Server 10.5 - Windows users cannot logon to domain

Similar Messages

• Mac OS X server 10.5.7 users cannot logon

  Any help. I just installed Mac OS X Server and add added my users with logon details. I joined my MacBook Pro to the server using Directory Utilities and the Server is running well. I even have the users name displaying on the logon window. However, when I try to login the users, the window shakes indicating incorrect password. I have tried going over adding users, providing access rights etc. but with no success. I was successful in joining my daughter's Mac Mini to the server, but was not able to login using other users' details. Can anyone help.

  My bet's on an incorrect home folder location.
  First things first. Make sure that the Sharepoint for the home folders is set up correctly.
  You can double check this as follows:
  In server admin: Select the server name right below where it says "Available servers"
  Click the file sharing tab at the top.
  Click the SharePoints button and the Browse button
  Click on your desired home folder location in the file browser.
  Below the file browser, click on the share point tab.
  Make sure "Enable Automount" is checked.
  Click the edit button.
  Make sure the directory is /LDAPv3/127.0.0.1
  Make sure the protocol is AFP
  Make sure that Use for "User home folders" is selected.
  Click okay and save your changes.
  Now to workgroup manager.
  Select your user and click the "Home" button
  Make sure that there's a home folder location selected. (ie the line is highlighted)
  Click the edit button. (it looks like a pencil)
  It's get a bit tricky here...
  Mac OS X Server/Share Point URL:
  It should look like this: afp://server.example.com/Users (assuming you're using the users folder)
  Path to Home Folder:
  You should ONLY have the shortname of your user here.
  Full path:
  It has to look like this: /Network/Servers/server.example.com/Users/shortname
  Note that I've put server.example.com where you should have the domain name of your server, and shortname where you should have the actual shortname for your user.
  Clear as mud?
  Hope it helps.
  -Graham

• New windows users cannot logon to system

  We recently had a Network switch failure. As a result we had to reboot the server (G5 xserve 10.4.7).
  This machine is a PDC to approx 50 Windows users. All users are in and working but new users are not being allowed to login.
  Looking at the samba logs shows a lot of messages where there is a forcing election with other systems (windows).
  eg
  Server NORTH_24 at IP 192.168.7.24 is announcing itself as a local master browser for workgroup NCS and we think we are master. Forcing election.
  How can I stop this from happening and allow my new users to login??

  I have changed the setting in /etc/smb.conf
  os level = 8
  to
  os level = 255
  This is suppossed to make sure this system wins all elections.
  I have made sure any Windows systems were off and reset the server.
  However as soon as windows systems turn back on then I start getting the following in log.nmbd :
  [2007/04/25 10:34:22, 0] /SourceCache/samba/samba-92.13/samba/source/nmbd/nmbdincomingdgrams.c:process_local_masterannounce(311)
  processlocal_masterannounce: Server H8YD32J at IP 192.168.7.89 is announcing itself as a local master browser for workgroup TCP and we think we are master. Forcing election.
  [2007/04/25 10:34:22, 0] /SourceCache/samba/samba-92.13/samba/source/nmbd/nmbdbecome_lmb.c:unbecome_local_mastersuccess(149)
  Samba name server SYBSERVER has stopped being a local master browser for workgroup TCP on subnet 192.168.7.3
  [2007/04/25 10:34:41, 0] /SourceCache/samba/samba-92.13/samba/source/nmbd/nmbdbecome_lmb.c:become_local_masterstage2(396)
  Samba name server SYBSERVER is now a local master browser for workgroup TCP on subnet 192.168.7.3
  [2007/04/25 10:38:22, 0] /SourceCache/samba/samba-92.13/samba/source/nmbd/nmbdincomingdgrams.c:process_local_masterannounce(311)
  processlocal_masterannounce: Server H8YD32J at IP 192.168.7.89 is announcing itself as a local master browser for workgroup TCP and we think we are master. Forcing election.
  [2007/04/25 10:38:22, 0] /SourceCache/samba/samba-92.13/samba/source/nmbd/nmbdbecome_lmb.c:unbecome_local_mastersuccess(149)
  Samba name server SYBSERVER has stopped being a local master browser for workgroup TCP on subnet 192.168.7.3
  [2007/04/25 10:38:41, 0] /SourceCache/samba/samba-92.13/samba/source/nmbd/nmbdbecome_lmb.c:become_local_masterstage2(396)
  Samba name server SYBSERVER is now a local master browser for workgroup TCP on subnet 192.168.7.3
  If I turn this particular machine off, the system will start complaining about another one.
  This was not happening prior to a Network switch failure and a reboot of the server.
  On a good point any new users that are created can now logon to the system. I am not sure though, if that is to do with the change to the smb.conf file
  Xserve   Mac OS X (10.4.8)   Intel and PPC systems

• Lion-Windows users cannot see attachments

  I just upgraded to Lion, and now some Windows users cannot see/find attachments. I did all that was advised (clicking on the "Windows user friendly" list), but to no avail. I sent to several Windows users and no one can see attachments with the new Mail program. Also, one of the most important icons in the Mail toolbar ("Add Attachment") seems to be missing. This sometimes helped in previous Mail versions when sending to PCs, but I cannot locate it in Lion. Looks like I will have to use Microsoft Office Outlook for email. This is too bad, as I like the other features the new Apple Mail program has, but must use a trustworhty email program.

  Scott,
  The issue is one I am chasing, and is due to Lion's change to not send Plain Text (apparently).  Although changed in the Compose window, when reviewed, it will have been sent with HTML, anyway.
  While the actual problem is with MS and Outlook or Outlook Express, the work around once was to use the command to Make Plain Text before sending.
  Ernie

• Windows users cannot open my Pages documents

  Even though I check Windows Friendly Attachment, Windows users cannot open my Pages documents. Is there anyway to fix this problem?

  KOENIG Yvan wrote:
  I decided that I will not replicate what is printed in the available documents.
  If the only questions we're going to answer are the ones that aren't already answered in the manual, then these discussions will consist of little more than directing people to page numbers. Yes, it would be nice if people read the manual before posting here. But everyone's brain works a little differently, and I don't mind if nice people ask questions that can be solved by reading the manual or doing a search in this discussion group. Even figuring out how to find things in the manual isn't intuitive to a lot of people.
  In terms of helping people, it's actually a lot less work to provide a solution for them than to look it up in the manual, then come back and report the page number.
  We have a saying in America that goes like this: Different strokes for different folks. You can thank Sly and the Family Stone for that one.
  -Dennis

• Os x serve 4 and windows users

  Hello,
  just migrated one of my servers to Yosemite 10.10.1 and Server 4.0.
  the objective is a share files between mac and windows users within a group (meaning all of them can see, read and write all files within the sharepoint).
  the directory is shared with AFP and SMB, the group of users has read/write access on the directory (users and group are managed in OD).
  I added ACLs on the directory : the group of users is full control on the sharepoint. And I propageted all permissions to subfolders and files.
  Everything works fine for Mac users, but not for Windows users : when they open a file they got a message saying that the file is already opened by an another application. Same issue if the windows user write a new file on the server.
  If i look at the permission on a subfolder, there is the full control for the group. If I look at a file (whatever from a mac or windows), there is a special access.
  I think the problem is there, but how to solve.
  Does somebody knows any magic command line to force propagation of ACL and permissions to files ? or any tips to solve that issue ?
  Thanks for any help
  Regards, Thomas

  Hi
  OK I have tried pritty much all the suggestions so far...the MAC has no problem connecting to the PC (there's no surprise! - it worked straight away but the PC cannot connect to the mac - here's what happens:
  I have the correct IP address and when I enter in the IP address and my short username, the PC prompts me with a username and password box as you would expect...but when I enter in the details, it just throws up another username and password dialog box and has changed the username to PCCOMPUTER/the-username-I-just-entered - so I click ok again, and it just throws the dialog box up again. I feel like I am so close, yet so far to connecting the PC to the Mac - it seems to get stuck in a loop at the last moment. Any ideas what could solve the problem?
  It doesn't seem to be a firewall problem as I turned them all off - and still got the same problem.
  Any other ideas?

• Windows users cannot copy or move files

  I have several windows users that cannot copy a file on the server and paste it somewhere else on the server or to their hard drive. The same user can log into a mac and do what they want to do. Any help?
  Here is the error message. "Cannot copy file_name: the specified network name is no longer available".
  Rich

  Let me clarify. They can log in to the server FROM a mac and copy the files where they need them. I think this rules out a permissions issue. Usually the file transfer goes about half way before it errors out. Sometimes the files actually do copy and paste to the new location but the error message still comes up.

• Upgraded to 10.9 and OS X Server 3.0.1, users cannot connect to home shares

  Hello.  I recenlty upgraded from Lion Server to Mavericks and Server OS X and users are now unable to access their home shares.  When one attempts to afp to the server after connecting to my uni's VPN, the login box simply shakes and no connection is made.
  Running Mac Mini with 10.9 and OS X Server 3.0.1 with home shares located on a Pegasus RAID array that worked fine under Lion Server.  The upgrade seemed to go smoothly, as all accounts were intact and the settings were identical to the functional Lion Server settings.  I have combed these forums trying to find a response that actually works for me, but was unable to locate a match that resulted in a working solution.
  Here is a sample log when attempting to login:
  Dec 16 13:08:50 xx.xx.xx.private kdc[109]: Got a canonicalize request for a LKDC realm from local-ipc
  Dec 16 13:08:50 xx.xx.xx.private kdc[109]: LKDC referral to the real LKDC realm name
  Dec 16 13:08:52 xx.xx.xx.private kdc[109]: AS-REQ xx@LKDC:SHA1.313DA2EA0C5E8BCD1311C69A6930240237DDC372 from local-ipc for krbtgt/LKDC:SHA1.313DA2EA0C5E8BCD1311C69A6930240237DDC372@LKDC:SHA1.313DA2EA0C5 E8BCD1311C69A6930240237DDC372
  Dec 16 13:08:52 xx.xx.xx.private kdc[109]: UNKNOWN -- xx@LKDC:SHA1.313DA2EA0C5E8BCD1311C69A6930240237DDC372: no such entry found in hdb
  Dec 16 13:08:57 xx.xx.xx.private kdc[109]: AS-REQ [email protected] from 127.0.0.1:51721 for krbtgt/[email protected]
  Dec 16 13:08:57 --- last message repeated 1 time ---
  Dec 16 13:08:57 xx.xx.xx.private kdc[109]: Client ([email protected]) from 127.0.0.1:51721 has no common enctypes with KDC to use for the session key
  When I first upgraded, I was able to connect via PC but not Mac (10.9) clients, so I tried creating a new account to attempt to ferret out the problem.  When I created a new account in the Server.app connecting to an existing home share, I was still unable to connect to it remotely--Server.app threw the "Cannot authenticate connection..." error and closed.  I then attempted to create a new user and new home share directory in Workgroup Manager and received an error stating the home directory could not be created (I forgot the actual verbiage, but I will replicate and post if needed).  I tried simply adding the folder to the home shares folder, but I was still unable to connect via afp or smb.
  Any suggestions are greatly appreciated, as I need to resolve this issue ASAP.  Please let me know if any other information would be useful to diagnosing this issue.
  Thanks!

  I have the same problem although I upgraded from Lion Server to Mountain Lion Server. The error appears to go hand in hand with this error.
  userInit: CFPreferences: user home directory for user kCFPreferencesCurrentUser at /Network/Servers/fullyqualifieddomainname/Users/user is unavailable. User domains will be volatile.
  I've read a number of things to try. A lot of people point to DNS being a problem, but I'm confident this is correct in my environment.

• Windows users cannot open window friendly attachments

  Hello All,
  I have sent "windows friendly" attachments from Mail but Windows recipients cannot open the attachments. This is with .tiff , .pages, etc. I have also tried to change the file name to .doc, .tif, etc. The only attachments that seem to work are .pdf . The check box "send windows friendly" is always checked.
  Any way around this?

  I tried it and it works. From Pages I did this:
  1.
  2. Clicked Word Doc.
  3. Then saved to desktop so it is easy to find
  At first what I did was attach a "Windows Friendly" from Mail. Which you would think would make it "ok" for a pc user. Guess not... (see below)
  Thanks for everybody's help!
  Tony

• Windows users cannot open my Mail attachments

  I run into periodic Windows users who cannot open my attachments. Initially they claim they did not receive them, however on further inspection they have received them, just cannot open them.
  These files are in various formats: jpg. tif. pdf. I include all file extensions and I send as Windows Friendly Attachment.
  What can be done to remedy this problem?

  Have you tried Zipping them before attaching? Sometimes this helps.
  Finder, ctrl, menu, Archive. (This Zips a duplicate, on my machine).

• Migrating from server 2003R2 to 2008R2 User cannot change password box unchecks after being checked.

  After Migrating the domain controller from server 2003 R2 to 2008 R2 the check box for users cannot change password wont stay checked. This is happening to ALL users and no they are not a member of any Protected Groups. I have searched for a solution
  for months but cant not find.
  And now after migrating the exchange 2003 to 2010 I have to keep applying the inherited permissions every hour until a user finally makes an active sync.
  Now having more AD issues, cant remove users from Exchange 2010...And again have to go to the DC and applying the inherited permissions, then I can remove the user.
  I really need help with this...
  John

  Hi,
  Did you use the migration tools to do the user migration?
  Permissions on a user that is migrated from an Active Directory domain are reset to default values during migration.
  I think this is by design:
  http://technet.microsoft.com/en-us/library/cc974359(v=ws.10).aspx
  Regards.
  Vivian Wang

• Setting up ACS 3.3 on a member server / use external windows user db

  Hi,
  I´ve a question referring to setting up an ACS (Version 3.3(1)Build 17 ) on a member server to use windows external user db.
  In step 2 of the installation guide you have to create am computer account named CISCO.
  Is it possible to use an other name instead? If yes, how can I amnage this?
  Does ACS support a more detailed logfile than the "Failed Attempts" report?
  Any replies appreciated.
  Thanks in advance.
  Regards.

  Dr. Livingstone wrote:
  For Address, I enter 192.168.1.102/ipp/2 and I get 'invalid or incomplete address' for any text entered after 102.
  Like I said, it's been a while...but have you tried 192.168.1.102/ipp/port2 (not just /2) ?

• Updated to 10.6.3, Windows users cannot connect anymore

  Up to 10.6.2 my mac was able to do SMB file sharing with Windows users. After this update, they are unable to connect with the mac.

  Gerry, thanks so much for your post. In the meantime, though, here's what I've been doing (it seems to work, though it's taking time; I just hope it's the right thing to do):
  - I open a year's worth of photos, and choose one; control-click and choose 'Locate Referenced Files'.
  - this brings up a huge window; at the top is the photo I'd selected. In the bottom half of the window I can navigate to the right year's folder in my 'Pictures' folder, and then to the right folder in this year, and in fact navigate right down to the exact photo. Once I've selected this photo in the lower half of the window the 'Reconnect all' button (that's been greyed out until now) is selectable. I choose it, and the whole year's photographs are re-referenced.
  That seems to do it.
  I'd like to have been able to do it more simply and quickly (I like the sound of your plan), but in the half-hour that I was waiting, I thought I'd try something and this seems to work. Let me know what you think of my strategy if you have the time and inclination.
  Regards, Malcolm

• Windows user cannot see files copied into a folder

  File share is on a Windows 2008 (R1) server.  
  We use shared folders as mailboxes for users.  When the file scanning person (Heidi) scans the incoming paper mail, it is placed in each user's individual mail folder on a shared drive.  Each user has full control permissions on their mail folder.
   All of our users are running Windows 7 Pro x64, with the exception of two people who run Windows XP SP3.  Heidi is one of those users.  
  Angela has a mail folder with full control permissions.  When Heidi scans something from her desktop and places it in Angie's mail folder, Angela cannot see it from her computer.  Anyone else can see it fine.
  I set up a Windows 7 VM and logged in as Angela and I can see the file with no problems.  So the only time Angie can't see her files is when she's logged in to her computer in her own office.  Anyone know why?  

  Hi,
  You did not mentioned the system version of Angela so I assume it is a Windows 7 system.
  There is a known issue when Windows 7 users accessing a folder, newly created or deleted files are not updated immediately. Please test the following hotfix.
  SMB2 directory cache is not updated correctly if a file is deleted in Windows 7 or in Windows Server 2008 R2
  http://support.microsoft.com/kb/2646563/en-us
  Also the rollup update is always recommended to be installed:
  An enterprise hotfix rollup is available for Windows 7 SP1 and Windows Server 2008 R2 SP1
  http://support.microsoft.com/kb/2775511/en-us
  If you have any feedback on our support, please send to [email protected]

• Sbs2008 user cannot logon to win8.1pro clients

  SBS2008 server with several XP clients and newly created Win8.1Pro clients
  one user is able to logon to the XP clients without any problems, but is not able to logon to Win8.1Pro clients.
  at least the error is as follows: no access to \\computername\RedirectedFolders\username\Desktop
  errorcode 0x80070035 networkpath not found.
  which is correct because it should not look for \\computername\Red....  but for \\servername\Red...
  the properties for the redirectedfolders on the server are set correctly for the user  as owner.
  in the AD user profile is set exactly the same as other users, they have no problems logging on.
  The user has administrator rights. Is also able to logon to the server without any problems.
  any help is appreciated

  Gotta love 8.1 I had the same problem, I found this on the forums and it fixed my problem, hope it works for you.
  http://social.technet.microsoft.com/Forums/windowsserver/en-US/05b12275-c595-4c4a-877a-c6a9e8d5e086/windows-2012-r2windows-81-gpo-folder-redirection-woes?forum=winserverGP