Error creating new Open Directory domain

Similar Messages

• Unable To Create New Open Directory Master

  I have a brand new installation of MacOS X Mountain Lion Server, latest version, in a brand new Mac Mini. This Mac Mini is being co-located in a data centre, and I am setting it up via remote access (screen sharing). The data centre has setup DNS zone records for my domain, including a reverse DNS PTR record, and everything in the DNS is working fine.
  During the installation of Server, when the installer asked for the type of 'Host Name', I selected 'Host name for Internet'. The installer was able to use the IP address of the Mac Mini to automatically find the correct host name, and configure it. Once the installation was complete, no services were turned on - not even DNS, as the installer probably figured out that DNS services were being handled externally.
  The first thing I went to try and do was to turn on Open Directory. I turn the service on, and a sheet comes down, where I select to "Create a new Open Directory Domain". I click 'next', and on the next sheet I enter the OD Administrator's details, and password. Click 'next' again, and then I get the following message:
  "This computer's host name is invalid.
  The host name does not resolve to any configured address of this computer. Please ensure the host name is correct."
  Opening Terminal app, and typing "hostname", I get the correct hostname, as showing in Server app itself.
  Entering "sudo changeip -checkhostname" in Terminal app, I get all correct details for the IP address and host name of the machine, and the message: "The names match. There is nothing to change. dirserv:success = 'success'"
  I finally tried getting Server app to change the host name itself - going into the Server pane, select the 'Network' tab, and in the 'Names' section, next to the host name, click on the "Edit..." button. Again, went through the wizard, and the wizard again was able to find the hostname automatically from the machine's IP address. Once the 'changing' process was completed, I went to try and initialise Open Directory, and again, got the same message.
  Can anyone shed any light? Any suggestion would be welcome at this stage...

  MrHoffman, thank you for your guidance. You have, however, given me a bit of a headache.
  MrHoffman wrote:
  127.0.0.1 is likely going to be incorrect here.  Please reference the DC DNS servers, and not a local server.  If you're in a DC and particularly with a public-facing host without an outboard firewall to block DNS traffic, you likely do not want to be running your own local DNS services.
  As described previously, the server was referencing the DC DNS servers. The server was not running its own DNS service. Open Directory was not able to detect that the ip address and the hostname were correct with this setup - even though the command line on the server as well as externally showed that all DNS records were setup correctly, and that the IP address and hostname matched. The server's own installation wizard and 'Change Host Name' wizard automatically detected the hostname from the machine's ip address - by consulting the reverse DNS PTR record in the DC DNS servers.
  Starting the server's own DNS server - and adding '127.0.0.1' to the top of the DNS list in Preferences - allowed me to create the Open Directory master, finally. Of course, the internal DNS server was setup so that only the server itself could access it - it was closed to any other machines - and even then, I had it running only momentarily: once Open Directory created its master domain, I switched DNS service off, and removed '127.0.0.1' from the DNS list in Prefences.
  With that setup, everything seemed to work fine. All users were able to login, access their share points and their mail.
  MrHoffman wrote:
  For the host name, the host name would usually be the FQDN fully-qualified domain name, and "example.com" isn't usually a host name.  You'd usually find somehostname.example.com here
  That is the only machine in the domain. All public sub-domains - like 'mail', 'www' or 'calendar' - point to the same machine. The reverse DNS PTR record points to the higher-level domain "example.com".
  Your warning, however, made me worried:
  MrHoffman wrote:
  I'd probably rebuild the OD configuration, as I'd wonder of OD now had a bogus host name.  Once bad DNS gets involved, the entanglements can be quite pernicious..
  So I decided to heed your advice, and rebuild OD. I deleted the Open Directory master, and tried rebuilding it with DNS service turned off. As before, OD insists that "the host name does not resolve to any configured address of this computer", and refuses to create the new Master. I ended up following the procedure above again - switching DNS service on temporarily to get OD to work.
  The problem is, that now no user can connect to the server anymore. Everyone keeps getting a message stating that their password is wrong - including users on their iPhones and iPads.
  I suspect that when I created the new OD Master, it created a new certificate, and that is what is causing problems. While I could try to get the desktop users to delete the old certificates from their keychain, this is not really an option for iPhone/iPad users.
  Where do I go from here? After almost 24 hours straight dealing with this, I'm at the end of my rope...

• Strange Permissions problem when creating new Open Directory user

  I just set up a mac lab to authenticate to an Open Directory server which also stores home folders. All of the initial users I created work fine, there were about 50 users that I set up. When I added a new user this morning though, it would not allow him to access anything within his home folder (i.e. nothing worked)
  I went back to the server and took a look at the Users share and noticed that when his accound was created, instead of setting the owner of the folder to his username (xxx123) it was set to his userid number (1024). I did a chown on his directory to his username and he was then able to access his home directory from the clients.
  I realize I found a fix, but I would prefer to not have to do this every time I create a new user. Why is this happening?

  Have you used the "Role" drop-down to "SYSDBA"? - if not, you get the ORA-01017 error.

• Can't create new open directory user

  hi.
  If I use the workgroupmanager to create a new user it automatically creates one with a "crypt" password.
  first it is shown as open directory, but then if I re-load, it says "crypt" password.
  If I try to change it to open directory the system tells me that I am not authorized to do so.
  it does not matter if I try the workgroupmanager locally or via my macbook remotely.
  if I create them via the server preferences it works fine.
  since I am a newbie here, maybe I am doing something wrong... ideas? please.
  thanks.
  martindavid

  Check out this tread, you are not alone but there doesn't seem to be a single solution...
  http://discussions.info.apple.com/thread.jspa?threadID=2262981
  I had this code and MY solution came from the fact that I had turned OFF DNS because I couldn't see that "I" was using it. turning it back on and ensuring that it was correctly configured solved it for me!

• ERROR creating new workspace: directory file is invalid

  I f I try to create a workspace in a subfolder (directory)
  where the path is too large then I get an error:
  The directory file "C:\Documents and Settings\aus046\My Documents\programs\java\oracle_jdev_workspaces\my_new_ws"
  the path may conatain illegal charecters, may be too long or may not be accessable.
  I make the path shorter like "C:\Documents and Settings\aus046\My Documents\programs\java\ws_footytips"
  then it is fine but this messes up my desired folder structure.
  Any chance of fixing this bug?

  Yes, we've narrowed it down to a problem when using >80 character directory names.
  It's bug 2776374 (viewable on Oracle Support's metalink site) and will be fixed in the next major release.
  Thanks!
  Rob

• Sims 2 - Crashes when iMac part of an open directory domain

  Having a weird issue with running the The Sim 2 on my Kids machines.
  Some background, we have an Aluminum intel iMac and am intel Mac Min both running Leopard 10.5.6 which are connected to an old G4 DP800 running Leopard Server 10.5.6. When I installed the Sims 2 on the iMac or the Mac Mini it crashes almost immediately when you try to run it. Got onto Aspyr, went back and forward with them and they couldn't replicate the issues.
  Eventually I tried installing a fresh copy of Leopard 10.5.6 on an external USB drive and booting off that. It worked.
  Now for the fun part. Having been able to run the Sims 2 successfully from this vanilla usb install of 10.5.6, I then tried adding this back into the Open Directory domain, still running form the USB drive, all I did was add the machine back into the open directory domain, I didn't reboot, I didn't log out and back in again all I did was open directory utility, added the machine to the open directory domain and then re-ran The Sims 2, and you guessed it, it was crashing again.
  Just in case I did anything wrong, I repeated the whole process, and found this is repeatable, as soon as I the machine back into the open directory, then Sims 2 crashes.
  The attitude from Aspyr when I related all of this to then was that I had a "non standard" setup.
  It's a real pain having to keep a vanilla 10.5.6 install and having to re-boot each time to run this game, does anyone have any ideas or suggestions on this?
  TIA
  Dave

  So I finally got it to work.
  The Mavericks set up DNS assistant seems to add your local domain into the FQDN so you end up getting 'macsvr.domain.domain.com'
  I uninstalled server, removed the /Library/Server folder also Server.app and two files in /Library/Preferences. Serverd.plist and servermgrd.plist.
  I restarted server and let it do a first run, I set up my host name asking to set up DNS.
  I then went into DNS, deactivated it and edited the domain. I then added NS and machine records, reverse lookups and finally made sure the FQDN was in the correct zone. I repeated this for the intended replica and created my OD replica on first run.
  Check everything is good by using terminal, using the cmd: nslookup <ip address> for both master and replica, then: nslookup <FQDN> then: host <ip address>
  This should resolve both OD master and OD replica IP and hostname
  Hope this helps anyone else stuck on the set up. 

• Reversal FB08 Creating New OPEN ITEM instead of clearing the open item.

  Dear All,
  My user has an issue whenever he does any reversal  Tcode - FB08 in one of the general ledger  "Cash in Transit"  nature "open item" & "Line item"  instead of clearing the open it it  creates a new open line item.
  I have checked in Table BKPF , the reversal number is being updated but this items are still appearing open item in FBL3N and not appearing in F-04 (all reversals) for clearing.
  Can any one share what can be the reason its creating new open item  and how can i solve the issue for clearing the account.
  Thanks & Regards
  Pravin

  hi
  Please check following cases
  - whether this is happening in all the reversal cases of Cash in transit
  - Whether is user is just using FBRA (Onsly resetting) and not going for reversal
  - Chances would be one or two partial clearing may have taken for single document for the offsetting accounts
  Thanks
  Sandeep

• Move user files and preferences to new open directory log in

  I have a machine that I have been using for a few months. I log in to the machine as an admin user. We just put in a new MAC OS X server and are going to be using Open Directory and probably Mobility on the users.
  Is it possible to move or duplicate current state (preferences, passwords, bookmarks, email, etc.) of my computer to a new Open Directory log in on the same computer. If i can what is going to be the easiest way.
  Both the sever and my machine are 10.5.6.

  If you're logged into the old drive, select GO from the FInder menu while holding the option key down. Select Library from the submenu. This is your Home Library.
  The Mail folder will contain all accounts, mailboxes, and account preferences.
  The Mail application preferences will be stored in the Preference folder.
  For "what files you need" , that depends on what you're trying to accomplish. What are you trying to do?

• AR: Error Creating new Customer

  Hello,
  I am having error the following error creating new customer in AR 12.1.1 "Invalid value for currency_code. Please enter currency_code value from fnd_currencies". The currencies are all enabled.
  Thanks,

  Please see these docs.
  Cannot Add Customers. Error: Invalid Value For Currency_code. [ID 554555.1]
  CUSTOMER INTERFACE STATUS ERROR CODES [ID 1073634.6]
  Resource Addresses and Subinventory Assignment Fails with APP-295320: Provide a positive integer [ID 986655.1]
  Thanks,
  Hussein

• Error creating new domain (probably because of incomplete install)

  Hi!
  I've installed BPEL PM without problems on a server where AS already runs. I only had some problems with Step 2: Run the Integration Repository Creation Assistant on the Database. Since I couldn't run the bat files, I manually created shchema and a orabpel user.
  Postinstallation Verification Tasks for Oracle BPEL Process Manager in BPEL Process Manager Installation Guide went through OK, so I thought everything is OK.
  Then I tried creating new BPEL domain (trying to follow GoogleFlow tutorial but can't deploy because I don't have any domains) and got this error:
  Exception
  Operation failed because:
  Error updating domain index.
  An exception occurred while writing the domain index (id"GoogleDomain", ref "1") to the datastore; the exception reported is: ORA-00942: table or view does not exist.
  Please check that:
  + the machine hosting the datasource is physically connected to the network.
  + the connection pool properties as defined in the application server startup properties are valid.
  + the database schema for the OraBPEL server has been installed in the datasource.
  So I found a similar thread (Strange message when logged in to bpel console where one user had similar problems and solved them by manually running the domain_oracle.ddl script. I did the same, but still can't create a new domain.
  One more thing bothers me: if I try to create new domain with the same name I get:
  Exception
  Operation failed because:
  Domain already exists.
  A domain with identifier "GoogleFlowDomain" already exists at "C:\OracleAS\10.1.3.1\OracleAS_1\bpel\domains\GoogleFlowDomain". Please specify another domain identifier.
  But deployed domains list is empty.
  I'd really like to solve this. Maybe a new BPEL PM install would help but I can't execute step 2 of preinstallation tasks. If I execute the line from irca file
  java -classpath %CLASSPATH% -DORACLE_HOME=%ORACLE_HOME% oracle.tip.install.tasks.IRCA %*
  I get
  Exception in thread "main" java.lang.NoClassDefFoundError: Files\Java\jre1/5/0_06\lib\ext\QTJava/zip
  Any kind of further instructions would be much appreciated.
  Regards!
  BB

  Hi!
  It was the Step 2 (preinstallation steps): Run the Integration Repository Creation Assistant on the Database step that was causing all of my problems. I figured out why I couldn't run irca.bat file.
  The problem was in java home that was in C:/Program Files/Java... Looks like java or oracle (I don't know which) still have problems with spaces in directories names. When I installed Java to C:/Java/..., I could run IRCA and after reinstallation of BPEL PM everything is working as it should.
  Maybe this will help someone else.
  Bye

• New open directory account doesn't create mail account

  Hi All
       I have a Mac Mini with lion server, Fresh out of the box i messed with it a few times to learn and then i did a clean (internet) install and started with the settings i wanted (hostname, etc) with no mistakes. (It seems Lion doesn't like applhying most changes)
  When i set it up i created one local admin user that won't be in the open directory.
  Anyway, I've set up the following :
  * Address Book
  * File Sharing
  * iCal
  * Mail
  * Profile Manager
  * and VPN
  The first open directory user i added was myself and that user managed to get assigned an email account.
  Susiquent users i've added have not been registered with the mail subsystem.
  I've checked this using the "Server Admin" additional download management tool. (Mail service on the left, Maintenance up the top and then accounts uder that)
  There is only one mail account and thats the first one i've added.
  I havn't played with the settings so other than switching things on it should "just work" but it doesn't.
  I've prevously setup vmail servers using mysql to store the accounts with postfix and courioer imap but that was in some ways simpler as nothing was under the covers. I havn't dug too much into the dovecot config files, etc as i believe there is an all knowing server configuration engine at work here that isn't doing its job (which i havn't dug into)
  Has anyone had this issue of the mail accounts not being created?
  Or can anyone point me to a fix?

  It seems to have something to do with profile manager.
  I get stack traces in the "system messages" logs for the "Server" application, grrrr.
  I'll get that info and attempt to submit a but report tonight.

• Can't create Open Directory domain

  Using Server 3 I can't get Open Directory to work. I keep getting an error
  "xxx was successfully configured as a directory server, but an error occurred."
  Any ideas as to what's going on?  I checked my DNS settings and they seem fine.

  Hello, To whom may be concerned about this problem.
  I had the same problem with my mac mini, So what I did to fix it , I delete the Server App with AppCleaner(google it) and then I turn off my computer and re-install the Operating System to my excisting OS ( this why I repair whatever was broken within the file system. You would NOT loose any Data becuase you are just re-installing) and then I download the app again , and it works.
  Also you may contact Apple Server Support in the Application there is a link ! 
  Hope this will help somebody.

• Brand new Open Directory server not authenticating 10.9, 3.3.2

  I'm hoping somebody here has ran into this as it's driving me up a wall.
  I'm on a completely clean install of OS X Mavericks, with the installation from the App Store.
  On top of that, a completely clean install of Server.app 3.2.2 is installed.
  This server has a FQDN, and when I check to see if the hostname resolves in DNS, it totally does. DNS is not turned on as a service, but DNS server settings are correct and the server can hit the outside internet just fine.
  So my steps are as follows: Install Mavericks, clean onto a new partition. Update with all patches. Set Static IP. Install Server 3.2.2 which installs without error. Check hostname settings. All good there. Verify permissions. Create OD Master. I cannot get a single newly created with Server.app Local Network user to log in, even with home folders all 100% local to the client machine. I've unbound and rebound the client machine. I've restarted everything. Nothing.
  When attempting to log in, if I set it to reset password at next login, the prompt to reset the password will appear. I know at least initial auth is taking place, or I wouldn't be getting a password reset screen. After attempting to reset the password, neither the original temporary nor reset password will work. Users cannot log in.
  Here are the errors generated, with my info edited out:
  Jan 14 17:49:35 server slapd[111]: passwd_extop: (null) changed password for uid=test,cn=users,dc=controller,dc=domain,dc=edu
  Jan 14 17:49:35 server slapd[111]: => bdb_idl_delete_key: c_get failed: DB_LOCK_DEADLOCK: Locker killed to resolve a deadlock (-30994)
  Jan 14 17:49:35 server slapd[111]: conn=1181 op=3: attribute "entryCSN" index delete failure
  Jan 14 17:49:41 server slapd[111]: => bdb_idl_delete_key: c_get failed: DB_LOCK_DEADLOCK: Locker killed to resolve a deadlock (-30994)
  Jan 14 17:49:41 server slapd[111]: conn=1197 op=3: attribute "entryCSN" index delete failure
  I understand this is common for users upgrading from 10.6.8 but this is completely clean. I'm not usually administering an OS X server; I'm completely lost.
  Have tried: Recreating master, rekerberizing
  Using scutil and host to verify the DNS on the server works perfectly. Am I missing something small with DNS? We are a fairly large org with DNS not being provided by this server. If you think a different log file would help, please let me know which one.

  What do you get from this:
  sudo /usr/libexec/slapd -Tt
  Anything in /Library/Logs/slapconfig.log?
  Also, have you tried the suggestion here:
  Open Directory - Local Network User/Group - GONE

• Error Creating New User Accounts when Setting Terminal Services Attribute

  We have just started receiving this error when new users are being created in our domain as part of the new hire process. Does anywhere have any pointers on where to look and what to look for?
  ErrorError
  com.waveset.util.WavesetException: WTSQueryUserConfig() failed - Attribute: 'Terminal Services Home Directory Drive' Error: The specified user does not exist.
  Is this something that would indicate that AD isn't replicating across multiple domain servers yet, and thus when it tries to set this attibute this command isn't finding the account? If that is the case is there a way to have a retry put in?

  May I ask what version of IDM you're running?
  There's a known bug that relates to this functionality. A quick review shows it's a pretty close match (not 100%) to what you described.
  Bug 20728: Setting AD 'Terminal Services Local Home Directory' to null in IdM results in WTSSetUserConfig error
  It's fixed in 8.1.0.3(or later), 8.0.0.10(or later), or 7.1.1.14(or later).
  For the record, the latest IDM patches can be obtained here with valid credentials:
  http://sunsolve.sun.com/show.do?target=patches/zp-Software_Network-Internet_Identity_Manager
  Regards,
  Alex

• Error create or open model

  Hello all,
  I'm new to Visual Composer and my first mistake is that when I try to create or open a Model the follow error message appears:
  com.sap.ds.core.project.Project.deleteResour(Ljava/lang/String;)V
  Any idea?
  Does it relate to ds.developmentpath or ds.core.persistency.absoluteroot setting in Visual Admin?
  Thanks,
  Somnuk.

  Hi,
  Additional information for this issue.
  At first, I could only open the sample model EDMExample which come together with the installation.
  however, after I edited and saved it, I can't open this model anymore.
  Moreover, the error message appeared when I created new model,
  but the model does existed in the explorer window.
  I can neither open nor delete it.
  When I tried to save the model using "save as" menu,
  the following error message appeared:
  <i>Failed to load Public/Test.mdl model:
  Server error: Failed to get 1_Test.mdl content at Copy/PublicTest.mdl1_Test.mdl</i>
  Any help is appreciated.
  Best Regards,
  Somnuk.