Home Directory on Active Directory

Similar Messages

• Portable Home Directory no longer works on Lion bound to Active DirectoryAD

  Hi, All,
  I look after about 30 MacBook Air/Pro connected to a predominantly Windows corporate network.
  A few months back, I installed a MacOS Server running OpenDirectory and Software Update Services for managing the MacBooks - they are configured in the standard "magic triangle" configuration, bound both to the Active Directory (running on a handfull of Windows 2003-R2 servers) and OpenDirectory; they are configured to use the Mac Server for Software Updates, and with Portable Home Directories replicated on a network share point (through AFP) to keep a backup of the user's data.
  When all the MacBooks were running Snow Leopard, everything was running fine... but the last couple of laptops purchased came with Lion and they cannot synchronise their PHD's anymore :-(
  I have spent a lot of time trying to pin-point the problem, including replicating a whole test-network with its own AD/OD and client Snow-Leopard/Lion laptops to try various configurations... my conclusions so far are that:
  1- using Snow Leopard clients, it just works
  2- using a Lion client, when the network user account is configured in the default Users O.U. on Active Directory, it just works
  3- using a Lion client, when the network user account is configured in another O.U. than Users (e.g. Company-Name or External-Contractors), then the PHD syncinc doesn't work at all
  4- the failure symptoms are a popup window when trying to do a manual sync saying that "your network home at (null) does not allow writing" - if automatic syncing is configured through MCX, it just fails silently
  5- when PHD syncing fails, I can log on using the network account, manually mount the share point used for the network home in the Finder and read and write to it without a problem; so it' not a permission problem, but the fact that the network home directory is (null)
  6- I have traced the root cause to the FileSyncAgent process which raises an exception at startup - here's what I see as the salient lines from the logfile (i've edited out the username):
  0:: [12/02/07 12:45:00.512] ******************************************************************************
  0:: [12/02/07 12:45:00.512] FileSyncAgent-502.2 (r?, BUILT:?, PID:385, OS:11D50b, ARCH:x86_64-64) starting
  0:: [12/02/07 12:45:00.512] LA: FileSyncAgent -launchedByLaunchd -iDiskPlist
  0:: [12/02/07 12:45:00.512] ******************************************************************************
  0:: [12/02/07 12:45:00.512] Engineering log verbosity level = 1
  1:: [12/02/07 12:45:00.512] Registered isRunning port with name 'com.apple.FileSyncAgent.iDisk.isRunning'
  1:: [12/02/07 12:45:00.846] Temporary disk storage at "/Users/[USERNAME]/Library/Caches/Cleanup At Startup/FileSyncAgent-1727909307".
  1:: [12/02/07 12:45:00.846] UserAgentString = "DotMacKit-like, File-Sync-Direct/502.2.? (11D50b x86_64-64)"
  1:: [12/02/07 12:45:03.249] +[SSyncSet_PHD createPHDSyncSetForLocalPath:remoteHomeSpec:mountSuffixPath:name:]: Creating Sync Set with name "HomeSync_Mirror".
  1:: [12/02/07 12:45:03.249] -[SSyncSet_PHD _setupNewPHDSyncSetWithLocalPath:homeSpec:mountSuffixPath:]: We've been given local home path '/Users/[USERNAME]'.
  1:: [12/02/07 12:45:03.249] -[SSyncSet_PHD _setupNewPHDSyncSetWithLocalPath:homeSpec:mountSuffixPath:]: local home at "/Users/[USERNAME]"
  <PHD> 1:: [12/02/07 12:45:06.458] Added new sync set "HomeSync_Mirror".
  <PHD> 1:: [12/02/07 12:45:06.465] _incomingIPC: SFCreatePHDSyncSetMsgId (17) took 3.217627 seconds.
  <PHD> 1:: [12/02/07 12:45:06.526] Scheduling next sync of "HomeSync_Mirror" at 2012-02-07 12:45:16 +0000
  <PHD> 1:: [12/02/07 12:45:18.122] ==========================================================
  <PHD> 0:: [12/02/07 12:45:18.123] Starting automatic sync of "HomeSync_Mirror".
  <PHD> 1:: [12/02/07 12:45:18.126] Peer "local" reports changes since last sync.
  <PHD> 0:: [12/02/07 12:45:18.128] EXCEPTION: NilPtr <-[SPeer_FS_PHD mountPeerVolume] (Peer-FS-PHD.m:142): "'((homePath))' is nil">
  <PHD> 0:: [12/02/07 12:45:18.128] BACKTRACE: {
  <PHD> 0:: [12/02/07 12:45:18.128] ? | 0x105003493  
  <PHD> 0:: [12/02/07 12:45:18.128] ? | 0x104f70866  
  <PHD> 0:: [12/02/07 12:45:18.128] ? | 0x104f6fabd  
  <PHD> 0:: [12/02/07 12:45:18.128] ? | 0x104f6ecb4  
  <PHD> 0:: [12/02/07 12:45:18.128] ? | 0x7fff924bb74e
  <PHD> 0:: [12/02/07 12:45:18.128] ? | 0x7fff924bb6c6
  <PHD> 0:: [12/02/07 12:45:18.128] ? | 0x7fff901998bf
  <PHD> 0:: [12/02/07 12:45:18.128] ? | 0x7fff9019cb75
  <PHD> 0:: [12/02/07 12:45:18.128] }
  7- if I use the same user account from a Snow-Leopard client, the mountPeerVolume finds the remote home_dir, mounts it and happilly trawls through the two directories to figure out what needs to be copied; I get something along the lines of:
  0:: [12/02/08 18:44:15.344] Starting manual sync of "HomeSync_Mirror".
  1:: [12/02/08 18:44:15.363] -[SPeer_FS_PHD mountPeerVolume]: We've been given remote home path "/Volumes/[USERNAME]".
  1:: [12/02/08 18:44:15.363] -[SPeer_FS_PHD mountPeerVolume]: Remote home path exists.
  1:: [12/02/08 18:44:15.363] -[SPeer_FS_PHD mountPeerVolume]: Final path to PHD remote home root = "/Volumes[USERNAME]"
  8- if I use a Lion client and a user account configured in the Users O.U. on Active Directory, it works similarly well
  9- in the failing use-case, if I run a "dscl xxx -read /Users/xxx" to verify that the DirectoryServices deamon returns some information, all looks good: I get all my A.D. user details, including email config and network home_directory, the MCX payload, etc
  10- the only difference that I can see when running dscl between the "working use-case" and the "failing use-case" is that the Attribute for the network home directory is called HomeDirectory (working) or OriginalHomeDirectory (failing) - but the actual value is present and correct in both cases
  11- I have enabled SMB as well as AFP file sharing to ensure that it's not a protocol problem rather than the share point itself that causes problem - no difference
  12- I have upgraded the MacOS Server to 10.7.3 (from 10.7.2) - no difference
  13- I have upgraded the Lion client from 10.7.2 to 10.7.3 - no difference
  14- I have tried to manually configure the Directory Search path on the Lion client to map HomeDirectory to OriginalHomeDirectory - either the mapping didn't work or it's not the real cause of the problem, as again: no difference.
  15- I have contacted AppleCare, raised a case with all the details above, been escalated from level 1 to 2 and 3 - and basically have been told that customers have reported very similar problems & that no more detail is available to me as it is a Directory Services related problem - if I want to take it further with Apple, I need Enterprise OS Support (and hence $1000s per year - and no real guarantee of result)
  [thanks to anyone who's read until now]...
  So my questions are (as I can't believe that I'm the only one using "proper O.U.'s" for managing users in Active Directory):
  - has anyone experienced this before?
  - does someone know of a workaround (other than "stick to SnowLeo" or "redesign your whole A.D."!)?
  - can someone help me figure out where the FileSyncAgent process tries to get its remote home directory from - as this might point to a solution?
  Many thanks

  I was able to fix the issue here. Steps Taken:  From the comand line I ran
  dscl /Search read /Users/jdoe HomeDirectory
  It returned # No such key: HomeDirectory
  This was the big clue.... it should have returned
  HomeDirectory: <home_dir><url>afp://files.hihllc.lan/Users/jdoe</url><path>/</path></home_dir>
  I unbound the Mac from AD and ran the following command in terminal.
  dscacheutil -flushcache
  I then went into OS X sharing preferences and renamed the computer slightly, so it would create a new computer record in AD. I rebound the machine to AD making sure in Directory Utility Advanced, under User Experience that Force local home directory on start up disk was unchecked and Network protocol to be used was AFP.
  I then ran
  dscl /Search read /Users/jdoe HomeDirectory
  and it returned
  HomeDirectory: <home_dir><url>afp://files.hihllc.lan/Users/jdoe</url><path>/</path></home_dir>
  I had the user reboot... which was necessary. When he logged in HomeSync fired up. He had quite a few conflicts, so I told him to select use files on this computer for all conflicts.
  I checked the FileSyncAgent.logs and it was good.
  Let me know if this fixes your issue.
  Thanks,
  Ray

• Active Directory + Resource action to delete home directory

  Hi all,
  I am trying to delete home directory from the disk physically after the user is deleted from AD. I followed the link http://docs.sun.com/app/docs/doc/820-6551/bzbuc?a=view and implemented the delete resource action as mentioned in the link.
  here are the steps i followed (For testing, I mentioned delete >> C:\test.txt to see if it deletes the text file)
  1. Enter delete after action in the Identity Manager User Attribute column of the resource’s schema map.
  2. In the Attribute Type column, select string.
  3. In the Resource User Attribute column, enter IGNORE_ATTR. Leave the Required, Audit, Read Only, and Write Only columns unchecked.
  4. Add this to the Deprovision Form user form after the </Include> tag:
  <Field name= ’resourceAccounts.currentResourceAccounts[AD].attributes.
  delete after action’>
  <Expansion>
  <s>AfterDelete</s>
  </Expansion>
  </Field>
  5. Create the following XML file and import into Identity Manager. (Change file paths according to your environment.)
  <?xml version=’1.0’ encoding=’UTF-8’?> <!DOCTYPE Waveset PUBLIC
  ’waveset.dtd’ ’waveset.dtd’>
  <Waveset>
  <ResourceAction name=’AfterDelete’>
  <ResTypeAction restype=’Windows Active Directory’ timeout=’6000’>
  <act>
  echo delete >> C:\test.txt
  exit
  </act>
  </ResTypeAction>
  </ResourceAction>
  </Waveset>
  6. Edit the XML for the Active Directory resource and add information to the “delete after action” schema mapping. Here is an example of a complete schema mapping for this resource with the new additions. (You will be adding the views-related information.)
  <AccountAttributeType id=’12’ name=’delete after action’ syntax=’string’
  mapName=’IGNORE_ATTR’ mapType=’string’>
  <Views>
  <String>Delete</String>
  </Views>
  </AccountAttributeType>
  To test, I deleted a user from AD and I was expecting the file c:\test.txt to be deleted as it invokes the Resource action after delete. Has anyone been successful in deleting the home directory from drive after the user is deleted. Any pointers or help
  Thanks,
  Ani

  Hi Gaurav,
  I have to implement Resource Action functionality for Solaris system. I followed the link http://download.oracle.com/docs/cd/E19225-01/820-6551/bzbuc/index.html and the first message of this thread. I am using 8.1 IDM.
  But unfortunately I can’t trigger any bash commands on the resource like echo deleting of user wiht next name - $WSUSER_accountId >> /tmp/resultFile.txt.
  There are any errors on log file.
  Can you share your work configuration and steps to reproduce?
  I have done next but Resource Action doesn’t triggered:
  1. My Action:
  <?xml version='1.0' encoding='UTF-8'?>
  <!DOCTYPE Waveset PUBLIC 'waveset.dtd' 'waveset.dtd'>
  <Waveset>
  <ResourceAction name='AST-ResAct-SOL-AfterDelete'>
  <ResTypeAction restype='Solaris' timeout='6000'>
  <act>
  #!/usr/bin/bash
  echo deleting of user wiht next name - $WSUSER_accountId >> /tmp/resultFile.txt
  exit 0
  </act>
  </ResTypeAction>
  </ResourceAction>
  </Waveset>
  2. Added next line to “Deprovision Form”
  <Field name='resourceAccounts.currentResourceAccounts[SOLARIS 10].attributes.delete after action'>
  <Expansion>
  <s>AST-ResAct-SOL-AfterDelete</s>
  </Expansion>
  </Field>
  3. Added a new attribute mapping on the resource:
  <AccountAttributeType id='12' name='delete after action' syntax='string' mapName='IGNORE_ATTR' mapType='string'>
  </AccountAttributeType>
  4. Assigned role (this role provisioned resource to user) to user, delete user from resource via Deprovision IDM page. But my Action commands didn’t trigger on resource.
  Thanks’ in advance!

• Home Directory not mounted in Active Directory environment

  I am trying to integrate a PowerMac G5 with Leopard 10.5.2 into an Active Directory. The Mac is bound to the AD without any problems. I can authenticate with my AD account and I also see the printers. However, I have problems using the network home directories.
  If I activate "Force local home directory on startup disk" everything works as expected: The user logs in and gets a local home directory under /Users and can mount its network home directory with the finder without the need to authenticate again, so the single-sign-on works.
  However, that's not what I want - I want the user to work solely in his networked home directory, not on the local disk. So I deactivate the button "Force local home directory on startup disk", but now the mount of the home directory fails. In the system.log I see the following:
  /usr/libexec/mount_url[123]: smb_mount: open session failed!: syserr = Broken pipe
  This is printed several times. If I try to access to automounted home directory under /Network/Servers/SERVER/USER in the terminal I also get "Broken pipe".
  The strange thing: I can access the home directory with smbclient, I can also mount it with mount_smbfs, but if I try it with /usr/libexec/mount_url it fails although I use the exact same server and user directory.
  Any ideas are greatly appreciated.

  We have a similar issue here. Only the first AD User after reboot can login and the second one gets the same error as you. (see also: http://discussions.apple.com/thread.jspa?messageID=6418268)
  It looks like there is a problem with the automounter. I set the AUTOMOUNT_TIMEOUT to 60 seconds in /etc/autofs.conf, then after logout of the first user and waiting for 1 minute, the second user can log in.

• "Home Directory Full" message "fix doesn't work for me

  Often (no, not always, it's not consistent), I get the dreaded "Home Directory full" message when I launch mail. Mail then quits when I click OK. Normally, if I launch it again right away, it works.
  I tried to use the standard fix (e.g., removing the "Envelope Index" file to the desktop and launching Mail). This did cause a dialog to pup up informing me that I needed to re-index my mail file. I did that, and the process stopped with the progress indicator about two thirds through. I quit Mail and replaced the Mail folder in Library with the backup I had made before getting started.
  Next, I tried the Hoover method (running the vacuum command from the Terminal. My machine grinded away for some time. I don't know how far it got (there is no progress indicator nor any other feedback of any kind), but since nothing happened for a good half hour (with no more disk activity for a long time), I quit that process, too. Get info revealed that the "Envelope Index" file had not been modified at all by this. Again, just to be on the safe side, I replaced the Mail file again with the backup copy.
  Because the re-indexing in my first attempt had stopped while processing my sent items folder, I suspected that this one was the culprit. I therefore attempted to rebuild it (via the menu command in Mail). Much to my surprise, the process actually finished without an error message. However, my sent items folder now contained some 5,200 emails as opposed to the 7,00 or so it should have.
  Then I saved my Mail preferences file to the desktop, made a backup copy of my Mail backup file, and launched Mail. This made the application believe that it was being launched for the first time. I used the Import command and imported only the contents of the Sent Items mailbox, specifying "Other" as the type. This imported 5,225 items; at that point, the progress indicator was showed a fully completed process, even though the "messages" folder contained 7,900 items. Checking things, I found that there was a discrepancy of 9 items (i.e., the last item that showed as having been imported was not the 5,225th item in the "messages" folder, but rather the 5,216th). I thus moved the first 5,216 items from the messages folder into a different folder and tried to import the rest. Much to my surprise, Mail imported the same 5,216 items all over again. This is when I noticed that it does not import from the "messages" folder but rather from the file called "mbox".
  And this is where things stand. I still get the "Home Directory Full" message about once out of two launches of Mail (but never once Mail is up and running). I desperately need to get this fixed as I fear I'm on the brink of a disaster with my mail file.
  One more clue: I cannot be 100% sure, but it seems to me that the problem began when I added a second dot mac email account to my Mail setup (we have a family pack; I always managed the main account and have more recently added one of the sub-accounts to my configuration). I also noticed that sometimes, this second dot Mac account shows up in my list of mailboxes on the left side of the screen, and sometimes it doesn't. Both these accounts are configured to be checked automatically. In addition to these IMAP accounts, I have a half dozen POP3 accounts and some 40 or 50 local mailboxes configured.
  Does anyone know of a utility I can use to rebuild my entire email file instead of just the index? Or does anyone have any suggestions as to how I can manually fix things? I did do the usual stuff already (using disk utility to check the disk, fixing permissions, and so on) without detecting any problems.
  Thanks in advance for any assistance you can offer.
  Daniel

  You’re welcome.
  When I removed the preference file (com.apple.mail.plist), I also removed
  the folder "Mail" so as to start from scratch completely.
  Well, that’s not what you said in your first post...
  I only use "Other" because I read in one of Apple's notes that one should
  try "Other" in the event that the OS X Mail import failed (which it did).
  This is wrong in the case of Mail 2.x. That has to be an old article. Could you please be more specific as to where exactly did you find it?
  there is a way to actually export the contents of a mailbox as individual
  items that can then be reimported.
  Selected messages can be exported in standard mbox format by doing File > Save As in Mail and choosing Raw Message Source from the Format popup menu. Standard mbox files can be imported into most mail clients. In particular, they can be imported back into Mail doing File > Import Mailboxes and choosing Other as the data format. Using this format, however, would cause some status flags to be lost (e.g. whether a message has been replied to).
  Locally stored mailboxes can be copied to the Desktop or anywhere else by just dragging them there from Mail itself (for server-stored IMAP mailboxes, copy the messages to locally stored “On My Mac” mailboxes in Mail first). These, however, are .mbox folders (not standard mbox files), where messages are stored in individual .emlx files that other mail clients don’t know or care about. They can be imported back into Mail doing File > Import Mailboxes and choosing Mail for Mac OS X as the data format.
  It also explains why the import only brought in 5,200 items instead of the 7,900.
  The question is: where are the others?
  In the Messages folder.
  as I mentioned above, I used disk utility to check the disk and fix permissions, so I did
  not just do the permissions stuff. In my experience, if checking the disk gives you an
  OK result, then there is no point in booting from another disk to perform a repair disk.
  Right. I missed that part of your first post. Sorry.
  if the mbox files are no longer needed, can they be removed?
  Yes. The only items within a mailbox (i.e. within an .mbox or an .imapmbox folder) used by Mail 2.x are Info.plist and the Messages folder. Any other files you may see there are almost certainly Mail 1.x files that Mail 2.x leaves there after the conversion. This is poorly explained in Mac OS X 10.4 Mail: Some mailbox files used by Mac OS X 10.3 are not deleted after importing. The article only talks about mailboxes in ~/Library/Mail/Mailboxes/, but the same can also be said about mailboxes in “POP-”, “IMAP-”, or “Mac-” account folders.
  As long as you keep a backup copy of the old files for a while (at least, until you’re sure everything was converted properly), they can safely be removed from the Mail folder. OnyX has a Cleaning > Misc > Temporary and obsolete items option for getting rid of all those files.
  Note that if you see strangely-named Messages-T0x... folders, these aren’t old files from previous versions of Mail, but rather an indication that there is something amiss. More specifically, these are temporary folders created by Mail 2.x during an import or a reindexing process (e.g. rebuilding a mailbox) that Mail should have deleted when done. Their presence is a clear indication that something didn’t work as expected.
  <hr>
  Here’s the procedure I usually suggest to set up Mail again from scratch:
  1. If you have a .Mac account and .Mac synchronization of Mail data is enabled either in Mail > Preferences > General or in System Preferences > .Mac, disable it before proceeding.
  2. Quit Mail if it’s running.
  3. In the Finder, go to ~/Library/. Move (not copy) the entire Mail folder out of there, to the Desktop.
  4. In the Finder, go to ~/Library/Preferences/. Locate com.apple.mail.plist and move it to the Desktop.
  5. Open Mail and set it up again from scratch. If given the option to import existing mailboxes or something like that, don’t. Just enter the account information and check that everything works fine.
  6. You’ll have to re-configure all your settings in Mail > Preferences. For spam-related security reasons, the first thing you should do is go to Preferences > Viewing and disable Display remote images in HTML messages if it’s enabled.
  7. If Mail works fine now and you had any messages stored in local mailboxes, do File > Import Mailboxes, choose Mail for Mac OS X as the data format, and follow the instructions to import your mail from the old Mail folder that’s now on the Desktop. Import the Mailboxes folder first, then each of the POP-username@mailserver account folders, if any.
  8. If .Mac synchronization of Mail data was enabled at the beginning, enable it again, go to System Preferences > .Mac > Advanced, click Reset Sync Data, and choose the appropriate options to reset the Mail data stored on the .Mac server with the data locally stored on the computer, i.e. sync data must flow from the computer to the .Mac server.
  As a result of doing the above, some messages may be duplicated. Andreas Amann’s Mail Scripts has a Remove Duplicates script that you may find useful.
  If all is well and you don’t miss anything, the files on the Desktop can be deleted, although you may want to keep them for a while, just in case.
  Note: For those not familiarized with the ~/ notation, it refers to the user’s home folder. You can easily locate any of the folders referred to in this post by copying the folder path here, doing Go > Go to Folder in the Finder, and pasting the folder path there.

• AD mobile account with local home directory

  I basically have the same question as this post:
  http://discussions.apple.com/message.jspa?messageID=696367
  I have set up Tiger workstations to authenticate to AD, I am forcing a local home dir. Everything works great. I want to do the same thing for Tiger laptop users with mobile accounts. The problem is that OS X creates a second home directory outside of /Users based on attributes from my AD schema. Just like with the non-mobile users, I want to ignore all home dir attributes from AD and just use the user's home dir that is in /Users. So the question is, how can you use a mobile account and force a local home dir with Apple's AD plugin??????

  Yes, I know how to click buttons in the gui, that does not fix the issue. The issue is that the Active Directory schema at my company includes extended attributes from the RFC 2307 schema. Apple's AD plugin does not know how to handle this extended schema especially when using mobile accounts.
  Apple's AD plugin reads these unix attributes from AD and thinks it knows what to do but ends up causing more problems then if there were no unix attributes at all.
  Since this post, I have opened a ticket with Apple. They were able to recreate the problem in their lab with their AD server. The only work around is to create a custom ActiveDirectory.plist file that forces the Mac to ignore what AD is telling it.
  This solution works unless the ActiveDirectory.plist file is deleted or corrupted. This problem will only become worse once Microsoft includes all of the RFC 2307 schema in their next service pack of Win 2003 server.

• OD users cannot log on without server home directory

  I am new to OD and am trying to configure a working setup for a few Macs on the network. The server is set up as an OD master, and while we are running Active Directory, the Mac server is not integrated into the AD network. DHCP and DNS are handled by the server that provides AD.
  I have set up a few test users and bound a Mac to the OD server for testing. I've found that if I don't specify a home directory for a particular user in workgroup manager (i.e. I just leave it at (none)), the user cannot log on to the bound Mac. The log in window begins to slide as if it is accepting the password, then stops and shakes and brings me back to the login window without any error message. If I specify a home directory on the server, it will then accept the username and password, show that I am logging in as said user, then display the message, "You are unable to log in to the user account [user] at this time. Logging into the account failed because an error occurred."
  I'm guessing the error message relates to a permissions issue with the way the home directories are set up. But honestly, I'd rather the users just have their home directories stored locally rather than on the server. How do I configure it so that the users are able to log on and their home directories are stored locally?
  Thanks in advance for any assistance that can be provided!

  After playing around with the system some more, I found that I had to explicitly specify the local home directory. I set it to /Users/ and everything seems to be working now.

• How do I move my home directory to another disk?

  I want to find out the "standard procedure" for moving my home directory to another disk.  My current system disk is getting quite full, so I have purchased additional storage.  The issues I am concerned about are the following:
  Preserving the file permissions
  I have used rsync and ditto commands to copy the file.  Does rsync preserve the permissions like the ditto command?
  Updating the System to use the new home directory
  I have used the Ctl-Click on the accounts control panel to update the location of the home directories.  Do applications use "~<username>" or /Users/<username> to find the home directory of the user (obviously this is limited to Apple Controlled software).
  Understanding the /Users and /home directories
  Since Apple is no longer using netinfo, I wanted to get a better understanding how these directories are set up.  Is the /home directory exclusively for network mounted home directories.
  Please let me know if you have any questions.

  I disagree with Linc Davis on whether to move the home folder, But I think you are going about it the wrong way. 
  Having a Boot drive with only System, Library, Applications, and the hidden unix directories including Paging/Swap on it is one of the best ways to speed up routine disk Access for all your other files. The system keeps "snacking" away loading and reloading bits and pieces of System and Applications as you work, and that System activity slows "regular" disk access way down by moving the drive heads away from the files you are processing.
  Giving System files their own drive speeds up everything.
  Here are two good recipes and discussions about how and why to do this, and how to make it happen without a single line of Terminal code:
  http://chris.pirillo.com/how-to-move-the-home-folder-in-os-x-and-why/
  http://jcsenterprises.com/Japamacs_Page/Blog/00E03B83-1ADA-406E-A940-396D39F598E A.html

• What are the Oracle Home and GRID home directory locations for Oracle 12c (12.1.0.5) release

  Hello All,
  I plan to install and configure Oracle 12c Cloud Control console on a single standalone server and the version is Oracle 12.1.0.5. All the databases which are installed across in the entire farm/landscape are these versions:
  Oracle 10.2.0.3 Enterprise Edition
  Oracle 10.2.0.4 Enterprise Edition
  Oracle 10.2.0.4 Active DataGuard Enterprise Edition
  Oracle 10.2.0.5 Enterprise Edition
  Oracle 11.2.0.1 Enterprise Edition
  Oracle 11.2.0.1 Active DataGuard Enterprise Edition
  Oracle 11.2.0.3 RAC Enterprise Edition
  All Oracle databases across these versions will use the same version of Oracle Grid since ASM is used for all the Oracle database across Production/Test/Development databases. The OS is RHEL 5.8, RHEL 6.3, OEL 6.3 versions.
  When installing the Oracle 12c Cloud Control what is the Oracle and Grid Home directory location need to set to. Please let me know if there are any other additional configurations needed?
  Looking forward to hearing from you soon.
  Regards,
  Abhijit

  First off, the only EM CC release out right now is 12.1.0.2, not sure where you got 12.1.0.5 (DB Plugin maybe?).   
  Second, you're confusing EM CC homes with DB/Grid homes. 
  EM CC will need it's own Oracle Home (i.e. /opt/oracle/product/em_12.1.0.2).   You will need to provide repository database connection information, but EM does not care what home the db or grid is installed in.
  I would recommend reviewing the documentation as well as the references on OTN -
  http://www.oracle.com/technetwork/oem/install-upgrade/index.html

• Eventually denied permission to write in home directory

  Hello,
  My wife is using a Mid-2007, 2.4GHz Intel Core 2 Duo iMac (iMac7,1) with 6GB RAM and more than 1TB of free available HD space.  She is running Mountain Lion (10.8.3) and has administrator privileges.
  After she has been using the computer for a while (hours or days; it varies), the system eventually denies her writing privileges to folders in her own Home directory. 
  I'll give two common examples:
  She'll download a file in Safari (or iTunes), and everything appears to proceed normally until the download "finishes" at which point she receives an error message that says she doesn't have permission to write to the save location.  The download remains in her browser's download list, but the file itself "disappears".  Changing target directories (e.g. from Downloads to Desktop) makes no difference.
  TextEdit will automatically reopen upon log in, and display one or more SavedState "Untitled" documents with text in them (she uses it as a scratch pad). When she attempts to add text to one of these documents, e.g. "Untitled 8," an error appears that says she does not have permission to make changes to the document and is prompted to make a Duplicate, so she does so.  She can successfully enter text in "Untitled 8 (copy)" but when it comes time to save the file, another error is returned that claims she does not have permission to write to [whatever location].
  Only two things seem to correct this situation, neither of which are permanent. That is, it eventually happens again.
  1. She logs out and logs back in. Things will behave normally for a while.  This is a pain, of course, because she typically discovers the problem when she is in the middle on working on one or more things, and the login process is fairly slow (as are most things on this iMac since upgrading to Mountain Lion -- though better since restricting the activity of Sophos Antivirus).
  2. Repair the permissions in her Home directory:  Get Info, click the lock & enter her password, change the Privilege of Me from Read & Write to Read Only, then back to Read & Write, and finally click the gear so as to Apply to enclosed items.  Once this is finished, access is restored... until it happens again.  Funny thing about this particular procedure is that her permissions appear to be set normally at the outset, ie., Read & Write.
  Another odd thing about the download problem is that the system does not seem to have a problem writing to whatever temporary directory it uses during the downloading process. The error only comes once the file is complete.
  There does not seem to be any precipitating event that leads to this change in her permissions/access privileges.
  Repairing permissions using Disk Utility does not resolve the problem.
  Running other kinds of repairs (repair disk when booted in Recovery Mode, running Drive Genius 3 from a separate partition or from the optical media, TechTool Pro, etc.) do not resolve the problem.
  When I log in to this same computer using my account (also with admin privileges), I have yet to encounter this eventual-permission-denial problem.
  Any thoughts or recommendations are welcome, obviously.  This is driving us batty!

  Hmmm, sounded like a RAM problem until you mentioned your account doesn't do it.
  One way to test is to Safe Boot from the HD, (holding Shift key down at bootup), run Disk Utility in Applications>Utilities, then highlight your drive, click on Repair Permissions, Test for problem in Safe Mode...
  PS. Safe boot may stay on the gray radian for a long time, let it go, it's trying to repair the Hard Drive
  Reboot, test again.
  If it only does it in Regular Boot, then it could be some hardware problem like Video card, (Quartz is turned off in Safe Mode), or Airport, or some USB or Firewire device, or 3rd party add-on, Check System Preferences>Accounts (Users & Groups in later OSX versions)>Login Items window to see if it or something relevant is listed.
  Check the System Preferences>Other Row, for 3rd party Pref Panes.
  Also look in these if they exist, some are invisible...
  /private/var/run/StartupItems
  /Library/StartupItems
  /System/Library/StartupItems
  /System/Library/LaunchDaemons
  /Library/LaunchDaemons

• Error creating home directory - Access is denied.

  Hi,
  I am getting one issue on the task while provisioning homedrive and homedirectory on AD resource.
  Error creating home directory '\\rusehf06\home\rc9782rf': ': Access is denied
  Please help. Thanks in advance.

  These error messages are typically pretty obvious with permission errors. It's getting the correct permissions that is the challenge. I would suggest you start by adding the user whom is in your IT Resource for Active Directory into the local administrators group for the server you are trying to create the folder on. Also, consult with your AD Admins to get it resolved the quickest most likely. Their skill set will be better than what we can provide.
  -Kevin

• How to recover plist files from a deleted user home directory .dmg file

  Our company is starting to have our mac users authenticate against active Directory, One of the requirement is that the local mac user account short name can not be the same as the active directory account so it is necessary to remove the local users account, we do this by removing the local and turning the home directory into a .dmg file, after the user logs in with their active directory account, we mount the .dmg file and move the files over to the new home directory, However the system does not transfer over the pervious system setting such as Dock settings Desktop background setting, and plist files how do we get these setting moved also.

  there is nothing else to transfer. the problem is probably related to the fact that you are using AD. I'm not familiar with it so can not comment further.

• Error Changing Safari Bookmarks on SMB Home Directory

  We are trying to transition our macintosh users to network based home directories on an SMB share, designated by their home directory entry in Active Directory. We have encountered an issue that consistently occurs when a user attempts to remove, change, or add something in their Safari bookmarks.
  The following error message is produced:
  "Your bookmarks cannot be changed now. Try again later.
  Your bookmarks have been changed by another program since you opened Safari, so Safari needed to update your bookmarks before making any additional changes. You can now make your changes."
  This is happening when no other applications are open and can occur even if the user has just signed in and the first thing they attempt to do is delete a bookmark. I'm afraid I do not know what to do to resolve this problem.
  17in iMac, 1.83 GHz Intel Core Duo processor, 1GB DDR2 SDRAM   Mac OS X (10.4.7)   Network account, authenticates to AD, using network home directory

  Hi Branden & William,
  The only help I have is this link, since i have never been privy to this.
  I find it very interesting & I have not heard of this before.
  Perhaps this pertains to your issues. Mac OS X and SMB HOW TO & can help.
  Here is the lot on the google search for "SMB share"
  Hth some, please keep us updated; )
  Eme'~[ )

• 10.5 clients won't login/mount home directory

  Hello all,
  I am having some issues with 10.5.8 clients logging in network users.  At our school, we have a "magic triangle" setup -- Mac and PC clients, an Active Directory for user authentication (a Win 2k3 server DC I believe), and an Open Directory server (running 10.7.5 OS X Server) for Workgroup Managment and software updates.  Along with this, there is a Linux NAS box that acts as the file server hosting the user's home directories.
  I have a few test student accounts that I have set up exactly the same way that normal student accounts are added to AD.  Users have complained that these 10.5.8 clients will not let any students log on, as I have verified with my test student accounts.  When logging in, an error comes up that says "Logging into the account failed because an error occurred".  In secure.log I get a "smb_mount: syserror = Broken pipe" line along with
  ERROR | -[HomeDirMounter mountNetworkHomeWithURL:attributes:dirPath:username:] | PremountHomeDirectoryWithAuthentication( url=smb://fileserver.domain.org/username, homedir=/Network/Servers/fileserver.domain.org/username, name=username ) returned 32
  When I turn off "Create Mobile Account at Login", the user can log in just fine, which obviously leads me to believe that there is an issue with mounting the samba share for the user's home directory during the HomeSync.
  I know the client can resolve the file server's hostname by nslookup, so I don't think DNS is the issue.  But I'm all out of ideas after looking everywhere online, and am hoping someone can assist me with this.  I'm just a computer technician and not a network sys admin by any means, but I know a good enough amount to try to troubleshoot this.  Even my network manager is stumped, and his answer is to upgrade the client to 10.6, resolving that the issue is with 10.5. I want to try to solve this issue rather than having to re-image all the 10.5 machines.
  Obviously school is out for the weekend, so I won't be back for a couple days to work on the issue if anyone does respond in the next couple days.
  Thanks in advance!
  -Brandon

  Hi Brandon, certainly no expert at this, but let me trow this out at you...
  Found a work-around. This command adds a delay, in this case 45 seconds, before displaying the Login Window.
  defaults write /Library/Preferences/com.apple.loginwindow StartupDelay -int 45
  If the Login Window UI detects that the network servers are available when it starts, it will skip the delay, also if network servers become available before the delay expires, the Login Window UI cancels the delay and displays.
  Kent

• 10.4.7, No AD home directory

  I can authenticate just fine to my Win2003 Active Directory after binding it. I have everything in the "User Experience" frame checked in the Directory Services configuration with "smb" selected in the UNC setting.
  I can't ever get it to mount my Windows home directory, for some reason. In the Finder if I click Network and browse to the server that has my home directory it lets me mount the share with my home folder in it without a login prompt (i.e. the Kerberos ticket is valid). If I look in NetInfo Manager under my user account it has the smb_home property set correctly as \\server.fqdn\HomeFolders\myloginname.
  I had it working on a slightly older MacBook Pro (which I no longer possess, gave it to another user), and haven't made any changes to policy on the domain since then.
  Any idea what is going wrong?
  iMac   Mac OS X (10.4.7)  

  SMB home directories are an after-thought (and yes, they want an individual share, such as smb://server.domain.org/username$).
  Apple really wants you using AFP.
  I can't use network homes, since we have MS Dfs, and no one wants to pay for ADmitMac or ExtremeZ•IP, so what I've done is write a script that launches via launchAgent that mounts the correct share, then maps the appropriate folders with symlinks (~/Documents is replaced by My Documents, ~/Music is replaced by My Music, etc).
  Its ugly but it works.