DNS FQDN Mavericks 1.9.0 and Server 3.0.1

Similar Messages

• No VPN again after Mavericks 10.9.2 and Server 3.0.3 update

  After upgradeing my VPN stopped working again. Same behaviour as befor Apple rolled out the VPN Fix for Mavericks.
  Konfig on all VPN Devices I use remained unchanged.
  Anyone experiencing this as well?
  Best
  Stefan

  I installed the 10.9.2 update yesterday and vpn is not working anymore. I get an error message: The negotiation of the server failed.
  It worked just fine before this update, someone has an idea how to fix this?
  My Iphone is able to connect fine via vpn and my pc works fine either. Both using the same credentials as my mac book.

• Mavericks (10.9.5) time machine and server 3.2.1 user permissions conflict

  We are using a Mac mini Server (mid 2010) 2.66 GHz Intel Core 2 Duo, 4GB 1067MHz DDR3, NVIDIA GeForce 320M 256MB machine. There are 2 500GB hard disks which have each been partitioned into 2 separate logical disks of 250GB each (in total 4 logical 250GB disks).
  We having been using this server to file share on the local network for years using Snow Leopard, Lion and Mountain Lion (although there were teething problems with Mountain Lion using the new Server app).
  After experiencing some issues with an iCloud password change and App Store failing to load, we decided to try updating to Mavericks. Upon update we were prompted to update the Server app to Mavericks version (Server app 3.2.1), this seemed to work to begin with, preserving file sharing and network user records and permissions, however we soon started to experience issues with permissions and Time Machine. We noticed that the Open Directory set up to store our network users was no longer available in the Server app and so decided to erase one of the alternate partitions and perform a clean install of Mavericks and Server app 3.2.1. This proved to produce the same issues with Time Machine permissions and also difficulties with the shared folder permissions.
  Any help with this would be greatly appreciated.
  Thanks

  Hi Linc,
  Thanks for the reply.
  The Time Machine folders shown are from the Server app Storage tab which shows all connected hard drives. I haven't set TM drives up to be shared and hopefully the following screenshots will illustrate the current setup. This setup was created from a clean install of all involved software i.e. drives were erased and setup from scratch and the TM drives were simply connected and TM took control from there.
  As you can see from these screenshots, when viewing the permissions through the Server app, there appears to be an extra user when compared to the OS Get Info window.
  After leaving TM to its own devices over the weekend, I was greeted with a 'preparing backup' message this morning(Mon 13th October), with a last backup completed on Sat 11th October at 15:19:16. Stopping this backup and starting a manual backup has now resulted in a new, never before experienced error message stating that the backup disks can not be found:
  Console reports:
  I must re-iterate, the disk was erased and simply connected and Time Machine did its thing. Now as 'admin' it is clear that the folders created by TM do not have permissions so that I can simply view them in Finder, but does this directly affect TMs ability to access folders it has created itself?
  One useful bit of information I seem to have neglected is that the erased TM drive is encrypted, however the password was entered when the drive was connected to the machine and there has been no prompt thereafter.
  Please help. Only other comment I can make is that before the update to Mavericks and Server app 3.2.1, none of this was a problem.

• HT4814 TCP and UDP ports on router firewall to allow server to server administration running mavericks and server app 3.0?

  What TCP or UDP ports do I need to open on my router firewall to allow server to server administration running maverics and server app 3.0?

  Also you may want to open tcp port 625 so that you can update the server's OD master.
  More info can be found here: http://support.apple.com/kb/ts1629  Well known TCP/UDP ports used by Apple Products.
  HTH
  - Leland

• DNS Configured-Best Practice on Snow Leopard Server?

  How many of you configure and run DNS on your Snow Leopard server as a best practice, even if that server is not the primary DNS server on the network, and you are not using Open Directory? Is configuring DNS a best practice if your server has a FQDN name? Does it run better?
  I had an Apple engineer once tell me (this is back in the Tiger Server days) that the servers just run better when DNS is configured correctly, even if all you are doing is file sharing. Is there some truth to that?
  I'd like to hear from you either way, whether you're an advocate for configuring DNS in such an environment, or if you're not.
  Thanks.

  Ok, local DNS services (unicast DNS) are typically straightforward to set up, very useful to have, and can be necessary for various modern network services, so I'm unsure why this is even particularly an open question.  Which leads me to wonder what other factors might be under consideration here; of what I'm missing.
  The Bonjour mDNS stuff is certainly very nice, too.  But not everything around supports Bonjour, unfortunately.
  As for being authoritative, the self-hosted out-of-the-box DNS server is authoritative for its own zone.  That's how DNS works for this stuff.
  And as for querying other DNS servers from that local DNS server (or, if you decide to reconfigure it and deploy and start using DNS services on your LAN), then that's how DNS servers work.
  And yes, the caching of DNS responses both within the DNS clients and within the local DNS server is typical.  This also means that there is need no references to ISP or other DNS servers on your LAN for frequent translations; no other caching servers and no other forwarding servers are required.

• Assistance with DNS/FQDN

  I am having trouble setting up my DNS for hosting my domain/website on the internet. As I am faily new to DNS settings, any assistance would be greatly appreciated. My settings are listed below;
  NAME TYPE VALUE
  0.168.192.in.addr.arpa. Reverse Zone -
  192.168.0.195 Reverse Mapping svr.khnum.ca
  195.0.168.192.in-addr.arpa. Reverse Zone -
  192.168.0.195 Reverse Mapping svr.khnum.ca
  khnum.ca Primary Zone -
  svr.khnum.ca Machine 192.168.0.195
  web (http.tcp) Service khnum.ca:80
  ** I am currently behind a D-Link router/firewall using DHCP to assign network addresses. I have reserved the IP address for the server on the router.
  My IP address from my ISP is 2*.110.115.9, subnet mask is 255.255.255.192, default gateway is 208.110.115.1, primary DNS is 209.53.200.3, and secondary DNS is 66.51.128.241.
  ** I am used to using Windows, the OS X environment is a tad new.
  ** When I run a tracert on my FQDN khnum.ca I get 206.12.82.193, which seems to be the company I registered with.
  Thanks.

  What are you trying to do?
  The simplest is to draw a line (at your firewall) between the public DNS domain and the public network, your private DNS and private IP addresses, and use NAT to bridge that line. Basically leave your external DNS names alone, and use NAT to go from your public IP address to your internal IP address. Set up a parallel DNS inside using a subdomain of your registered domain, a different registered domain, or a made-up domain.
  Then (for details) [read this|http://labs.hoffmanlabs.com/node/1436] for more details.
  And get out of 192.168.0.0/16, and over into 172.16.0.0/12 or 10.0.0.0/8 while you're setting stuff up. Get into a different subnet, and well clear of 192.168.0.0/16 that everybody uses. That change makes (future) VPN routing easier going forward.

• Problems with setting up DNS Redundancy - Mavericks

  Hi All,
  I'm attempting to setup a 2nd OSX server for OD, DNS and DHCP redundancy. I've followed all instructions I have found online but I'm having problems . below is what I'm running and what I've done.
  Main server.
  server.superannuationproperty.org - 10.0.0.1.
  Failover 2nd server
  server2.superannuationproperty.org - 10.0.0.9
  1. I setup zone transfers on the Primary and Reverse zones - main server.
  2  On Failover server added a Secondary zone  - server.superannuationproperty.org with IP 10.0.0.1 and for the Reverse in my case was 1.0.0.10.in-addr.arpa and 10.0.0.1.
  3. Added forwarding servers on the Failover as 8.8.8.8 and ISP DNS server (as it is on the main server)
  4 Changed Failover DNS settings to point to itself first then to the ISP DNS and 8.8.8.8
  Internet is working fine on the server but I can't ping server2.superannuationproperty.org and when I run a "checkhostname" I get "The DNS hostname is not available, please repair DNS and re-run this tool" message.
  I assume this is why my OD replica isn't working too. I'm able to add the replica ok but when creating new users on the main, they show up on the failover but with "not allowed" I'm also unable to login to clients when the main server is powered off.
  Does anyone know what I'm doing wrong here??
  Thanks in advance.

  Thanks for your reply.  I have DHCP redundancy working by dishing out two different ranges and yes i've set DHCP so clients get both servers. 10.0.0.1 and 10.0.0.9
  I still can't get DNS to work however.... after stuffing around with it today  i decided to start from scratch and rebuilt the failover server with a fresh copy of Mavericks and Server.
  I gave the server a local address this time server2.local
  I setup a secondary zone of Server.superannuationproperty.org - 10.0.0.1 and Reverse of 1.0.0.10.in-addr.arpa - 10.0.0.1
  After running a "checkhostname" i'm still getting "The DNS hostname is not available, please repair DNS and re-run this tool."
  I ran nslookup on 10.0.0.9 with "server can't find 9.0.0.10.in-addr.arpa.: NXDOMAIN" and on server2.local with "server can't find server2.local: NXDOMAIN"
  i can ping server2.local however...
  I can't figure out what i'm doing wrong. I don't want to attempt to join the Master OD until I have DNS sorted out.
  I checked the logs under DNS config see below. From what i can see it's transferred the zone info from the main server, i just don't know what's wrong??? Thanks.
  3-Mar-2015 15:09:18.242 managed-keys-zone/com.apple.ServerAdmin.DNS.public: loaded serial 0
  03-Mar-2015 15:09:18.244 zone 0.0.127.in-addr.arpa/IN/com.apple.ServerAdmin.DNS.public: loaded serial 1997022700
  03-Mar-2015 15:09:18.249 zone localhost/IN/com.apple.ServerAdmin.DNS.public: loaded serial 42
  03-Mar-2015 15:09:18.249 all zones loaded
  03-Mar-2015 15:09:18.249 running
  03-Mar-2015 15:09:18.251 zone 1.0.0.10.in-addr.arpa/IN/com.apple.ServerAdmin.DNS.public: Transfer started.
  03-Mar-2015 15:09:18.252 transfer of '1.0.0.10.in-addr.arpa/IN/com.apple.ServerAdmin.DNS.public' from 10.0.0.1#53: connected using 10.0.0.9#50354
  03-Mar-2015 15:09:18.294 zone 1.0.0.10.in-addr.arpa/IN/com.apple.ServerAdmin.DNS.public: transferred serial 2015030303
  03-Mar-2015 15:09:18.294 transfer of '1.0.0.10.in-addr.arpa/IN/com.apple.ServerAdmin.DNS.public' from 10.0.0.1#53: Transfer completed: 1 messages, 4 records, 178 bytes, 0.042 secs (4238 bytes/sec)
  03-Mar-2015 15:09:18.294 zone 1.0.0.10.in-addr.arpa/IN/com.apple.ServerAdmin.DNS.public: sending notifies (serial 2015030303)
  03-Mar-2015 15:09:18.752 zone server.superannuationproperty.org/IN/com.apple.ServerAdmin.DNS.public: Transfer started.
  03-Mar-2015 15:09:18.752 transfer of 'server.superannuationproperty.org/IN/com.apple.ServerAdmin.DNS.public' from 10.0.0.1#53: connected using 10.0.0.9#50355
  03-Mar-2015 15:09:18.754 zone server.superannuationproperty.org/IN/com.apple.ServerAdmin.DNS.public: transferred serial 2015030303
  03-Mar-2015 15:09:18.754 transfer of 'server.superannuationproperty.org/IN/com.apple.ServerAdmin.DNS.public' from 10.0.0.1#53: Transfer completed: 1 messages, 4 records, 159 bytes, 0.001 secs (159000 bytes/sec)
  03-Mar-2015 15:10:21.878 received SIGHUP signal to reload zones
  03-Mar-2015 15:10:21.903 loading configuration from '/Library/Server/named/named.conf'
  03-Mar-2015 15:10:21.904 using default UDP/IPv4 port range: [49152, 65535]
  03-Mar-2015 15:10:21.904 using default UDP/IPv6 port range: [49152, 65535]
  03-Mar-2015 15:10:21.921 sizing zone task pool based on 5 zones
  03-Mar-2015 15:10:21.950 reloading configuration succeeded
  03-Mar-2015 15:10:21.960 reloading zones succeeded
  03-Mar-2015 15:10:21.992 all zones loaded
  03-Mar-2015 15:10:21.992 running
  03-Mar-2015 15:22:37.333 received SIGHUP signal to reload zones
  03-Mar-2015 15:22:37.333 loading configuration from '/Library/Server/named/named.conf'
  03-Mar-2015 15:22:37.334 using default UDP/IPv4 port range: [49152, 65535]
  03-Mar-2015 15:22:37.334 using default UDP/IPv6 port range: [49152, 65535]
  03-Mar-2015 15:22:37.350 sizing zone task pool based on 5 zones
  03-Mar-2015 15:22:37.354 reloading configuration succeeded
  03-Mar-2015 15:22:37.355 reloading zones succeeded
  03-Mar-2015 15:22:37.365 all zones loaded
  03-Mar-2015 15:22:37.365 running
  03-Mar-2015 15:24:19.671 received SIGHUP signal to reload zones
  03-Mar-2015 15:24:19.671 loading configuration from '/Library/Server/named/named.conf'
  03-Mar-2015 15:24:19.672 using default UDP/IPv4 port range: [49152, 65535]
  03-Mar-2015 15:24:19.672 using default UDP/IPv6 port range: [49152, 65535]
  03-Mar-2015 15:24:19.688 sizing zone task pool based on 5 zones
  03-Mar-2015 15:24:19.694 reloading configuration succeeded
  03-Mar-2015 15:24:19.695 reloading zones succeeded
  03-Mar-2015 15:24:19.703 all zones loaded
  03-Mar-2015 15:24:19.704 running

• How do I install Mavericks without invoking the OSX Server Plugin?

  How do I perfrom a clean install of Mavericks from the Recovery Partition without it automatically installing, and then invoking or executing the OSX Server Plugin that ultimately results in rendering open directory operable as well as the server.  I have ignored this continously, but the other day I went into the terminal and typed ARP -s that lists the shortname for the host of my MacBook Pro and it gave a totally different name than what I had given it in the wi-fi network interface under the WINS tab. More importantly, I do not want to install open directory nor the osx server plugin as it opens up more complexity than I want to deal with.  Any suggestions is greatly appreciated.  BTW, below are the steps I performed for installing Mavericks.
  1. Powered on the MacBook Pro and then hit the Option key.
  2. This took me into the Recovery Partition, whereby I went into the Disk Util and erased or formatted the hard-drive.
  3. I then clicked out of the Disk Utility and went into the Recovery Mode by clicking on reinstall the current OS.
  4. I went through all the prompts and the system downloaded a current version of Mavericks.
  5. After completion, I turned on my Macbook Pro and went through the prompts to install Mavericks.
  6. This is all I did, and I didn't download the OSX plugin nor invoke it in the new version of the Operating System. 
  I just assumed that it was a standalone version until I found the server for osx running with open directory invoked, the server invoked, along
  with other components relative to a new standalone version.
  Again, my question is simple: How can I reinstall Mavericks without it downloading and automatically
  iinvoking the components as described above? 

  Hi. Because both Mavericks and Windows 8 are still new, they may not be free of error. Apple needs more time to perform more tests to ensure that these two different OS's will work properly without getting in conflicts. If it's posdible, I highly recommand you to downgrade back to Lion or Mountain Lion and install Windows 7 (if you have a copy of it). In my experience, all advises from Genius Bar members and computer articles confirm that  Windows 7 will work on Macs with Lion OS. It should also work on Mountain Lion. Besides Boot Camp, you could try to virtualize Windows OS and its applications by using VirtualBox, CrossOver and other VMs. I already have an Oracle VirtualBox but I would like to try Boot Camp since it allows me to enjoy almost all Windows features that may be limited in VMs.

• Since Mavericks update my iPhone and iPad calendars are NOT syncing with the calendar on my MacBook Pro

  Since Mavericks update my iPhone and iPad calendars
  are NOT syncing with the calendar on my MacBook Pro.
  I used to use iTunes but don't see the options now.
  Does anyone know how to set up a sync.?

  I have temporarily solved the sync problem by using an older MBAir running snow leopard, I exported
  both calendar and contacts and imported them in the MBA and synced normally.
  Since I'm not about to send my data on the cloud, or setup a server to just sync my iphone,
  I think this is a good workaround ! BTW I stopped updating my contacts and calendar on the MB, I only
  update the iphone until a permanent solution is found !
  And they better come up with one soon, because I'll just switch to an Android phone and Ubuntu linux for my MBP, Apple should make our lives easier, not harder !
  I'm sure Samsung is having a ball ever since the sync issue was made public !
  Hopefully Apple is listening and will make things right again !

• Smtp relay on osx 10.9.5 and server 3.2.2

  What we have
  We have a mac mini setup using 10.9.5 and server 3.2.2.    The mail server is OFF but we have a Relay Outgoing Mail through ISP checked (and the proper credentials for the outgoing relay (FQDN) and the authorization credentials.
  What we are trying to do
  Our mac mini runs a php script to generate an email that needs to be sent to users.   The mail has to use a smtp relay and we are trying to use the smtp relay provided by our email vendor.
  Settings required by our email vendor
  Instructions for configuring an email client can be found here
  https://www.namecheap.com/support/knowledgebase/article.aspx/1179/2175/general-c onfiguration-for-mail-clients-and-mobile-devices
  We set up the relay in Mail on the Server 3.2.2 to use SSL and port 465.  In our particular case the relay is configured as shown below.  Obviously the [email protected] is the proper username for our authorization.
  When we try to send mail (we test this function by sending mail from terminal by using the following command (sending mail to myself from myself)
  printf "Subject: TestnHello" | sendmail -f [email protected] [email protected]
  and then watch the mail logs the smtp server rejects our mail due to authorization issues.  The mail log text is shown below (email addresses replaced with [email protected] and IP addresses modified)
  Dec 22 11:57:03 109-218-164-81.lightspeed.austtx.sbcglobal.net postfix/pickup[16825]: 5545383231: uid=501 from=<[email protected]>
  Dec 22 11:57:03 109-218-164-81.lightspeed.austtx.sbcglobal.net postfix/cleanup[16827]: 5545383231: message-id=<[email protected]bal.net>
  Dec 22 11:57:03 109-218-164-81.lightspeed.austtx.sbcglobal.net postfix/qmgr[16826]: 5545383231: from=<[email protected]>, size=340, nrcpt=1 (queue active)
  Dec 22 11:57:03 109-218-164-81.lightspeed.austtx.sbcglobal.net postfix/error[16838]: 5545383231: to=<[email protected]>, relay=none, delay=0.04, delays=0.02/0/0/0.02, dsn=4.4.1, status=deferred (delivery temporarily suspended: connect to eforwardct3.name-services.com[216.163.176.39]:465: Connection refused)
  Dec 22 11:57:05 109-218-164-81.lightspeed.austtx.sbcglobal.net postfix/master[16824]: master exit time has arrived
  We find many self help pages on the internet that talk about modifying the main.cf file located at /Library/Server/Mail/Config/postfix.   Some even talk about modifying settings in the master.cf file in /ect/postfix.  I have tried several and none seem to work.
  Can anyone provide some guidance?
  Regards!

  The Server GUI doesn't provide for this use case.
  Take the following steps to configure Postfix to relay mail to a remote SMTP server with password authentication over SSL. Substitute as required for strings in italics below. Address is the fully-qualified domain name of the relay host. The value of port is usually either 25, 465, or 587. Username and password refer to your credentials on the relay host.
  In the current version of OS X Server (but not necessarily in older versions), Steps 1 and 3 should be done for you when you enable relaying and relay authentication in the Server application.
  1. If necessary, create or update the relayhost directive in
       /Library/Server/Mail/Config/postfix/main.cf
  It should look like this:
       relayhost = [address]:port
  2. Add these lines, above the section at the end that begins with the comment "# Mac OS X Server":
       smtp_sasl_security_options =
       smtp_tls_CAfile = /etc/certificates/relayhost.pem
       smtp_tls_session_cache_database = btree:$data_directory/smtp_tls_session_cache
       smtp_use_tls = yes
  3. If it doesn't already exist, create the password file
       /Library/Server/Mail/Config/postfix/sasl/passwd
  with this content:
       [address]:port
       username:password
  Here address must match $relayhost.
  Then create the password database:
  sudo postmap /Library/Server/Mail/Config/postfix/sasl/passwd
  This action creates the file
       /Library/Server/Mail/Config/postfix/sasl/passwd.db
  The two password files should be readable by root only.
  4. Create the file
       /etc/certificates/relayhost.pem
  with the CA certificate(s) to be trusted for authentication of the remote host. You get those certificates from the service provider. If you can't find a link to download them, try this:
  openssl s_client -connect address:port -showcerts < /dev/null | sed -n '/-BEGIN /,/-END /p' | sudo sh -c 'cat > /etc/certificates/relayhost.pem'
  The command may produce an error message that isn't necessarily significant. For servers that use the older STARTTLS protocol, rather than straight TLS or SSL, this command may need to be modified.
  5. Restart the Mail service.

• DNS LOG writting Issue in win 2k8 server.

  We have Win2K8 Std, we are experiencing the DNS log issue on this Server. We had set the
  DNS Log limit is 200 MB and this logs should be over written , but automatically deleting the logs once reaches the limit ( 200 MB), again will start with writing the fresh logs.Please assist us the issue as early as possible.

  text below from this link: http://technet.microsoft.com/en-us/library/bb726966.aspx
  which one you've set:
  Determine what happens when the maximum log size is reached. The options available are
  Overwrite Events As Needed Events in the log are overwritten when the maximum file size is reached. Generally, this is the best option on a low priority system.
  Overwrite Events Older Than . . . Days When the maximum file size is reached, events in the log are overwritten only if they are older than the setting you select. If
  the maximum size is reached and the events can't be overwritten, the system generates error messages telling you the event log is full.
  Do Not Overwrite Events (Clear Log Manually) When the maximum file size is reached, the system generates error messages telling you the event log is full.
  or check out this thread, you can opt to save event logs:
  http://social.technet.microsoft.com/Forums/windowsserver/en-US/728bb896-b9c4-4043-8aed-7fd4d53713f6/how-do-dns-logs-overwrite?forum=winserverNIS
  Every second counts..make use of it. Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.
  IT Stuff Quick Bytes

• Not clear about dns service for new Mac 10.4 server

  Due to low budget, I am given the task to convert a powermac g4 into a Mac 10.4 server. I have already installed it as a stand alone master but will promote it to directory master as soon as I configure proper dns setup.
  Now my westell router shows that the dns is 192.168.1.1 and the domain name as myhomwestell.com, does that mean my zone name has to be westell.com? Can having both dns service conflict with each other or is it fine?

  http://discussions.apple.com/message.jspa?messageID=5409254#5409254
  lookup my posts on DNS setup to help you about. Please mention if you want to go full a Fully Qualified Domain Name Setup or just a local setup . Do you dispose of a fixed public IP address as well ?

• Reinstall OS and Server Preparations?

  I use my Mountain Lion Mac Mini Server to provide limited services for about 25 users and about 15 groups. It's been giving me some inexplicable problems, wo I want to wipe the disks, the reinstall both the OS and Server.app. I'd like to back up the data I will need to fully restore those users and groups.
  The items I have "on" in Server include:
  DNS
  FTP
  Open Directory
  Web
  Wiki
  I don't use Calendar or Mail.
  Saving the FTP data seems simple enough.
  How do I save the Users and Groups data? (I could re-do both if necessary. )
  How do I save the Wiki sites data?
  Thanks in advance for any help!

  Hi Armax,
  It is advisable to deactivate the Adobe CC products before uninstalling or re-installing windows and your correct Sign out will deactive the Adobe CC apps.
  If you have Creative cloud 6 then also please deactivate those apps by clicking on Help>> Deactivate.
  Ankit

• Failed internet and server

  Hello,
  My new imac is giving green lights for Ethernet, Network settings and ISP but red for internet and server. I have another mac next to it which is fine through the same connection and the phone and ipad are fine on the wireless from the same router so its a problem specific to the mac. I have booted the mac from a bootable hard drive of a clone of the previous mac and it connects fine with all green lights so its something to do with the mac settings. I have compared the two macs and the settings are almost identical, IP addresses not clashing but DNS server is the same.
  I am tearing my hair out and am thinking of a factory reset but it has a fusion drive and Im not sure how to go about that. It also says on the apple site that if you are going to do a reset make sure you are connected to the internet... but that my problem in the first place!
  I really hope someone can help.
  Many Thanks.

  Please read this whole message before doing anything.
  This procedure is a diagnostic test. It’s unlikely to solve your problem. Don’t be disappointed when you find that nothing has changed after you complete it.
  The purpose of the test is to determine whether the problem is caused by third-party software that loads automatically at startup or login, by a peripheral device, by a font conflict, or by corruption of the file system or of certain system caches.
  Disconnect all wired peripherals except those needed for the test, and remove all aftermarket expansion cards, if applicable. Start up in safe mode and log in to the account with the problem. You must hold down the shift key twice: once when you turn on the computer, and again when you log in.
  Note: If FileVault is enabled in OS X 10.9 or earlier, or if a firmware password is set, or if the startup volume is a software RAID, you can’t do this. Ask for further instructions.
  Safe mode is much slower to start up and run than normal, with limited graphics performance, and some things won’t work at all, including sound output and Wi-Fi on certain models. The next normal startup may also be somewhat slow.
  The login screen appears even if you usually login automatically. You must know your login password in order to log in. If you’ve forgotten the password, you will need to reset it before you begin.
  Test while in safe mode. Same problem?
  After testing, restart as usual (not in safe mode) and verify that you still have the problem. Post the results of the test.

• DNS Registration for clients with WLAN and LAN adapters

  I have read a number of articles and it seems that there are a number of people who have problems with DNS and workstations with both WLAN and LAN adapters. I haven't however found workable solutions.
  Workstation Connection Objective:
  To enable DNS discovery and Ip connection to client workstations regardless of whether the client is using the WLAN or LAN. Enabling users to use either Wireless or LAN adapter adhoc. ie they dock their laptops at their desks, and undock to take their laptops
  to meetings or consulations with peers. I need to be able to discover and connect to the workstations irrespective of the adapter being used at any time.
  Most people seem to try to control which interface is used on the workstations, ie disable WLAN and only use LAN etc. Trying to disable interfaces isn't going to be feasible and its very inflexible.
  I believe I can ensure that the workstations use the NICs in our preferred order:
  1. LAN
  2. WLAN - Our wireless network isn't as fast as the LAN.
  By setting specific DHCP metric for the WLAN Router to be higher(ie 2) than the LAN(1). When the LAN isn't connected traffic will route via the WLAN adapter and when the LAN adapter is connected, its router metric will be lower and it will be the preferred
  gateway/route.
  But how do I solve the DNS resolution for connection to that asset?
  If I disable DHCP Server updates into DNS and allow secure updates from the client. It would be really good if DNS client behaved in the following manner
  1. The LAN adapter(referred to as primary ie LAN) with the lowest metric(ie 1) registers/auto updates DNS with the ip(both A and PTR). Any other Adapters don't register. - ie the WLAN
  2. The Laptop is undocked and the LAN adapter goes offline, the DNS Client then triggers a registration/auto updates its existing DNS entry with the ip from the next adapter(WLAN) with the next lowest gateway metric(2)...hence replacing the first ip registered.
  3. The laptop is docked again, and DNS Client triggers a registration/auto updates its existing DNS entry with the IP from the primary adapter(LAN), replacing the WLAN ip.
  So there is only ever 1 ipaddress registered for a workstation and it will always be a valid address. Then I don't need to be concerned about whether the user has the wireless turned on and docked.
  Being able to discover and communicate with all our workstations in our sites is crucial requirement....
  This microsoft article says, http://technet.microsoft.com/en-gb/library/cc771255.aspx
  Dynamic updates can be sent for any of the following reasons or events:
      * An IP address is added, removed, or modified in the TCP/IP properties configuration for any one of the installed network connections.
      * An IP address lease changes or renews with the DHCP server any one of the installed network connections. For example, when the computer is started or if the ipconfig /renew command is used.
      * The ipconfig /registerdns command is used to manually force a refresh of the client name registration in DNS.
      * At startup time, when the computer is turned on.
      * A member server is promoted to a domain controller.
  However from what I am reading, both adapters(LAN,WLAN), if configured to update DNS, will register their Ip addresses. Which leads to an invalid DNS entry if the laptop is undocked, as the IP for LAN adapter isn't removed.
  Has anyone solved this problem for their organizations without
  1. Controlling which adapter is used - large management overhead
  2. Only allowing one adapter to register with DNS
      - If using LAN adapter for DNS, then anytime the user is using WLAN, their workstation doesn't have a valid DNS entry. Which also impacts Kerberos.
      - If using the WLAN, then we would have to invest a large amount of money into Wireless to provide the necessary bandwidth
  3. Setting GPO's to configure dns updates every 30mins on clients
      - Inconsistent results...which I think is sometimes a worse problem
  4. Defining separate DNS suffixes for their WLAN networks (I read some people did this)
      - This doesn't remove an invalid DNS entry ie the ip(LAN adapter) DNS entry if the laptop is undocked
      - It also creates problems with kerberos, if the host is registered under a separate DNS suffix from the Active Directory domain name

  Hi,
  From my point of view, DNS can't be so smart.
  As a workaround, please try the steps below,
  Disable the DNS register of wireless adapter
  Put "ipconfig /regiserdns" in a bat file
  Everytime when the wired network is undocked, run the bat file.
  If the wired network is docked, wired adapter will register the DNS record.
  When the wired network is undocked, run the bat file, then the wireless adapter will register the DNS record.
  If the wired network is docked again, wired adapter will register the DNS record automatically.
  Best Regards.
  Steven Lee
  TechNet Community Support