try to create the account without SSL, whether I answer yes or no. I have to create the account via ITunes.
  Any ideas?

  No error msg. Just keeps asking over and over again, if I want to try to setup the account without SSL. If I answer yes. It try's again for 2 min, the repeats the question. If I say no then it takes me back to the config screen for the account where I can select cancel. Never creates the account or give error msg.

• Cannot create sony account with safari so I can install sony camera specific apps

  It is impossible to get into the sony website to create an account so that I can get sony camera apps, which are required to use the sony camera correctly. Basically Safari is hanging up when I click create account on the sony site. My brother does not use Apple and his browser works fine for this, so this is a Apple/safari problem. I have found very little info regarding this problem anywhere.
  Is there an Apple expert here who could look at this?
  Me: macbook pro, safari 6.2
  Website problem page is :https://www.playmemoriescameraapps.com/portal/usbdetail.php?eid=IS9104-NPIA09014 _00-000003
  Although all sony entertainment network login pages do the same thing
  Please if your a Apple goo roo look at this and let me know something
  Thanks

  Hmmm, so since I'm using 6.2 then maybe that is the problem? I can surf all of sony's other pages etc, but when I try to create account it just freezes up, I was trying not to install the other browsers and was confused why it would not work with my current safari 6.2. I have not upgraded my OS yet, so are you thinking this is related to that?

• Cannot change mobile account settings, connected to Windows AD

  Hi!
  My Mac Book Pro, 15", 2-3 months old, Lion, 8GB RAM. I have also VMware Fusion 4.x installed.
  I also still have my old MBP 13", 2,5 years old with almost the same config, but VMware 3.x.
  Now to the strange thing.
  On the MBP 13" I CAN change settings for my mobile account but on the MBP 15" it is not poosible? How can it be different?
  Please see attached picture. Swedish "Flyttbart konto" = Mobile Account. Swedish "Inställningar" = Settings. As you can see it is not possible to edit/change settings........
  How do I make it possible to make changes in my mobile account? I want to sync other folders and so on......
  /magnus

  Hello bh8er,
  I'm sorry to hear you are having mail issues with your Mac. I also apologize, I'm a bit unclear on exactly what you are seeing/describing. What are you seeing when you go to Mail > Preferences and select the Accounts tab? Does it show more than one account in the left hand column, and does it allow you to select your account? What does it say for Account Type? You may also find the additional troubleshooting steps in the following article helpful, in particular the portion about using the Mail Connection Doctor:
  OS X Mail: Troubleshooting sending and receiving email messages - Apple Support
  Sincerely,
  - Brenden

• Cannot create eprint account

  Each time I try to create an eprint account, I get the message "Ajax submit failed: error = 403, Forbidden"  What am I doing wrong?

  Lavpen, I need to set up eprint, so I don't know anything about it yet, but I entered your error msg in Google and got these two HP answers (I'll give the links too). I hope this helps you...and helps me when I try it!  .
  #1
  http://h30434.www3.hp.com/t5/ePrint-Print-Apps-Mobile/Why-do-I-get-Ajax-submit-failed-error-403-Forb...
  czarina said:
  03-18-2012 08:21 AM
  After numerous tries I said hey why not try back door and Downloaded android app to my smart phone  to my google email and it works just fine now
  #2
  http://h30434.www3.hp.com/t5/ePrint-Print-Apps-Mobile/error-quot-Ajax-submit-failed-error-403-Forbid...
  Bob58523 said:
  03-25-2012 06:00 AM
  Something interesting....
  When I initially tried to sign up I had not installed the software for the printer. Once I installed the software and got the printer working I tried to sign up again and did not have any errors.
  I don't know if installing the software had anything to do with the error, but I am all signed up and working now.
  Bob
  AND,
  similar to the first link response, Daniel_L said:
  03-26-2012 08:15 AM
  If you are experiencing this issue through the desktop browser, if available, try downloading the mobile app and see if you still experience issues signing up. Another recommendation is to try a different browser (Firefox, Chrome, etc) after restarting your machine.
  Hope this helps!

• Cannot create IMAP Account

  I loaded some updates at the weekend. I did not pay that attention, just said 'yes' to install.
  Arrived in the office this morning and my Corporate email account, which is IMAP had the triangle next to it. Tried various things and then decided to delete it and re-create. Now, every time I enter the server name, I am told this server does not exist. However, my outbound server list still has this server, and it connects and works fine. It is as if my port 143 is now blocked. I also have a VPN connection and the same thing happens.
  I have checked all the obvious things, like the Firewall, and that is set to allow everything in (oops).
  Is this a coincidence? I cannot see how this is a Network issue as it happens in the office on the LAN, and remotely from home via a VPN to our New York office, and I can connect to the IMAP server through my desktop PC in the office. Oh, and I can use the IMAP server as an outbound server.
  WHAT IS HAPPENING!

  Despite being assured several times this was NOT a server issue, guess what?
  It was a server issue!