Creating Network User
I'm having difficulty figuring out how to create a network user account in the Server App. I'm in the "Users" pane, and I don't see an option to create a new network user. Upon choosing "create new user", there isn't an option to make anything other than a local account for the server.
I have Open Directory turned on, and I have the server bound to the open directory server that I have set up.
What am I missing?
I have something very similar. Runiing a mini server on 10.9.2 and Server 3.0.
I have a small network: server has 2 local accounts and there are about 10 network users. Not sure when, but all my network users are now showing their Home Folder location as "Custom". Clicking on the drop down menu shows only 2 additional choices, "Local only" and the name of an external disk connected to the server.Trying to create a new user gives the following choices for home folder: Local only, the external hard drive and None, Services only. Network user is not part of the choices given.
The Mini startup disk has all the accounts I had created before, the 2 local accounts and home folders for each of my network users. Would very much like to get a few hints as to how this can be fixed.
Similar Messages
-
Unable to create network users in Server App
Hello.
When trying to create a new user in Server Application I've come across this message:
"existing connection is not authenticated: password change denied".
Tried resolving it using the suggestions in the thread http://support.apple.com/kb/HT20001
1. Quit Server.app.
2. On the Open Directory Server, execute these Terminal commands:
sudo touch /var/db/openldap/migration/.rekerberize
sudo killall PasswordService
3. Open Server.app.
but the message I'm given in the terminal is No such file or directory.
Does somebody know why I don't have the folder structure needed for this?Do this first, then try again:
sudo mkdir /var/db/openldap/migration -
How can I enforce Parental Controls on a group of network users on an Open Directory client?
I have a Mac mini running OS X Server (Mountain Lion) and have a client family iMac that is a client of the Open Directory server. I have created network users for my kids and put them into a group and created Parental Control restrictions that apply to members of the group. However, the kids can log into the iMac with the same network accounts and no Parental Control policies are enforced on the iMac.
I'd like to restrict times and hours per day, as well as the obvious content/website restrictions. I'm not sure why the Parental Control policy isn't being enforced. While I'm not great at it, I do have a basic understanding/overview of knowledge on Windows Server administration, but OS X Server seems to be waaay different...
I have fiddled with the certificate, and I have told the client iMac to trust the certificate coming from my Open Directory server, but it doesn't seem to make much of a difference with the enforcement of the kids group's Parental Control policies.
Can anyone assist or offer any suggestions?Related logs from the OD client iMac below:
2013-07-13 20:37:45 -0400 mdmclient[12003]: *** ERROR *** [Agent:501] Sending 'OTA-Phase2' request to server: https://server.local/devicemanagement/api/device/ota_service (<NSURLErrorDomain:-1001> The request timed out.
UserInfo: {
NSErrorFailingURLKey = "https://server.local/devicemanagement/api/device/ota_service";
NSErrorFailingURLStringKey = "https://server.local/devicemanagement/api/device/ota_service";
NSLocalizedDescription = "The request timed out.";
NSUnderlyingError = "Error Domain=kCFErrorDomainCFNetwork Code=-1001 \"The request timed out.\" UserInfo=0x7fef6a82b2b0 {NSErrorFailingURLStringKey=https://server.local/devicemanagement/api/device/ota_service, NSLocalizedDescription=The request timed out., NSErrorFailingURLKey=https://server.local/devicemanagement/api/device/ota_service}";
2013-07-13 20:37:45 -0400 mdmclient[12003]: *** ERROR *** [Agent:501] ProcessOTABootstrapProfileCore (<NSURLErrorDomain:-1001> The request timed out.
UserInfo: {
NSErrorFailingURLKey = "https://server.local/devicemanagement/api/device/ota_service";
NSErrorFailingURLStringKey = "https://server.local/devicemanagement/api/device/ota_service";
NSLocalizedDescription = "The request timed out.";
NSUnderlyingError = "Error Domain=kCFErrorDomainCFNetwork Code=-1001 \"The request timed out.\" UserInfo=0x7fef6a82b2b0 {NSErrorFailingURLStringKey=https://server.local/devicemanagement/api/device/ota_service, NSLocalizedDescription=The request timed out., NSErrorFailingURLKey=https://server.local/devicemanagement/api/device/ota_service}";
2013-07-13 20:37:45 -0400 System Preferences[11138]: *** ERROR *** [CPInstallerUI:501] Profile installation (Device Enrollment (com.apple.ota.server.local.bootstrap)) (<NSURLErrorDomain:-1001> The request timed out.
UserInfo: {
NSErrorFailingURLKey = "https://server.local/devicemanagement/api/device/ota_service";
NSErrorFailingURLStringKey = "https://server.local/devicemanagement/api/device/ota_service";
NSLocalizedDescription = "The request timed out."; -
Mac Server 3 drives me crazy ...
I have a brand new MacMini here with Maverick on board, and two brandnew Macbook Air and 3 27"iMac that I want to set up as small office. The MacMini should act as Server (with two thunderbolt harddisks connected) for the rest. So far the theory, meanwhile I´m the reality of Server 3 ...
Having years of experience with "normal network" solutions like filesharing etc. I had a look at Server 3 and thought it couldn`t be that complicated to set it up - but meanwhile I`m disillusioned.
I`ve now completely reinstalled the MacMini and the Server the third time, connected directly to the Airport Extreme, started filesharing and started the Server app. afterwards. Then I just
- opened the settings of the server, set up a local network (xxx.local)
- activated push-notification and got a ceritficate
- started the profile manager
- started open directory
- started started the DNS server
- started file sharing (creating a new folder on the MacMini, offering user folders via SMB or AFP (tested both))
- started the other services (calendar, contacts, etc.)
- opened ports for the public services on the AirportExtreme
- set up a testuser (network user), giving access to all services
- gave the test user access to the network folder created
On the Macbook Air i used for testing I registered the network account server (getting a green light afterwards), put the hook at "allow network users to sign on" (I even coot see the test users name there).
But after switching to the login I only got normal users on the MacBook Air. Switching the "allow network users to sign on" sometimes resulted in a third user "other" where I could enter the Username and password - but : no result - just as explained several times in this thread ... :-( :-(
The last three days I tried several setups, switch and renamed, issued certificates, tried out the profile manager and registered the MBA, set up the user folder via AFP and SMB, ...
But : no access to the network user granted ...
Just read the last lines of the Protokoll after my last attempts and could read "connection invalid" and "connection denied" several times in it ... does anyone have an idea what`s going wrong here ?!?!??!
I really need to set up this server a.s.a. possible and am really frustrated about this really not Apple like behaviour of this software *eyesroll* ...
Any help appreciated !Hi,
sorry, but frustration continues ... here`s what I did :
- complete did the forth reinstall of the MacMini, new Maverick, all updates. Then installed the server.app
- delete all network connections except the Ethernet, gave it a static IP 10.0.1.201
- started the server app, renamed the computername and the hostname
Result :
- This automatically started the DNS server - i just checked this and found a server.dizwo.private entry pointing at the 10.0.1.201. According to your proposal I entered a second entry with "dizwo.private" pointing at the same IP 10.0.1.201 (named "server") - as you didn´t respond to my request above the entries are only guesses
- on the AirportExtreme I opened the ports for all necessary services
- I created a public user folder with all necessary access types (using SMB for the user folder)
- created network user pointing at this folder
- checked whether it has access to all services (was already preset) and gave him access read/write to the user folder
- last but not least i started the OpenDirectory server showing availibility of the OD server at server.dizwo.private
... and then ?
On the MacBook Air and on another iMac I first had a look whether I get access to the user folder on the server. I could see it in the finder windows and got access, okay - fine.
Then I want to set up the OD server in the user settings on the clients - but in contrary to my earlier tries I didn`t got the OD server name, but simply a "server.local".
Trying to enter the "server.dizwo.private" simply resulted in a "host not found" ??!?!
You can imagine how frustrated I`m now about all this stuff - I`m Apple user since more than 20 years and haven`t seen such weird behaviour of an Apple software before - not user friendly in any matter ... .
This server software is advertised and looking like to be an easy to use front end to create a server, even the "manuals" (not that I would tell them so ...) do so. But it looks like it`s really more a trial and error thing when you do the installation ...
So : what I did I do wrong now ? Is there anything that I missed ? Is it a certificate thing (I didn`t set up a custom one but used the intermediate one preinstalled) ? Or another network issue ? The DNS server ? The OD server ? The naming of the server ?
I really urgently need help - need to set up this server the next 2 weeks !!
any help appreciated !! -
Creating Network homes for Users in AD
I am trying to create some Network Homes to use for our Macs on campus. I have created the share and everything, but when I go to "Create Home Now" inside of Workgroup Manager it always gives me an error. The error is very generic so I am not sure what it means. All of our Users are stored in AD and OD just authenticates through AD. Is this a problem? Can you not create network homes for AD users?
Here is the error I get in Console when I try:
3/8/11 8:44:37 AM Workgroup Manager[49785] void -[UserVolumesPluginView(PrivateMethods) gotServerError:forTransaction:](UserVolumesPluginView*, objc_selector*, objc_object*, XSAdminTransaction*): got error kGotAuthenticationFailure from request (null) -
Can't create Local Network Users in Yosemite
I can't create Local Network Users (or change passwords)
Logged on to /LDAPv3/127.0.0.1 as directory administrator
When I try to create a new user (press the [+], fill in the form), it brings up the message:
existing connection is not authenticated or secure: password change denied
I suspect this is emblematic of other issues. I can authenticate for Mail and SMB, but not for AFP or XcodeSo I had this problem last night as well when I upgraded my 10.9.5 OD master to 10.10.
Two obvious problems after that upgrade:
1) Could not add a new Local Network User
2) Existing users could not connect via AFP (but could via SMB)
Through a series of trial and error (and with two Apple Support people...), we found that the following actions seemed to help fix some (but not all) of the problems.:
Problem #2 seemed to initially be fixed by archiving the OD Master, destroying the OD Master and then reimporting from the archive. I archived from the upgraded 10.10, but should probably have tried restoring my 10.9.5 archive (which may end up being why I still have some problems...)
Problem #1 seemed to be solved when I used WorkGroup Manager to reset the password on the Directory Administrator account I use (I also blew out all references to that account from the Keychain, so everything reprompted me to add that password
However, we think the root cause of this might have been that in /var/db/openldap/migration, the following "dot" files were still present after the upgrade
fs:migration root# ls -la
total 6308816
drwx------ 10 root wheel 340 Oct 30 18:59 .
drwxr-xr-x 6 root wheel 204 Oct 30 18:57 ..
-rw------- 1 root wheel 0 Oct 30 18:59 .autossl
-rw------- 1 root wheel 0 Oct 30 18:59 .enableODProxyd
-rw------- 1 root wheel 0 Oct 30 18:59 .rekerberize
-rw------- 1 root wheel 0 Oct 30 18:59 .updateLocales
-rw-r--r-- 1 root wheel 333436 Oct 30 18:57 authbackup.ldif
-rw-r--r--@ 1 root wheel 617453 Oct 30 18:57 backup.ldif
-rw-r--r-- 1 root wheel 617453 Oct 30 18:57 backup.ldif.backup
-rw-r--r-- 1 root wheel 3228537344 Oct 30 18:59 oldsystem.tar
Those 4 .dot files were *not* present in that directory on the two other test OD Master servers that I upgraded without issue.
So we removed them and after having done all the above as well -- I can now add users to the server. The OD engineer I talked to thought that the presence of those .dot files may have been triggering something to rerun every time PasswordService launched.
When all was said and done, I was then able to "kinit <mydiradminaccount>" correctly and get a "klist" without issue.
ALL THAT SAID: As of this morning, *some* (most? I don't know yet) of my existing OD user accounts are able to successfully log into the server. A couple of them (so far) are reporting that their account is "disabled" (which is different from the "shaking"/can't-log-in behavior) -- but they can still log in via SMB -- so I think there was still a problem migrating OD accounts in the upgrade process.
AND -- I noticed that -- in Server 4.0 -- "change password" is greyed out, so I have to use WorkGroup Manager to change server account passwords.
Whee... -
Create a New Local Network User
Hi,
I have a Mac OSX (Snow Lion) server on a network with three Mac Computers (2 on Mavericks and 1 on Lion). Our computers are a shared resource among employees. Basically I enable each member of our company to be user on any computer.
I had a chap come in and create the original employee user accounts (Local Network User). Since our company has grown by two. I now want to create accounts them too. This chap has now moved.
So far I have gone into Server OSX and created the users. How do I now get these accounts to show up on the client computer login screen. I went into profile manager and read the server documentation. And then got stuck!
Can anyone coach me through this.
Thanks
AndrewIf you want the local user account to use a specific UID to match an account in your Open Directory setup then it is not necessary to manually create a local user with a matching UID. The normal approach is to set the Mac up to automatically create a mobile account that matches the Open Directory account. When the user logs in on the Mac for the first time the user account would be created with the matching UID, matching short and full names, and matching password and the password will be kept in sync with the Open Directory account. This setting can be done via Workgroup Manager and MCX preferences if you still use that method, or more typically these days via a setting in Profile Manager. (Or equivalent.)
If you really must create a local account with a specific UID then create the local account as normal, make sure you have if needed unlocked the padlock in Users & Groups in System Preferences and then Option-Click on the user account on the left, a menu will appear listing the choice "Advanced Options..." and this will let you change the UID.
Note: You may need to later do the following in Terminal.app
sudo chown -R user /Users/user -
User exit to restrict WBS creating Network / PR
Hi All,
I want to know user Exit for WBS to restrict from creating Network or PR . Basically I want to restrict 1st & 2nd level of WBS from creating PR & my client not ready to use any manual method to restrict the same so I want to know any User Exit for the same .
ThanksHi,
Let me again take your queries point wise.
1. Is there any User exit available to restrict the network for only 1st & 2nd level WBS because my user are not ready for User status or for any manual process .
Answer:- Try
CNEX0009 (Material Components in Network)
CNEX0026
PPC00008 (Enhancement in adding and change in Components)
2. Is it possible to give only display authorization for only 1st & 2nd level WBS to some user ( only for those who creates Network in project structure)
Answer:- Yes, try executing SHD0 and create a transaction variant and later on do the changes like which field to make display only and which one to not.
OR
Ask Basis guys if they can help you out in this case.
3. Any way if I creates Network but not possible creates Activity or not possible to assign Material to that Activity ( to restricts Creates PR or Reservation through CJ20n )
Answer:- Try OPSG settings as I mentioned in my earlier post.
OR
Try in OPUA, OPUB and OPUC and search if you hide activity based on INFLUENCING FIELD on LEVELS of 1 or 2 only.
OR
Change Procurement Parameter Indicator of Res/Pur. req to NEVER
OR search in OPUK (Not sure if this can help you)
OR Try using user staus and set it to level 1 and 2 only. You need to use all Object Types of Network. There would be 3 object types related to network and then use the business transaction as Material Purchase Requisition. Set this to Forbidden and then set this user status to WBS/Network.
Have a look at the following screen shot.
I hope this may help you..!!
Regards,
Amit -
Design and Web Premium creates huge profile for each network user.
Just wondering how I can get around the Adobe Design and Web Premium creating a huge profile for each network user. When a new user logs in on the network a 6 GB Adobe Design and Web Premium folder is created in their profile. With dozens of students logging into each machine that equals dozens of 6GB folders.
Windows 7 environment.Moved to Creative Suite Enterprise Deployment.
-
Hi,
I have a group of computers that are set to create mobile users (aka syncing the home dir).
Now I want to create a second group, that *just* authenticates the user (aka logging in, but not creating a local-synced home).
Both computer-groups should co-exist and be available to the same users.
I tried just setting the preferences in the computer group in the mobility section as "Manage Always" and the checkbox at "Account Creation", "Create mobile account" *disabled*, but the computers in the group still start the syncing process and create a mobile user on the local machine. I tried to set the params of Home- and Preference-Sync to "never", but the issue remains.
Thx in advance,
JanIf this base station is actually the "snow" then you will need a Mac or PC that can run a version of the AirPort Utility that can administer this "very old" 802.11b base station. You won't be able to do so with an iOS device or Mac running Lion or newer OS.
-
Customized User Profiles not loading for Network Users
I manage Macs in public computer labs and classrooms at a university. My general set up is as follows:
Clients are running 10.8.5, OD Masters are running 10.7.5. Open Directory Master to manage client preferences for Login window and screen saver. Clients bind to Active Directory for authentication purposes only. Networked users home directories are stored locally then deleted at log out. Using Deploy Studio to image and restore clients.
My customized user profiles are stored in /User Templates/Non_Localized.lproj.(I also update English.lproj for any local users that may need to be created for various reasons).
Recently I have come across a situation where, randomly, my customized user profile does not load at Login, and I am given the out-of-the-box default Apple profile. This is happening in 11 of my 14 labs. I have three labs that seem to not be affected by this.
On some labs I manage the DHCP, some labs I do not, and rely on our Networking group to supply DHCP and DNS. Because of this setup I have six different DNS server that may be in the mix. Two are Unix boxes, the other four are the Active Directory Domain Control servers. I did create a spreadsheet of all the AD/OD settings for each lab to see if I could find some kind of pattern, but don't see a way to upload it.
The one thing I do notice is that when I do a mass login using a shell script via Apple Remote Desktop, when the profile fails to build correctly, the user login is quick, much quicker than when the correct profile loads. Almost as if a packet is sent the the OD server, it's rejected, and bam, Apple's default profile loads.
I have flushed the DNS cache of the local clients using killall --HUP mDNSResponder
I've got one week to figure this out before classes start, so if you have a clue as to what's going on, I sure would be grateful.
Here are logs from both the admin's account and the user's account when the default profile fails to build:
ADMIN log:
8/20/14 1:31:03.366 PM CVMServer[109] Check-in to the service com.apple.cvmsCompAgent_x86_64 failed. This is likely because you have either unloaded the job or the MachService has the ResetAtClose attribute specified in the launchd.plist. If present, this attribute should be removed.
8/20/14 1:31:03.389 PM loginwindow[44] Login Window - Returned from Security Agent
8/20/14 1:31:03.491 PM loginwindow[44] USER_PROCESS: 44 console
8/20/14 1:31:04.084 PM WindowServer[75] **DMPROXY** (2) Found `/System/Library/CoreServices/DMProxy'.
8/20/14 1:31:06.307 PM locationd[563] NOTICE,Location icon should now be in state 0
8/20/14 1:31:06.478 PM coreaudiod[560] Enabled automatic stack shots because audio IO is inactive
8/20/14 1:31:06.621 PM UserEventAgent[548] cannot find fw daemon port 1102
8/20/14 1:31:08.530 PM WindowServer[75] Display 0x04280480: MappedDisplay Unit 0; ColorProfile { 2, "iMac"}; TransferFormula (1.000000, 1.000000, 1.000000)
8/20/14 1:31:09.707 PM NetworkBrowserAgent[591] Starting NetworkBrowserAgent
8/20/14 1:31:10.393 PM apsd[593] Certificate doesn't match host
8/20/14 1:31:11.499 PM com.apple.SecurityServer[15] Session 100010 created
8/20/14 1:31:13.561 PM genatsdb[608] ########## genatsdb Sandboxed. ##########
8/20/14 1:31:13.562 PM apsd[593] Certificate doesn't match host
8/20/14 1:31:13.740 PM com.apple.time[548] Interval maximum value is 946100000 seconds (specified value: 9223372036854775807).
8/20/14 1:31:14.555 PM apsd[593] Certificate doesn't match host
8/20/14 1:31:45.040 PM genatsdb[608] *GENATSDB* FontObjects generated = 1113
8/20/14 1:31:55.663 PM com.apple.time[548] Interval maximum value is 946100000 seconds (specified value: 9223372036854775807).
8/20/14 1:32:20.627 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.627 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.627 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.627 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.628 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.628 PM WindowServer[75] dict count after removing entry for window 0x2a is 0
8/20/14 1:32:20.641 PM com.apple.launchd[1] (com.apple.quicklook.satellite.4D0B4319-944D-49A6-A515-02F31AE3C235[628]) Could not terminate job: 3: No such process
8/20/14 1:32:20.641 PM com.apple.launchd[1] (com.apple.quicklook.satellite.4D0B4319-944D-49A6-A515-02F31AE3C235[628]) Using fallback option to terminate job...
8/20/14 1:32:20.645 PM coreservicesd[65] SendFlattenedData, got error #268435459 (ipc/send) invalid destination port from ::mach_msg(), sending notification kLSNotifyApplicationDeath to notificationID=188
8/20/14 1:32:20.647 PM coreservicesd[65] SendFlattenedData, got error #268435460 (ipc/send) timed out from ::mach_msg(), sending notification kLSNotifyApplicationDeath to notificationID=147
8/20/14 1:32:20.647 PM coreservicesd[65] SendFlattenedData, got error #268435460 (ipc/send) timed out from ::mach_msg(), sending notification kLSNotifyApplicationDeath to notificationID=194
8/20/14 1:32:20.648 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.648 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.648 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.648 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.648 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.716 PM loginwindow[44] DEAD_PROCESS: 44 console
8/20/14 1:32:20.891 PM com.apple.time[548] Interval maximum value is 946100000 seconds (specified value: 9223372036854775807).
8/20/14 1:32:20.929 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.929 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.929 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.929 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.929 PM WindowServer[75] CGXGetConnectionProperty: Invalid connection 32023
8/20/14 1:32:20.930 PM coreservicesd[65] SendFlattenedData, got error #268435459 (ipc/send) invalid destination port from ::mach_msg(), sending notification kLSNotifyApplicationDeath to notificationID=158
8/20/14 1:32:22.259 PM WindowServer[75] CGXRestartSessionWorkspace: session workspace exited for session 256 (on console)
8/20/14 1:32:22.259 PM WindowServer[75] Session 256 released (1 references)
8/20/14 1:32:22.259 PM WindowServer[75] Session 256 released (0 references)
8/20/14 1:32:22.259 PM WindowServer[75] loginwindow connection closed; closing server.
8/20/14 1:32:22.268 PM apsd[593] CGSLookupServerRootPort: Failed to look up the port for "com.apple.windowserver.active" (1102)
8/20/14 1:32:22.285 PM loginwindow[653] Login Window Application Started
8/20/14 1:32:22.299 PM UserEventAgent[11] Captive: [UserAgentDied:139] User Agent @port=45319 Died
8/20/14 1:32:22.310 PM ARDAgent[574] CGSGetNextEventRecord (Inline) connection 0xb903, 16384 bytes
8/20/14 1:32:22.310 PM ARDAgent[574] CGSShutdownServerConnections: Detaching application from window server
8/20/14 1:32:22.310 PM ARDAgent[574] CGSDisplayServerShutdown: Detaching display subsystem from window server
8/20/14 1:32:22.311 PM blued[58] -[CBManager init] init returning self:0x7ff6a3b04990
8/20/14 1:32:22.329 PM WindowServer[654] Server is starting up
8/20/14 1:32:22.330 PM WindowServer[654] Session 256 retained (2 references)
8/20/14 1:32:22.330 PM WindowServer[654] Session 256 released (1 references)
8/20/14 1:32:22.333 PM WindowServer[654] Session 256 retained (2 references)
8/20/14 1:32:22.333 PM WindowServer[654] init_page_flip: page flip mode is on
8/20/14 1:32:22.357 PM WindowServer[654] mux_initialize: Couldn't find any matches
8/20/14 1:32:22.367 PM WindowServer[654] GLCompositor enabled for tile size [256 x 256]
8/20/14 1:32:22.367 PM WindowServer[654] CGXGLInitMipMap: mip map mode is on
8/20/14 1:32:22.424 PM WindowServer[654] WSMachineUsesNewStyleMirroring: true
8/20/14 1:32:22.425 PM WindowServer[654] Display 0x04280480: GL mask 0x1; bounds (0, 0)[1920 x 1080], 30 modes available
Main, Active, on-line, enabled, built-in, boot, Vendor 610, Model a012, S/N 0, Unit 0, Rotation 0
UUID 0x000006100000a0120000000004280480
8/20/14 1:32:22.425 PM WindowServer[654] Display 0x003f003e: GL mask 0x4; bounds (0, 0)[0 x 0], 1 modes available
off-line, enabled, Vendor ffffffff, Model ffffffff, S/N ffffffff, Unit 2, Rotation 0
UUID 0xffffffffffffffffffffffff003f003e
8/20/14 1:32:22.425 PM WindowServer[654] Display 0x003f003d: GL mask 0x2; bounds (0, 0)[0 x 0], 1 modes available
off-line, enabled, Vendor ffffffff, Model ffffffff, S/N ffffffff, Unit 1, Rotation 0
UUID 0xffffffffffffffffffffffff003f003d
8/20/14 1:32:22.429 PM WindowServer[654] Created shield window 0x4 for display 0x04280480
8/20/14 1:32:22.429 PM WindowServer[654] Created shield window 0x5 for display 0x003f003e
8/20/14 1:32:22.429 PM WindowServer[654] Created shield window 0x6 for display 0x003f003d
8/20/14 1:32:22.431 PM WindowServer[654] Display 0x04280480: GL mask 0x1; bounds (0, 0)[1920 x 1080], 30 modes available
Main, Active, on-line, enabled, built-in, boot, Vendor 610, Model a012, S/N 0, Unit 0, Rotation 0
UUID 0x000006100000a0120000000004280480
8/20/14 1:32:22.431 PM WindowServer[654] Display 0x003f003e: GL mask 0x4; bounds (2944, 0)[1 x 1], 1 modes available
off-line, enabled, Vendor ffffffff, Model ffffffff, S/N ffffffff, Unit 2, Rotation 0
UUID 0xffffffffffffffffffffffff003f003e
8/20/14 1:32:22.431 PM WindowServer[654] Display 0x003f003d: GL mask 0x2; bounds (2945, 0)[1 x 1], 1 modes available
off-line, enabled, Vendor ffffffff, Model ffffffff, S/N ffffffff, Unit 1, Rotation 0
UUID 0xffffffffffffffffffffffff003f003d
8/20/14 1:32:22.431 PM WindowServer[654] CGXPerformInitialDisplayConfiguration
8/20/14 1:32:22.431 PM WindowServer[654] Display 0x04280480: MappedDisplay Unit 0; Vendor 0x610 Model 0xa012 S/N 0 Dimensions 18.70 x 10.51; online enabled built-in, Bounds (0,0)[1920 x 1080], Rotation 0, Resolution 1
8/20/14 1:32:22.431 PM WindowServer[654] Display 0x003f003e: MappedDisplay Unit 2; Vendor 0xffffffff Model 0xffffffff S/N -1 Dimensions 0.00 x 0.00; offline enabled, Bounds (2944,0)[1 x 1], Rotation 0, Resolution 1
8/20/14 1:32:22.431 PM WindowServer[654] Display 0x003f003d: MappedDisplay Unit 1; Vendor 0xffffffff Model 0xffffffff S/N -1 Dimensions 0.00 x 0.00; offline enabled, Bounds (2945,0)[1 x 1], Rotation 0, Resolution 1
8/20/14 1:32:22.522 PM WindowServer[654] GLCompositor: GL renderer id 0x01022647, GL mask 0x00000007, accelerator 0x00003fab, unit 0, caps QEX|QGL|MIPMAP, vram 512 MB
8/20/14 1:32:22.527 PM WindowServer[654] GLCompositor: GL renderer id 0x01022647, GL mask 0x00000007, texture units 8, texture max 16384, viewport max {16384, 16384}, extensions FPRG|NPOT|GLSL|FLOAT
8/20/14 1:32:22.530 PM loginwindow[653] **DMPROXY** Found `/System/Library/CoreServices/DMProxy'.
8/20/14 1:32:22.557 PM WindowServer[654] Created shield window 0x7 for display 0x04280480
8/20/14 1:32:22.557 PM WindowServer[654] Display 0x04280480: MappedDisplay Unit 0; ColorProfile { 2, "iMac"}; TransferFormula (1.000000, 1.000000, 1.000000)
8/20/14 1:32:22.609 PM launchctl[657] com.apple.findmymacmessenger: Already loaded
8/20/14 1:32:22.613 PM hidd[49] CGSShutdownServerConnections: Detaching application from window server
8/20/14 1:32:22.613 PM hidd[49] CGSDisplayServerShutdown: Detaching display subsystem from window server
8/20/14 1:32:22.621 PM com.apple.SecurityServer[15] Session 100012 created
8/20/14 1:32:22.622 PM loginwindow[653] Login Window Started Security Agent
8/20/14 1:32:22.666 PM com.apple.dock.extra[644] Our bootstrap port disappeared out from under us: 0x1507 { urefs = 32774, rights = 0x1507: dead name }
8/20/14 1:32:22.667 PM com.apple.dock.extra[644] Bug: 12F45: libxpc.dylib + 36100 [70BC645B-6952-3264-930C-C835010CCEF9]: 0x10000003
8/20/14 1:32:22.681 PM UserEventAgent[659] cannot find useragent 1102
8/20/14 1:32:22.686 PM com.apple.dock.extra[644] Check-in to the service com.apple.imagent.desktop.auth failed. This is likely because you have either unloaded the job or the MachService has the ResetAtClose attribute specified in the launchd.plist. If present, this attribute should be removed.
8/20/14 1:32:22.693 PM SecurityAgent[665] MacBuddy was run = 0
8/20/14 1:32:22.695 PM com.apple.dock.extra[644] CGSGetNextEventRecord (Inline) connection 0xc917, 16384 bytes
8/20/14 1:32:22.695 PM com.apple.dock.extra[644] CGSShutdownServerConnections: Detaching application from window server
8/20/14 1:32:22.695 PM com.apple.dock.extra[644] CGSReleaseShmem : Cannot release shared memory
8/20/14 1:32:22.695 PM com.apple.dock.extra[644] CGSDisplayServerShutdown: Detaching display subsystem from window server
8/20/14 1:32:22.696 PM com.apple.dock.extra[644] Our bootstrap port disappeared out from under us: 0x1507 { urefs = 32774, rights = 0x1507: dead name }
8/20/14 1:32:22.696 PM com.apple.dock.extra[644] Bug: 12F45: libxpc.dylib + 36100 [70BC645B-6952-3264-930C-C835010CCEF9]: 0x10000003
8/20/14 1:32:22.696 PM com.apple.dock.extra[644] [Warning] Bad response from daemon for setup info
8/20/14 1:32:22.704 PM WindowServer[654] MPAccessSurfaceForDisplayDevice: Set up page flip mode on display 0x04280480 device: 0x106d8d110 isBackBuffered: 1 numComp: 3 numDisp: 3
8/20/14 1:32:24.429 PM WindowServer[654] **DMPROXY** (2) Found /System/Library/CoreServices/DMProxy'.
8/20/14 1:32:24.459 PM WindowServer[654] Display 0x04280480: MappedDisplay Unit 0; ColorProfile { 2, "iMac"}; TransferFormula (1.000000, 1.000000, 1.000000)
8/20/14 1:32:24.500 PM WindowServer[654] Display 0x04280480: MappedDisplay Unit 0; ColorProfile { 2, "iMac"}; TransferFormula (1.000000, 1.000000, 1.000000)
8/20/14 1:32:24.695 PM com.apple.dock.extra[644] Our bootstrap port disappeared out from under us: 0x1507 { urefs = 32774, rights = 0x1507: dead name }
8/20/14 1:32:24.696 PM com.apple.dock.extra[644] Bug: 12F45: libxpc.dylib + 36100 [70BC645B-6952-3264-930C-C835010CCEF9]: 0x10000003
8/20/14 1:32:24.696 PM com.apple.dock.extra[644] [Warning] Bad response from daemon for setup info
8/20/14 1:32:40.928 PM com.apple.launchd[1] (com.apple.dock.extra[644]) Exit timeout elapsed (20 seconds). Killing
8/20/14 1:32:40.928 PM coreservicesd[65] SendFlattenedData, got error #268435459 (ipc/send) invalid destination port from ::mach_msg(), sending notification kLSNotifyApplicationDeath to notificationID=202
8/20/14 1:33:35.215 PM SecurityAgent[665] User info context values set for jsuny
8/20/14 1:33:35.297 PM SecurityAgent[665] Login Window login proceeding
8/20/14 1:33:36.387 PM loginwindow[653] Login Window - Returned from Security Agent
8/20/14 1:33:36.000 PM kernel[0] Sandbox: kcm(695) deny mach-lookup com.apple.networkd
8/20/14 1:33:36.453 PM loginwindow[653] USER_PROCESS: 653 console
8/20/14 1:33:37.052 PM locationd[708] NOTICE,Location icon should now be in state 0
8/20/14 1:33:37.107 PM UserEventAgent[700] cannot find fw daemon port 1102
8/20/14 1:33:37.683 PM xpcd[611] MiniLauncher[711]: registration request failed: (0x12, 0xd) process failed sandbox check
8/20/14 1:33:37.907 PM WindowServer[654] **DMPROXY** (2) Found `/System/Library/CoreServices/DMProxy'.
8/20/14 1:33:38.011 PM coreservicesd[65] SendFlattenedData, got error #268435460 (ipc/send) timed out from ::mach_msg(), sending notification kLSNotifyApplicationReady to notificationID=237
8/20/14 1:33:38.114 PM WindowServer[654] Display 0x04280480: MappedDisplay Unit 0; ColorProfile { 2, "iMac"}; TransferFormula (1.000000, 1.000000, 1.000000)
8/20/14 1:33:38.395 PM imagent[737] [Warning] Setting up a new messages database.
8/20/14 1:33:38.428 PM NetworkBrowserAgent[747] Starting NetworkBrowserAgent
8/20/14 1:33:40.068 PM com.apple.time[700] Interval maximum value is 946100000 seconds (specified value: 9223372036854775807).
8/20/14 1:33:40.069 PM com.apple.time[700] Interval maximum value is 946100000 seconds (specified value: 9223372036854775807).
8/20/14 1:33:43.910 PM netbiosd[89] name servers down?
8/20/14 1:33:56.635 PM netbiosd[89] notify name "self.mdns.disconnection" has been registered 20 times - this may be a leak
8/20/14 1:33:56.639 PM netbiosd[89] notify name "self.mdns.disconnection" has been registered 40 times - this may be a leak
8/20/14 1:34:49.927 PM netbiosd[89] name servers down?
8/20/14 1:35:54.977 PM netbiosd[89] name servers down?
USER LOG:
8/20/14 1:31:03.956 PM com.apple.launchd.peruser.1467285364[536] (com.apple.gamed) Ignored this key: UserName
8/20/14 1:31:03.956 PM com.apple.launchd.peruser.1467285364[536] (com.apple.gamed) Ignored this key: GroupName
8/20/14 1:31:03.957 PM com.apple.launchd.peruser.1467285364[536] (com.apple.ReportCrash) Falling back to default Mach exception handler. Could not find: com.apple.ReportCrash.Self
8/20/14 1:31:03.961 PM loginwindow[44] Connection with distnoted server was invalidated
8/20/14 1:31:04.013 PM distnoted[549] # distnote server agent absolute time: 799.097924175 civil time: Wed Aug 20 13:31:04 2014 pid: 549 uid: 1467285364 root: no
8/20/14 1:31:08.954 PM com.apple.launchd.peruser.1467285364[536] (com.apple.afpstat-qfa[588]) Job failed to exec(3). Setting up event to tell us when to try again: 2: No such file or directory
8/20/14 1:31:08.955 PM com.apple.launchd.peruser.1467285364[536] (com.apple.afpstat-qfa[588]) Job failed to exec(3) for weird reason: 2
8/20/14 1:31:08.958 PM com.apple.launchd.peruser.1467285364[536] (com.google.keystone.user.agent[590]) Job failed to exec(3). Setting up event to tell us when to try again: 2: No such file or directory
8/20/14 1:31:08.958 PM com.apple.launchd.peruser.1467285364[536] (com.google.keystone.user.agent[590]) Job failed to exec(3) for weird reason: 2
8/20/14 1:31:12.394 PM com.apple.launchd.peruser.1467285364[536] (com.apple.mrt.uiagent[578]) Exited with code: 255
8/20/14 1:31:15.132 PM SystemUIServer[557] Could not load menu extra NSBundle </System/Library/CoreServices/Menu Extras/User.menu> (loaded) for Class AppleUser
8/20/14 1:32:20.642 PM com.apple.launchd.peruser.1467285364[536] (com.apple.quicklook[626]) Exited: Killed: 9
8/20/14 1:32:20.647 PM com.apple.launchd.peruser.1467285364[536] (com.apple.mdworker.single.08000000-0000-0000-0000-000000000000[641]) Exited: Killed: 9
8/20/14 1:32:20.647 PM com.apple.launchd.peruser.1467285364[536] (com.apple.mdworker.shared.04000000-0000-0000-0000-000000000000[635]) Exited: Killed: 9
8/20/14 1:32:20.783 PM Dock[556] could not open iterator, -43, for directory <ECDirectory: 0x7fd8ac846970> {path=/Users/jsuny/Documents/} (directory changed)
8/20/14 1:32:20.783 PM Dock[556] problem iterating directory, -43, for directory <ECDirectory: 0x7fd8ac846970> {path=/Users/jsuny/Documents/} (directory changed)
8/20/14 1:32:22.310 PM ARDAgent[574] HIToolbox: received notification of WindowServer event port death.
8/20/14 1:32:22.311 PM ARDAgent[574] port matched the WindowServer port created in BindCGSToRunLoop
8/20/14 1:32:22.694 PM com.apple.dock.extra[644] HIToolbox: received notification of WindowServer event port death.
8/20/14 1:32:22.694 PM com.apple.dock.extra[644] port matched the WindowServer port created in BindCGSToRunLoop
8/20/14 1:33:36.504 PM com.apple.launchd.peruser.1467285364[536] (com.apple.gamed) Ignored this key: UserName
8/20/14 1:33:36.504 PM com.apple.launchd.peruser.1467285364[536] (com.apple.gamed) Ignored this key: GroupName
8/20/14 1:33:36.505 PM com.apple.launchd.peruser.1467285364[536] (com.apple.ReportCrash) Falling back to default Mach exception handler. Could not find: com.apple.ReportCrash.Self
8/20/14 1:33:36.517 PM loginwindow[653] Connection with distnoted server was invalidated
8/20/14 1:33:37.429 PM MiniLauncher[711] Skipping Setup Assistant for user 1467285364
8/20/14 1:33:37.464 PM transition[714] INFO: Not signed into MobileMe, nothing to do. Reason: 3
8/20/14 1:33:37.506 PM MiniLauncher[711] INFO: MMAccountMgr_Private: finishedSetup called.
8/20/14 1:33:38.180 PM com.apple.launchd.peruser.1467285364[536] (com.apple.afpstat-qfa[744]) Job failed to exec(3). Setting up event to tell us when to try again: 2: No such file or directory
8/20/14 1:33:38.180 PM com.apple.launchd.peruser.1467285364[536] (com.apple.afpstat-qfa[744]) Job failed to exec(3) for weird reason: 2
8/20/14 1:33:38.489 PM CalendarAgent[741] Could not find Meta Data for persistent Store
8/20/14 1:33:38.877 PM fontd[716] FontWorker failed to return directory info (IPC failure?) for file://localhost/Users/jsuny/Library/Fonts/
8/20/14 1:34:48.723 PM migCacheCleanup[719] Cache cleanup: cleanup for user 1467285364 took 0.43 seconds
8/20/14 1:37:15.114 PM Dock[723] no information back from LS about running processCheck these out:
http://images.apple.com/server/macosx/docs/UserManagementv10.5.mnl.pdf
http://clc.its.psu.edu/Labs/Mac/Resources/blastimageconfig/
http://blog.macadmincorner.com/ -
How can I allow network users to use File Sharing on 10.8 Server?
I am in the process of setting up a new OS X 10.8 Server. I have exported/imported the network users from my previous OS X 10.6.8 Server using Workspace Manager. I have re-entered the passwords of the users. I have existing clients running (stil logged in).
I have set up the File Sharing service in Server.app. I have several mount points. I have made the Users mount point available for home directories over AFP.
Now, the system administrator can connect to the server and get access to the file shares. So the basic file sharing system works.
Also: the users on a client can get there password verified (e.g. when unlocking screen protection) by the server. It is just AFP they can't get access to, while the system administrator account (OD /Local on the server) can be used. So, the password in the server is OK too. It seems to be a matter of privileges.
But no network user (OD user in directory /LDAPv3/127.0.0.1 on the server) can get access. Where can I give network users privileges for File Sharing on the server?
I did try to add either the "Open Directory Users" group or a specific user that was imported into com.apple.access_afp. If I do that, there is partial success. I can connect to the server from the client with a user account other than system administrator from the server (but connecting is slow). But Mobile Home Sync does not work:
1:: [13/04/05 16:11:10.379] Scheduling next sync of "HomeSync_Mirror" at 2013-04-05 14:11:20 +0000
1:: [13/04/05 16:11:20.782] ==========================================================
0:: [13/04/05 16:11:20.782] Starting automatic sync of "HomeSync_Mirror".
1:: [13/04/05 16:11:20.786] Peer "network" reports changes since last sync.
1:: [13/04/05 16:11:20.786] [0x7fd5a9224760/<SStore_FS:0x105db3420>] +[SStore_FS newStore_FSForPeer:alias:]: isRemote = NO
1:: [13/04/05 16:11:20.786] [0x7fd5a9224760/<SStore_FS:0x105db3420>] +[SStore_FS newStore_FSForPeer:rootPath:rootAlias:rootRef:storePath:optionalStoreID:]: peer = <SPeer_FS:0x7fd5a5009520> = local, optionalStoreID = (null), peer.storeIDString = *
1:: [13/04/05 16:11:20.786] [0x7fd5a9224760/<SStore_FS:0x105db3420>] +[SStore_FS newStore_FSForPeer:rootPath:rootAlias:rootRef:storePath:optionalStoreID:]: rootPath = /Users/gerben
1:: [13/04/05 16:11:20.786] [0x7fd5a9224760/<SStore_FS:0x105db3420>] +[SStore_FS newStore_FSForPeer:rootPath:rootAlias:rootRef:storePath:optionalStoreID:]: storePath = /Users/gerben/.FileSync/store.filesyncstatetree
1:: [13/04/05 16:11:20.787] [0x7fd5a9224760/<SStore_FS:0x105db3420>] +[SStore_FS newStore_FSForPeer:rootPath:rootAlias:rootRef:storePath:optionalStoreID:]: rootAlias = {path='/Users/gerben', targetName='gerben', volumeName='Macintosh HD', type=DIR, volumeCreateDate=2010-08-10-12:58:16, targetCreateDate=2011-08-28-18:39:13, parentDirID=37638, nodeID=3003598, filesystemID=0000 ('0000'), signature=0x482b ('H+'), isBootVolume=YES, isAutomounted=NO, isEjectable=NO, hasPersistentFileIDs=YES, mounted=YES, url='file://localhost/'}
0:: [13/04/05 16:11:20.789] -[SPeer_FS _mountServerCallbackShares:status:]: received error 64
0:: [13/04/05 16:11:20.790] EXCEPTION: _mountServerCallbackShares:status: (Host is down) <-[SPeer_FS mountPeerVolumeWithURLString:] (Peer-FS.m:446): "'(-1)' error 64">
0:: [13/04/05 16:11:20.790] USERINFO: {
0:: [13/04/05 16:11:20.790] NSLocalizedDescription = "Host is down";
0:: [13/04/05 16:11:20.790] }
0:: [13/04/05 16:11:20.790] BACKTRACE: {
0:: [13/04/05 16:11:20.790] ? | 0x105cb79b7
0:: [13/04/05 16:11:20.790] ? | 0x105cbf0e5
0:: [13/04/05 16:11:20.790] ? | 0x105c2c866
0:: [13/04/05 16:11:20.790] ? | 0x105c2babd
0:: [13/04/05 16:11:20.790] ? | 0x105c2acb4
0:: [13/04/05 16:11:20.790] ? | 0x7fff858bb72a
0:: [13/04/05 16:11:20.790] ? | 0x7fff858bb6a2
0:: [13/04/05 16:11:20.790] ? | 0x7fff874cf8bf
0:: [13/04/05 16:11:20.790] ? | 0x7fff874d2b75
0:: [13/04/05 16:11:20.790] }
1:: [13/04/05 16:11:20.790] Peer "network" is unable to sync. (-[SPeer_FS mountPeerVolumeWithURLString:] (Peer-FS.m:446): "'(-1)' error 64")
0:: [13/04/05 16:11:20.790] Peer "network" is unable to sync. Not enough peers will be available to continue syncing.
0:: [13/04/05 16:11:20.790] Aborting sync of "HomeSync_Mirror".
1:: [13/04/05 16:11:20.790] -[SPeer abortSync] "local"
1:: [13/04/05 16:11:20.797] -[SStore_FS setupWithAlias:andRef:] (Store-FS.m:447): unlink('/Users/gerben/.FileSync/.fstemp.QW1Gh-bhvgEhVwmG3.noindex')
0:: [13/04/05 16:11:20.798] EXCEPTION: !IF <-[SPeer(protected) doPrepareForSyncWithResolvedConflicts:] (Peer.m:1149): "'(([self checkAbort]))'">
0:: [13/04/05 16:11:20.798] BACKTRACE: {
0:: [13/04/05 16:11:20.798] ? | 0x105c2bb66
0:: [13/04/05 16:11:20.798] ? | 0x105c2acb4
0:: [13/04/05 16:11:20.798] ? | 0x7fff858bb72a
0:: [13/04/05 16:11:20.798] ? | 0x7fff858bb6a2
0:: [13/04/05 16:11:20.798] ? | 0x7fff874cf8bf
0:: [13/04/05 16:11:20.798] ? | 0x7fff874d2b75
0:: [13/04/05 16:11:20.798] }
1:: [13/04/05 16:11:20.798] -[SStore_FS deleteStateTreeTurdFile] (Store-FS.m:476): unlink('/Users/gerben/.FileSync/store.filesyncstatetree.statetree_dirty')
1:: [13/04/05 16:11:20.798] Peer "local" is unable to sync. (-[SPeer(protected) doPrepareForSyncWithResolvedConflicts:] (Peer.m:1149): "'(([self checkAbort]))'")
0:: [13/04/05 16:11:20.798] Peer "local" is unable to sync. Not enough peers will be available to continue syncing.
1:: [13/04/05 16:11:20.798] EXCEPTION: SFAbortedException <-[SSyncEngine _waitForPeers:] (SyncEngine.m:1922): "'(_abort)'">
1:: [13/04/05 16:11:20.798] -[SSyncEngine threadMain_SyncEngine_sync:]: sync failed with exception "-[SSyncEngine _waitForPeers:] (SyncEngine.m:1922): "'(_abort)'"".
0:: [13/04/05 16:11:21.066] Sync of "HomeSync_Mirror" encountered errors. (_mountServerCallbackShares:status: (Host is down))
0:: [13/04/05 16:11:21.067] Last successful sync completed at 2013-04-04 20:17:15 +0000.
0:: [13/04/05 16:11:21.067] Finished sync of "HomeSync_Mirror".
1:: [13/04/05 16:11:21.067] Scheduling next sync of "HomeSync_Mirror" at 2013-04-05 14:31:21 +0000
1:: [13/04/05 16:11:21.284] 1-pass sync of "HomeSync_Mirror" took 0.02 secondsHi Gerben,
Try creating a brand new user, that's not imported and see if that works. Every user/group has a little gear in the Server.app/Users or Groups which allows specific access to specific services, perhaps filesharing is off in that section?
Is your DNS setup properly? Can you verify that clients can see the FQDN of your server?
After setting up the Users folder for mobilehomes, did you check whether the group and the separate users have access to filesharing? I am able to select the correct homefolder /Users and restrict the homefolder size.
Goodluck!
Jeffrey -
Network user cannot migrate AppleMail account from Snow Leopard to Lion 10.7.1.
I have a network user that is trying to open Apple Mail on a mini running Lion 10.7.1 for the first time. This user previously used a mini that is running Snow Leopard. Apple Mail is trying to perform an import I assume because Apple Mail 5 on the Lion is different then the version running on Snow Leopard? The import fails and says to press Continue to allow the Migration Assistant to create a new library. When we do this, the system responds that the Mail Index is damaged, to quit and reopen Mail so it can be repaired. We get the same set of messages when we close and go back into Mail.
When I access the console logs, here is what I saw:
10/18/11 12:23:01.647 PM Mail: Upgrade failed because of exception: Could not move /Network/Servers/server.aigtechnologies.net/Volumes/Data/Users/javier/Library/M ail/V2-Temp.noindex to /Network/Servers/server.aigtechnologies.net/Volumes/Data/Users/javier/Library/M ail/V2; ERROR: Error Domain=NSCocoaErrorDomain Code=513 "“V2-Temp.noindex” couldn’t be moved because you don’t have permission to access “Mail”." UserInfo=0x7fec021161b0 {NSUserStringVariant=(
Move
), NSDestinationFilePath=/Network/Servers/server.aigtechnologies.net/Volumes/Data/ Users/javier/Library/Mail/V2, NSFilePath=/Network/Servers/server.aigtechnologies.net/Volumes/Data/Users/javie r/Library/Mail/V2-Temp.noindex, NSUnderlyingError=0x7fec021144b0 "The operation couldn’t be completed. Permission denied"}
My interpretation of this message is that either the ACL or POSIX permissions are not set correctly for the user. When I log into Server Admin and check this though, ACL is set to allow Full Control for the user's folder and all children folders. The POSIX is set to Read&Write for the user's folder and all of the children files.
I read some of the discussions and tried removing all of the contents of the V2-Temp file, but this creates the same result.
Any suggestions would be appreciated.
CharleneI have a network user that is trying to open Apple Mail on a mini running Lion 10.7.1 for the first time. This user previously used a mini that is running Snow Leopard. Apple Mail is trying to perform an import I assume because Apple Mail 5 on the Lion is different then the version running on Snow Leopard? The import fails and says to press Continue to allow the Migration Assistant to create a new library. When we do this, the system responds that the Mail Index is damaged, to quit and reopen Mail so it can be repaired. We get the same set of messages when we close and go back into Mail.
When I access the console logs, here is what I saw:
10/18/11 12:23:01.647 PM Mail: Upgrade failed because of exception: Could not move /Network/Servers/server.aigtechnologies.net/Volumes/Data/Users/javier/Library/M ail/V2-Temp.noindex to /Network/Servers/server.aigtechnologies.net/Volumes/Data/Users/javier/Library/M ail/V2; ERROR: Error Domain=NSCocoaErrorDomain Code=513 "“V2-Temp.noindex” couldn’t be moved because you don’t have permission to access “Mail”." UserInfo=0x7fec021161b0 {NSUserStringVariant=(
Move
), NSDestinationFilePath=/Network/Servers/server.aigtechnologies.net/Volumes/Data/ Users/javier/Library/Mail/V2, NSFilePath=/Network/Servers/server.aigtechnologies.net/Volumes/Data/Users/javie r/Library/Mail/V2-Temp.noindex, NSUnderlyingError=0x7fec021144b0 "The operation couldn’t be completed. Permission denied"}
My interpretation of this message is that either the ACL or POSIX permissions are not set correctly for the user. When I log into Server Admin and check this though, ACL is set to allow Full Control for the user's folder and all children folders. The POSIX is set to Read&Write for the user's folder and all of the children files.
I read some of the discussions and tried removing all of the contents of the V2-Temp file, but this creates the same result.
Any suggestions would be appreciated.
Charlene -
Need help with network user accounts on Mac server App on Yosemite, any tips?
I've been trying to set up a small network with the Server app on Yosemite. I don't want to do anything crazy with the server, I'd just like to know how I can set up network user accounts so that they can login from other Mac computers on the same network. I already have Open directory set up, the Macs that will be used on the network with the server have already been joined to the server under login options. I have created the network user account, I have also joined the user account to a group that I created. When I try to login to the network account from one of the Macs, it doesn't work. I'm pretty rookie with Mac server, can anyway give me any pointers of what I should be doing? Or if I am doing something wrong. Thanks guys.
The most important step, once you've got Open Directory and DNS set up, with Local Network Users set up in Server.app, is to make sure that all client Macs are using the server's IP address as the primary DNS server in System Preferences > Network, and that they have joined the Network server in System Preferences > Users and Groups > Login Options.
Having said all that, I have just spent hours setting this all up only to find out that Mail doesn't currently work with Network Homes in 10.10.3 / Server.app 4.1.
I will be hoping that Apple recognise the bug, and put out a fix soon. -
Lion Server: All network users have disappeared
Hi,
A search through the forums and kbase didn't give me anything that mapped well to my problem. Here's the situation:
Specs:
Mac Pro (2008) 6GB RAM, SSD boot with space available, OS X Lion (latest) with Server.app
Services:
File Sharing
Users: less than 15—accounts only used for file server access.
This is the only server on the local network, all network routing is taken care of by a Meraki router.
I went to add a new user to our fileserver, and was unable to connect to the server over Apple Remote Desktop. At the time, file sharing from the server (I *believe*) was still working. I logged in with the file server's local admin account via SSH and tried to use Kickstart to get ARD running again—something I'm well versed in. The script ran as usual, but ARD could still not connect. So, as everyone was in a meeting, I tried to use `shutdown` to reboot the fileserver from the CLI, something I've also done in the past (but not frequently). Usually that takes about a minute to work, and then my shell disconnects—but after 5 minutes, the Mac had not rebooted.
At that point, I decided to walk to the server and manually force it down by holding the power button in. That powered off the Mac, and 30 seconds later, I booted it up.
Back on my Mac via ARD, I was able to remotely control it and got to the Fileserver's log in screen, which featured a red dot in the use field I'd never seen before. It's tool tip read "network users are currently unavailable" (paraphrased, perhaps). I logged in with the Fileserver's local admin user (as usual) and launched the Server.app, only to find that in the `Users` section, there were no users listed, and the plus and minus buttons were greyed out.
I tried rebooting but got the same results. I then repaired permissions and verified the boot drive. Lots of permissions repairs (as usual) but nothing improved. Another reboot after the permission repair and disk repair, just for safety's sakes… and as you can guess by me posting here… no improvement.
I'm not heavily versed in Server. I'm not even sure if those users are stored in a database, and where that DB would live. Does server make dumps or backups of the users on its own? Should I have been? Is this LDAP? Anyone have some next steps I can try? What info would be useful?
My first goal would be to recover a damaged DB. I only have just under 15 users, so re-creation isn't difficult. But, under the department of "I don't know a ton about Lion Server" I don't know if network users act like OS X users… where you could create a new user with the same username, but if their UID is different, then they won't have access to their owned files on the fileserver… is Server that exacting? Does it care who owns the file?
Thanks in advance for any ideas, or resources you can point me to!It gets far weirder……
Now no one, myself included can log in.
Checking the logs, which I'll try to attach a small sample of here (Dropbox link below since you can only attach images here), I see repeated instance of both `opendirectoryd` crashing and respawning, and of server manager unable to authenticate:
1/19/15 4:57:06.658 PM com.apple.opendirectoryd: Assertion failed: (0 == (connection->flags & eODConnectionFlagSocketValid)), function __odconnection_connect_block_invoke_2, file /SourceCache/opendirectoryd/opendirectoryd-172.17/src/odconnection.c, line 988.
1/19/15 4:57:07.641 PM com.apple.launchd: (com.apple.opendirectoryd[13760]) Job appears to have crashed: Abort trap: 6
1/19/15 4:57:07.641 PM com.apple.launchd: (com.apple.opendirectoryd) Throttling respawn: Will start in 9 seconds
1/19/15 4:57:07.761 PM ReportCrash: Saved crash report for opendirectoryd[13760] version ??? (???) to /Library/Logs/DiagnosticReports/opendirectoryd_2015-01-19-165707_localhost.cras h
1/19/15 4:57:17.276 PM PasswordService: -[AuthDBFile getPasswordRec:putItHere:unObfuscate:]: user with slot 4873a20f-0cc0-f7c3-0000-000a0000000a not found. Result: 80 Other (e.g., implementation specific) error
1/19/15 4:57:17.277 PM AppleFileServer: _Assert: /SourceCache/afpserver/afpserver-585.7/afpserver/AgentSession.cpp, 856 (4294952813)
1/19/15 4:57:32.703 PM servermgrd: servermgr_accounts: got error 2100 trying to auth to local LDAP node
https://dl.dropboxusercontent.com/u/1344045/server-sample.log.txt
Maybe you are looking for
-
Any ideas for this situation?
I have a application which allows users to enter information about a file and stores the information in an XML file of the same name. So, if I had a file at d:\myFolder\myFile.ext it would create the following xml file d:\myFolder\myFile.ext.xml As y
-
hi.. i used a rfc in a loop. every time in the pass the control is taking me to the logon of the remote system.but the control is not going into the respective function module..what is the problem
-
How do I edit the wording in file or add to wording in file or Doc.
Hoe di I edit wording in a file or doc.
-
We are currently implementing APEX. I would like help wrt designing our workspace environment. Do I create a w/space per application or divide the workspaces per business entity, eg finances,logistics,buying etc. Thanks in advance.
-
Where can I download clip-art to add to my phone? Please anyone provide me the website. Thks