Unable to set Open Directory master on brand new server
I have a brand new Mac Mini server running 10.6.2 which I am unable to set as an OD master, receiving the error "There was a configuration error when configuring your server as an Open Directory Master. See the Configuration Log for more information about the failure."
The log reads as follows...
2010-01-10 10:34:31 +1100 - slapconfig -createldapmasterandadmin
2010-01-10 10:34:31 +1100 - Creating password server slot
2010-01-10 10:34:31 +1100 - command: /usr/sbin/mkpassdb -a -u diradmin -p -q
2010-01-10 10:34:32 +1100 - command: /usr/sbin/mkpassdb -a -u root -p -q
2010-01-10 10:34:32 +1100 - command: /usr/sbin/mkpassdb -a -u paisleypark.local$ -p -q
2010-01-10 10:34:32 +1100 - command: /usr/sbin/mkpassdb -setcomputeraccount 0x4b4912886b8b45670000001b0000001b
2010-01-10 10:34:32 +1100 - Setting SASL realm to <OpenDirectory.pIxrV9>
2010-01-10 10:34:32 +1100 - command: /usr/sbin/mkpassdb -setrealm OpenDirectory.pIxrV9
2010-01-10 10:34:32 +1100 - Copied file from /etc/openldap/slapd.conf to /etc/openldap/slapd.conf.backup.
2010-01-10 10:34:34 +1100 - command: /usr/bin/net getlocalsid
2010-01-10 10:34:34 +1100 - Removed file at path /var/db/openldap/openldap-data/DB_CONFIG.
2010-01-10 10:34:34 +1100 - Starting LDAP server (slapd)
2010-01-10 10:34:54 +1100 - Error: The slapd process did not start.
2010-01-10 10:34:54 +1100 - Stopping LDAP server (slapd)
2010-01-10 10:34:54 +1100 - Removed file at path /var/run/slapconfig.lock.
... but I am unable to locate any reference to the specific error in these forums or via my friendly neighbourhood Google.
Any ideas greatly appreciated.
Well, like I mentioned, if DNS is not properly configured, all bets are off. And again, if you start services before making it an OD master, you could be asking for trouble. You may be able to fix the installation, but I'd seriously consider starting over.
You might be able to fix what you have well enough to make it work, but what happens in 6 months when it gets flaky about something. You may end up wondering of there was something wrong to begin with.
So yes, I'd start over.
Similar Messages
-
Unable to create Open Directory master
Hi,
I just setup an iMac with Mac OS X Server 10.6. During setup, I set the domain name to "hodge.local". Now I can't create an Open Directory master, and the error message gives me no clue as to how to fix the problem... I was wondering if I had done something wrong, or if there was a way to solve the problem.
Thanks in advance.the .local is usually a bad idea for a domain in OS X. OS X uses .local for bonjour/rendezvous stuff and that can cause conflicts.
The basics when setting up an OD master - install OS X Server and run setup (which is automatic) but son;t start any services except DNS. Configure DNS, then make your server an OD master. Once that works, start other services.
For more helpful details, try this.
http://www.wazmac.com/serversnetwork/fileservers/osxserversetupnotes.htm
and post back if you try all that and still have questions.
Jeff -
Open Directory Master creation failure.
I am running into consistent Failures while attempting to setup Open Directory Master on 10.8 server. It seems to fail in creating an Intermidiary CA and suggests there is already one. I have combed Keychain for, and removed any entires that refer to the suggested cert. Yet I am still unable to get this OD Master up and running. Here's the log files:
2012-09-10 18:49:05 +0000 Success. Master creation is possible.
2012-09-10 18:49:12 +0000 Success. Master creation is possible.
2012-09-10 18:49:13 +0000 slapconfig -createldapmasterandadmin
2012-09-10 18:49:13 +0000 command: /usr/bin/sntp -s time.apple.com.
2012-09-10 18:49:29 +0000 Success. Master creation is possible.
2012-09-10 18:49:29 +0000 Starting LDAP server (slapd)
2012-09-10 18:49:29 +0000 Waiting for slapd to start
2012-09-10 18:49:31 +0000 slapd started
2012-09-10 18:49:31 +0000 command: /usr/bin/ldapadd -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-10 18:49:46 +0000 command: /usr/sbin/slaptest -f /etc/openldap/slapd.conf -F /etc/openldap/slapd.d
2012-09-10 18:49:46 +0000 Stopping LDAP server (slapd)
2012-09-10 18:49:54 +0000 Starting LDAP server (slapd)
2012-09-10 18:49:54 +0000 Waiting for slapd to start
2012-09-10 18:49:54 +0000 slapd started
2012-09-10 18:49:54 +0000 Save of LDAP configuration failed with error 2100
2012-09-10 18:49:54 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-10 18:49:54 +0000 adding new entry "olcOverlay=unique,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=nestedgroup,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay={0}odusers,olcDatabase={-1}frontend,cn=config"
adding new entry "olcOverlay=syncprov,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=syncprov,olcDatabase={2}bdb,cn=config"
2012-09-10 18:49:54 +0000 command: /usr/bin/ldapadd -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-10 18:49:54 +0000 adding new entry "cn={9}customSchema,cn=schema,cn=config"
2012-09-10 18:49:54 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-10 18:49:55 +0000 command: /usr/bin/ldapsearch -x -LLL -H ldapi://%2Fvar%2Frun%2Fldapi -b cn=config -s base olcServerID
2012-09-10 18:49:55 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-10 18:49:55 +0000 Setting SASL realm to <DANDYBOX.NET>
2012-09-10 18:49:55 +0000 command: /usr/sbin/mkpassdb -setrealm DANDYBOX.NET
2012-09-10 18:49:55 +0000 command: /usr/sbin/mkpassdb -o -u diradmin -p -q
2012-09-10 18:49:56 +0000
2012-09-10 18:49:56 +0000 command: /usr/sbin/mkpassdb -setadmin 0x4fff1e36fb7811e1bd063c07545a924d 0
2012-09-10 18:49:57 +0000 Admin's entry UUID is: 77bfb2d2-4884-4303-a9b6-c1d39758ab9b
2012-09-10 18:49:57 +0000 Starting password server
2012-09-10 18:49:58 +0000 Stopping LDAP server (slapd)
2012-09-10 18:50:01 +0000 Starting LDAP server (slapd)
2012-09-10 18:50:01 +0000 Waiting for slapd to start
2012-09-10 18:50:01 +0000 slapd started
2012-09-10 18:50:01 +0000 Configuring Kerberos server, realm is DANDYBOX.NET
2012-09-10 18:50:01 +0000 command: /usr/sbin/kdcsetup -a diradmin -p **** -v 1 DANDYBOX.NET
2012-09-10 18:50:06 +0000 Opening ldapi connection to the LDAP user data
Opening ldapi connection to the LDAP auth data
Creating KDC for OD Master
Creating Kerberos directory
Creating KDC Config File
Creating Kerberos ACL file
Adding KDC config data to the KerberosKDC config record
Adding KDC config data to the KerberosClient config record
Creating KDC database
Using existing master key file
Creating Kerberos principal for 'diradmin'
Creating Kerberos auth authority for 'diradmin'
Creating Kerberos alt security identity for 'diradmin'
Successfully created KDC for OD Master
2012-09-10 18:50:06 +0000 command: /usr/sbin/sso_util configure -x -r DANDYBOX.NET -f /LDAPv3/ldapi://%2Fvar%2Frun%2Fldapi -a diradmin -p **** -v 1 all
2012-09-10 18:50:06 +0000 command: /usr/sbin/mkpassdb -kerberize
2012-09-10 18:50:08 +0000 Updating user records and principals
2012-09-10 18:50:25 +0000 Asking OpenDirectoryConfig to bind to server: 127.0.0.1
2012-09-10 18:50:27 +0000 Attempting to open /LDAPv3/127.0.0.1 node
2012-09-10 18:50:27 +0000 Verified /LDAPv3/127.0.0.1 node is available
2012-09-10 18:50:29 +0000 command: /usr/sbin/sso_util info -r /LDAPv3/127.0.0.1 -p
2012-09-10 18:50:30 +0000 Creating root CA with DandyBox Open Directory Certification Authority
2012-09-10 18:50:32 +0000 Creating intermediate CA with IntermediateCA_DANDYBOX.NET_1
2012-09-10 18:50:32 +0000 ***Error creating intermediate CA. Error - The specified item already exists in the keychain.
2012-09-10 18:50:32 +0000 Intermediate CA creation failed with error - -25299
2012-09-10 18:50:32 +0000 Destroying OD master as CA creation failed with error 75
2012-09-10 18:50:32 +0000 Logging slapd container data to /var/run/slapconfig_error_1347303032
2012-09-10 18:50:32 +0000 Stopping LDAP server (slapd)
2012-09-10 18:50:34 +0000 command: /usr/sbin/slapcat -l /var/run/slapconfig_error_1347303032/user.ldif
2012-09-10 18:50:34 +0000 command: /usr/sbin/slapcat -b cn=authdata -l /var/run/slapconfig_error_1347303032/authdata.ldif
2012-09-10 18:50:34 +0000 Error retrieving kerberos realm
2012-09-10 18:50:34 +0000 CopyReplicaArray: ldap_search_ext_s failed
2012-09-10 18:50:34 +0000 Error retrieving replica array
2012-09-10 18:50:34 +0000 Deleting Cert Authority related data
2012-09-10 18:50:34 +0000 Removed directory at path /var/root/Library/Application Support/Certificate Authority/DandyBox Open Directory Certification Authority.
2012-09-10 18:50:35 +0000 No intCAIdentity, not removing int CA from keychain
2012-09-10 18:50:35 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertd.plist
2012-09-10 18:50:35 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertd-helper.plist
2012-09-10 18:50:35 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertadmin.plist
2012-09-10 18:50:35 +0000 void _destroyLDAPServer(const char *): Failed to find computer record named dandybox.net$: 2100 Connection failed to the directory server.
2012-09-10 18:50:35 +0000 Updating ldapreplicas on primary master
2012-09-10 18:50:35 +0000 CopyPrimaryMaster: CopyLdapReplicas failed
2012-09-10 18:50:35 +0000 Unable to locate primary master
2012-09-10 18:50:35 +0000 Primary master node is nil!
2012-09-10 18:50:35 +0000 Unable to locate ldapreplicas record: 0 (null)
2012-09-10 18:50:35 +0000 Error setting read ldap replicas array: 0 (null)
2012-09-10 18:50:35 +0000 Error setting write ldap replicas array: 0 (null)
2012-09-10 18:50:35 +0000 ODRecord *_getODRecord(ODNode *, NSString *, NSString *, NSArray *): ODNodeRef parameter error
2012-09-10 18:50:35 +0000 int _removeReplicaFromConfigRecord(ODNode *, NSString *): ODRecord not found
2012-09-10 18:50:35 +0000 Error synchronizing ldapreplicas: 0 (null)
2012-09-10 18:50:35 +0000 Removing self from the database
2012-09-10 18:50:35 +0000 Warning: An error occurred while re-enabling GSSAPI.
2012-09-10 18:50:35 +0000 Stopping LDAP server (slapd)
2012-09-10 18:50:35 +0000 Stopping password server
2012-09-10 18:50:36 +0000 cleanKeytab: unable to retrieve default realm
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/__db.001.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/__db.002.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/__db.003.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/__db.004.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/__db.005.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/__db.006.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/altSecurityIdentities.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/apple-config-realname.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/apple-generateduid.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/apple-group-memberguid.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/apple-group-nestedgroup.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/apple-group-realname.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/cn.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/DB_CONFIG.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/dn2id.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/entryCSN.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/entryUUID.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/gidNumber.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/givenName.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/id2entry.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/ipHostNumber.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/log.0000000001.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/macAddress.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/memberUid.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/objectClass.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/ou.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/sn.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/uid.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/openldap-data/uidNumber.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/__db.001.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/__db.002.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/__db.003.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/__db.004.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/__db.005.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/__db.006.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/alock.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/authGUID.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/DB_CONFIG.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/dn2id.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/draft-krbPrincipalAliases.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/draft-krbPrincipalName.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/entryCSN.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/entryUUID.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/id2entry.bdb.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/log.0000000001.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/openldap/authdata/objectClass.bdb.
2012-09-10 18:50:36 +0000 Removed directory at path /var/db/openldap/authdata.
2012-09-10 18:50:36 +0000 Removed file at path /etc/openldap/slapd_macosxserver.conf.
2012-09-10 18:50:36 +0000 Removed file at path /etc/openldap/slapd.conf.
2012-09-10 18:50:36 +0000 Removed file at path /var/db/dslocal/nodes/Default/groups/com.apple.access_dsproxy.plist.
2012-09-10 18:50:36 +0000 Removed directory at path /etc/openldap/slapd.d/cn=config.
2012-09-10 18:50:36 +0000 Removed file at path /etc/openldap/slapd.d/cn=config.ldif.
2012-09-10 18:50:36 +0000 Removed directory at path /etc/openldap/slapd.d.
2012-09-10 18:50:36 +0000 Removed directory at path /etc/openldap/slapd.d.backup/cn=config.
2012-09-10 18:50:36 +0000 Removed file at path /etc/openldap/slapd.d.backup/cn=config.ldif.
2012-09-10 18:50:36 +0000 Removed directory at path /etc/openldap/slapd.d.backup.
2012-09-10 18:50:36 +0000 Stopping password server
2012-09-10 18:50:36 +0000 Removed file at path /Library/Preferences/com.apple.openldap.plist.
2012-09-10 18:50:36 +0000 Removed file at path /var/run/slapconfig.lock.
2012-09-10 18:53:43 +0000 Success. Master creation is possible.
2012-09-10 18:53:49 +0000 Success. Master creation is possible.
2012-09-10 18:53:51 +0000 slapconfig -createldapmasterandadmin
2012-09-10 18:53:51 +0000 command: /usr/bin/sntp -s time.apple.com.
2012-09-10 18:53:51 +0000 Success. Master creation is possible.
2012-09-10 18:53:51 +0000 Starting LDAP server (slapd)
2012-09-10 18:53:51 +0000 Waiting for slapd to start
2012-09-10 18:53:53 +0000 slapd started
2012-09-10 18:53:53 +0000 command: /usr/bin/ldapadd -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-10 18:54:06 +0000 command: /usr/sbin/slaptest -f /etc/openldap/slapd.conf -F /etc/openldap/slapd.d
2012-09-10 18:54:07 +0000 Stopping LDAP server (slapd)
2012-09-10 18:54:16 +0000 Starting LDAP server (slapd)
2012-09-10 18:54:16 +0000 Waiting for slapd to start
2012-09-10 18:54:16 +0000 slapd started
2012-09-10 18:54:16 +0000 Save of LDAP configuration failed with error 2100
2012-09-10 18:54:16 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-10 18:54:16 +0000 adding new entry "olcOverlay=unique,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=nestedgroup,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay={0}odusers,olcDatabase={-1}frontend,cn=config"
adding new entry "olcOverlay=syncprov,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=syncprov,olcDatabase={2}bdb,cn=config"
2012-09-10 18:54:16 +0000 command: /usr/bin/ldapadd -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-10 18:54:16 +0000 adding new entry "cn={9}customSchema,cn=schema,cn=config"
2012-09-10 18:54:16 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-10 18:54:16 +0000 command: /usr/bin/ldapsearch -x -LLL -H ldapi://%2Fvar%2Frun%2Fldapi -b cn=config -s base olcServerID
2012-09-10 18:54:16 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-10 18:54:16 +0000 Setting SASL realm to <DANDYBOX.NET>
2012-09-10 18:54:16 +0000 command: /usr/sbin/mkpassdb -setrealm DANDYBOX.NET
2012-09-10 18:54:17 +0000 command: /usr/sbin/mkpassdb -o -u diradmin -p -q
2012-09-10 18:54:18 +0000
2012-09-10 18:54:18 +0000 command: /usr/sbin/mkpassdb -setadmin 0xebf131c6fb7811e188913c07545a924d 0
2012-09-10 18:54:18 +0000 Admin's entry UUID is: dd9b2d61-725e-4e55-9692-844e7d923f90
2012-09-10 18:54:18 +0000 Starting password server
2012-09-10 18:54:19 +0000 Stopping LDAP server (slapd)
2012-09-10 18:54:22 +0000 Starting LDAP server (slapd)
2012-09-10 18:54:22 +0000 Waiting for slapd to start
2012-09-10 18:54:22 +0000 slapd started
2012-09-10 18:54:22 +0000 Configuring Kerberos server, realm is DANDYBOX.NET
2012-09-10 18:54:22 +0000 command: /usr/sbin/kdcsetup -a diradmin -p **** -v 1 DANDYBOX.NET
2012-09-10 18:54:27 +0000 Opening ldapi connection to the LDAP user data
Opening ldapi connection to the LDAP auth data
Creating KDC for OD Master
Creating Kerberos directory
Creating KDC Config File
Creating Kerberos ACL file
Adding KDC config data to the KerberosKDC config record
Adding KDC config data to the KerberosClient config record
Creating KDC database
Using existing master key file
Creating Kerberos principal for 'diradmin'
Creating Kerberos auth authority for 'diradmin'
Creating Kerberos alt security identity for 'diradmin'
Successfully created KDC for OD Master
2012-09-10 18:54:27 +0000 command: /usr/sbin/sso_util configure -x -r DANDYBOX.NET -f /LDAPv3/ldapi://%2Fvar%2Frun%2Fldapi -a diradmin -p **** -v 1 all
2012-09-10 18:54:27 +0000 command: /usr/sbin/mkpassdb -kerberize
2012-09-10 18:54:29 +0000 Updating user records and principals
2012-09-10 18:54:52 +0000 Asking OpenDirectoryConfig to bind to server: 127.0.0.1
2012-09-10 18:54:55 +0000 Attempting to open /LDAPv3/127.0.0.1 node
2012-09-10 18:54:55 +0000 Verified /LDAPv3/127.0.0.1 node is available
2012-09-10 18:54:57 +0000 command: /usr/sbin/sso_util info -r /LDAPv3/127.0.0.1 -p
2012-09-10 18:54:58 +0000 Creating root CA with DandyBox Open Directory Certification Authority
2012-09-10 18:55:00 +0000 Creating intermediate CA with IntermediateCA_DANDYBOX.NET_1
2012-09-10 18:55:00 +0000 ***Error creating intermediate CA. Error - The specified item already exists in the keychain.
2012-09-10 18:55:00 +0000 Intermediate CA creation failed with error - -25299
2012-09-10 18:55:00 +0000 Destroying OD master as CA creation failed with error 75
2012-09-10 18:55:00 +0000 Logging slapd container data to /var/run/slapconfig_error_1347303300
2012-09-10 18:55:00 +0000 Stopping LDAP server (slapd)
2012-09-10 18:55:03 +0000 command: /usr/sbin/slapcat -l /var/run/slapconfig_error_1347303300/user.ldif
2012-09-10 18:55:03 +0000 command: /usr/sbin/slapcat -b cn=authdata -l /var/run/slapconfig_error_1347303300/authdata.ldif
2012-09-10 18:55:03 +0000 Error retrieving kerberos realm
2012-09-10 18:55:03 +0000 CopyReplicaArray: ldap_search_ext_s failed
2012-09-10 18:55:03 +0000 Error retrieving replica array
2012-09-10 18:55:03 +0000 Deleting Cert Authority related data
2012-09-10 18:55:03 +0000 Removed directory at path /var/root/Library/Application Support/Certificate Authority/DandyBox Open Directory Certification Authority.
2012-09-10 18:55:03 +0000 No intCAIdentity, not removing int CA from keychain
2012-09-10 18:55:03 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertd.plist
2012-09-10 18:55:03 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertd-helper.plist
2012-09-10 18:55:03 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertadmin.plist
2012-09-10 18:55:03 +0000 void _destroyLDAPServer(const char *): Failed to find computer record named dandybox.net$: 2100 Connection failed to the directory server.
2012-09-10 18:55:03 +0000 Updating ldapreplicas on primary master
2012-09-10 18:55:03 +0000 CopyPrimaryMaster: CopyLdapReplicas failed
2012-09-10 18:55:03 +0000 Unable to locate primary master
2012-09-10 18:55:03 +0000 Primary master node is nil!
2012-09-10 18:55:03 +0000 Unable to locate ldapreplicas record: 0 (null)
2012-09-10 18:55:03 +0000 Error setting read ldap replicas array: 0 (null)
2012-09-10 18:55:03 +0000 Error setting write ldap replicas array: 0 (null)
2012-09-10 18:55:03 +0000 ODRecord *_getODRecord(ODNode *, NSString *, NSString *, NSArray *): ODNodeRef parameter error
2012-09-10 18:55:03 +0000 int _removeReplicaFromConfigRecord(ODNode *, NSString *): ODRecord not found
2012-09-10 18:55:03 +0000 Error synchronizing ldapreplicas: 0 (null)
2012-09-10 18:55:03 +0000 Removing self from the database
2012-09-10 18:55:03 +0000 Warning: An error occurred while re-enabling GSSAPI.
2012-09-10 18:55:03 +0000 Stopping LDAP server (slapd)
2012-09-10 18:55:03 +0000 Stopping password server
2012-09-10 18:55:04 +0000 cleanKeytab: unable to retrieve default realm
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/__db.001.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/__db.002.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/__db.003.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/__db.004.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/__db.005.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/__db.006.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/altSecurityIdentities.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/apple-config-realname.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/apple-generateduid.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/apple-group-memberguid.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/apple-group-realname.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/cn.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/DB_CONFIG.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/dn2id.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/entryCSN.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/entryUUID.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/gidNumber.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/givenName.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/id2entry.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/ipHostNumber.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/log.0000000001.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/macAddress.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/memberUid.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/objectClass.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/ou.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/sn.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/uid.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/openldap-data/uidNumber.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/__db.001.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/__db.002.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/__db.003.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/__db.004.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/__db.005.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/__db.006.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/alock.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/authGUID.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/DB_CONFIG.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/dn2id.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/draft-krbPrincipalAliases.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/draft-krbPrincipalName.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/entryCSN.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/entryUUID.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/id2entry.bdb.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/log.0000000001.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/openldap/authdata/objectClass.bdb.
2012-09-10 18:55:04 +0000 Removed directory at path /var/db/openldap/authdata.
2012-09-10 18:55:04 +0000 Removed file at path /etc/openldap/slapd_macosxserver.conf.
2012-09-10 18:55:04 +0000 Removed file at path /etc/openldap/slapd.conf.
2012-09-10 18:55:04 +0000 Removed file at path /var/db/dslocal/nodes/Default/groups/com.apple.access_dsproxy.plist.
2012-09-10 18:55:04 +0000 Removed directory at path /etc/openldap/slapd.d/cn=config.
2012-09-10 18:55:04 +0000 Removed file at path /etc/openldap/slapd.d/cn=config.ldif.
2012-09-10 18:55:04 +0000 Removed directory at path /etc/openldap/slapd.d.
2012-09-10 18:55:04 +0000 Removed directory at path /etc/openldap/slapd.d.backup/cn=config.
2012-09-10 18:55:04 +0000 Removed file at path /etc/openldap/slapd.d.backup/cn=config.ldif.
2012-09-10 18:55:04 +0000 Removed directory at path /etc/openldap/slapd.d.backup.
2012-09-10 18:55:05 +0000 Stopping password server
2012-09-10 18:55:05 +0000 Removed file at path /Library/Preferences/com.apple.openldap.plist.
2012-09-10 18:55:05 +0000 Removed file at path /var/run/slapconfig.lock.
Any help would be much apreciated!new problem. here's the output of the config log:
2012-09-11 00:21:04 +0000 slapconfig -backupdb
2012-09-11 00:21:04 +0000 command: /usr/sbin/sso_util info -r /LDAPv3/127.0.0.1 -p
2012-09-11 00:21:04 +0000 1 Backing up LDAP database
2012-09-11 00:21:04 +0000 popen: /usr/sbin/slapcat -l /tmp/slapconfig_backup_stage17861ihVwZK/backup.ldif, "r"
2012-09-11 00:21:04 +0000 popen: /usr/sbin/slapcat -b cn=authdata -l /tmp/slapconfig_backup_stage17861ihVwZK/authdata.ldif, "r"
2012-09-11 00:21:04 +0000 popen: /bin/cp /var/db/openldap/openldap-data/DB_CONFIG /tmp/slapconfig_backup_stage17861ihVwZK/DB_CONFIG, "r"
2012-09-11 00:21:04 +0000 popen: /bin/cp /var/db/openldap/authdata//DB_CONFIG /tmp/slapconfig_backup_stage17861ihVwZK/authdata_DB_CONFIG, "r"
2012-09-11 00:21:04 +0000 popen: /bin/cp -r /etc/openldap /tmp/slapconfig_backup_stage17861ihVwZK/, "r"
2012-09-11 00:21:04 +0000 popen: /usr/sbin/mkpassdb -list > /tmp/slapconfig_backup_stage17861ihVwZK/sasl-plugin-list, "r"
2012-09-11 00:21:05 +0000 popen: /bin/hostname > /tmp/slapconfig_backup_stage17861ihVwZK/hostname, "r"
2012-09-11 00:21:05 +0000 popen: /usr/sbin/sso_util info -pr /LDAPv3/127.0.0.1 > /tmp/slapconfig_backup_stage17861ihVwZK/local_odkrb5realm, "r"
2012-09-11 00:21:05 +0000 2 Backing up Kerberos database
2012-09-11 00:21:05 +0000 popen: /usr/bin/tar czpf /tmp/slapconfig_backup_stage17861ihVwZK/krb5backup.tar.gz /var/db/krb5kdc/kdc.conf /var/db/krb5kdc/acl_file.* /var/db/krb5kdc/m_key.* /etc/krb5.keytab , "r"
2012-09-11 00:21:05 +0000 popen: /bin/cp /var/db/dslocal/nodes/Default/config/KerberosKDC.plist /tmp/slapconfig_backup_stage17861ihVwZK/KerberosKDC.plist, "r"
2012-09-11 00:21:05 +0000 3 Backing up configuration files
2012-09-11 00:21:05 +0000 popen: /bin/cp /Library/Preferences/com.apple.openldap.plist /tmp/slapconfig_backup_stage17861ihVwZK/, "r"
2012-09-11 00:21:05 +0000 popen: /usr/bin/sw_vers > /tmp/slapconfig_backup_stage17861ihVwZK/version.txt, "r"
2012-09-11 00:21:05 +0000 popen: /bin/cp -r /var/db/dslocal /tmp/slapconfig_backup_stage17861ihVwZK/, "r"
2012-09-11 00:21:05 +0000 Backed Up Keychain
2012-09-11 00:21:05 +0000 4 Backing up CA certificates
2012-09-11 00:21:05 +0000 Failed to backup CA data as Root/ Intermediate CA were not found
2012-09-11 00:21:05 +0000 5 Creating archive
2012-09-11 00:21:05 +0000 command: /usr/bin/hdiutil create -ov -plist -puppetstrings -layout UNIVERSAL CD -fs HFS+ -volname ldap_bk -srcfolder /tmp/slapconfig_backup_stage17861ihVwZK -format SPARSE /var/backups/ServerBackup_OpenDirectoryMaster
2012-09-11 00:21:14 +0000 Removed directory at path /tmp/slapconfig_backup_stage17861ihVwZK.
2012-09-11 00:21:14 +0000 Removed file at path /var/run/slapconfig.lock.
2012-09-11 00:26:03 +0000 slapconfig -updateaddresses
2012-09-11 00:26:04 +0000 _updateaddresses: successfully completed
2012-09-11 00:26:54 +0000 slapconfig -updateaddresses
2012-09-11 00:26:55 +0000 _updateaddresses: successfully completed
2012-09-11 00:27:34 +0000 slapconfig -updateaddresses
2012-09-11 00:27:35 +0000 _updateaddresses: successfully completed
2012-09-11 00:29:33 +0000 slapconfig -updateaddresses
2012-09-11 00:29:34 +0000 _updateaddresses: successfully completed
2012-09-11 01:40:20 +0000 Migrating OD master
2012-09-11 01:40:20 +0000 Removed file at path /Volumes/Server HD/var/db/openldap/openldap-data/DB_CONFIG.example.
2012-09-11 01:40:20 +0000 /private/var/db/openldap not preserved from previous system. Nothing to upgrade.
2012-09-11 01:40:20 +0000 Removed file at path /Volumes/Server HD/Library/Preferences/com.apple.openldap.plist.
2012-09-11 16:25:30 +0000 Success. Master creation is possible.
2012-09-11 16:25:36 +0000 Success. Master creation is possible.
2012-09-11 16:25:38 +0000 slapconfig -createldapmasterandadmin
2012-09-11 16:25:38 +0000 command: /usr/bin/sntp -s time.apple.com.
2012-09-11 16:25:38 +0000 Success. Master creation is possible.
2012-09-11 16:25:38 +0000 Starting LDAP server (slapd)
2012-09-11 16:25:38 +0000 Waiting for slapd to start
2012-09-11 16:25:41 +0000 slapd started
2012-09-11 16:25:41 +0000 command: /usr/bin/ldapadd -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-11 16:25:58 +0000 command: /usr/sbin/slaptest -f /etc/openldap/slapd.conf -F /etc/openldap/slapd.d
2012-09-11 16:25:58 +0000 Stopping LDAP server (slapd)
2012-09-11 16:26:06 +0000 Starting LDAP server (slapd)
2012-09-11 16:26:06 +0000 Waiting for slapd to start
2012-09-11 16:26:06 +0000 slapd started
2012-09-11 16:26:06 +0000 Save of LDAP configuration failed with error 2100
2012-09-11 16:26:06 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-11 16:26:06 +0000 adding new entry "olcOverlay=unique,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=dynid,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=nestedgroup,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay={0}odusers,olcDatabase={-1}frontend,cn=config"
adding new entry "olcOverlay=syncprov,olcDatabase={1}bdb,cn=config"
adding new entry "olcOverlay=syncprov,olcDatabase={2}bdb,cn=config"
2012-09-11 16:26:06 +0000 command: /usr/bin/ldapadd -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-11 16:26:06 +0000 adding new entry "cn={9}customSchema,cn=schema,cn=config"
2012-09-11 16:26:06 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-11 16:26:06 +0000 command: /usr/bin/ldapsearch -x -LLL -H ldapi://%2Fvar%2Frun%2Fldapi -b cn=config -s base olcServerID
2012-09-11 16:26:07 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2012-09-11 16:26:07 +0000 Setting SASL realm to <SERVIN.DANDYBOX.NET>
2012-09-11 16:26:07 +0000 command: /usr/sbin/mkpassdb -setrealm SERVIN.DANDYBOX.NET
2012-09-11 16:26:07 +0000 command: /usr/sbin/mkpassdb -o -u diradmin -p -q
2012-09-11 16:26:08 +0000
2012-09-11 16:26:09 +0000 command: /usr/sbin/mkpassdb -setadmin 0x63c3d88efc2d11e1b45a3c07545a924d 0
2012-09-11 16:26:09 +0000 Admin's entry UUID is: d407cf7d-b3df-43bf-bc65-f6a3321fb30f
2012-09-11 16:26:09 +0000 Starting password server
2012-09-11 16:26:10 +0000 Stopping LDAP server (slapd)
2012-09-11 16:26:13 +0000 Starting LDAP server (slapd)
2012-09-11 16:26:13 +0000 Waiting for slapd to start
2012-09-11 16:26:13 +0000 slapd started
2012-09-11 16:26:13 +0000 dsproxy group already exists, reusing
2012-09-11 16:26:13 +0000 Configuring Kerberos server, realm is SERVIN.DANDYBOX.NET
2012-09-11 16:26:13 +0000 command: /usr/sbin/kdcsetup -a diradmin -p **** -v 1 SERVIN.DANDYBOX.NET
2012-09-11 16:26:19 +0000 Opening ldapi connection to the LDAP user data
Opening ldapi connection to the LDAP auth data
Creating KDC for OD Master
Creating Kerberos directory
Creating KDC Config File
Creating Kerberos ACL file
Adding KDC config data to the KerberosKDC config record
Adding KDC config data to the KerberosClient config record
Creating KDC database
Creating new random master key
Creating Kerberos principal for 'diradmin'
Creating Kerberos auth authority for 'diradmin'
Creating Kerberos alt security identity for 'diradmin'
Successfully created KDC for OD Master
2012-09-11 16:26:19 +0000 command: /usr/sbin/sso_util configure -x -r SERVIN.DANDYBOX.NET -f /LDAPv3/ldapi://%2Fvar%2Frun%2Fldapi -a diradmin -p **** -v 1 all
2012-09-11 16:26:20 +0000 command: /usr/sbin/mkpassdb -kerberize
2012-09-11 16:26:22 +0000 Updating user records and principals
2012-09-11 16:26:42 +0000 Asking OpenDirectoryConfig to bind to server: 127.0.0.1
2012-09-11 16:26:42 +0000 Could not bind - The operation couldn\u2019t be completed. (com.apple.OpenDirectory error 4102.)
2012-09-11 16:26:42 +0000 Logging slapd container data to /var/run/slapconfig_error_1347380802
2012-09-11 16:26:42 +0000 Stopping LDAP server (slapd)
2012-09-11 16:26:46 +0000 command: /usr/sbin/slapcat -l /var/run/slapconfig_error_1347380802/user.ldif
2012-09-11 16:26:46 +0000 command: /usr/sbin/slapcat -b cn=authdata -l /var/run/slapconfig_error_1347380802/authdata.ldif
2012-09-11 16:26:46 +0000 Error retrieving kerberos realm
2012-09-11 16:26:46 +0000 CopyReplicaArray: ldap_search_ext_s failed
2012-09-11 16:26:46 +0000 Error retrieving replica array
2012-09-11 16:26:46 +0000 Deleting Cert Authority related data
2012-09-11 16:26:46 +0000 No intCAIdentity, not removing int CA from keychain
2012-09-11 16:26:46 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertd.plist
2012-09-11 16:26:46 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertd-helper.plist
2012-09-11 16:26:46 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertadmin.plist
2012-09-11 16:26:46 +0000 void _destroyLDAPServer(const char *): Failed to find computer record named servin.dandybox.net$: 2100 Connection failed to the directory server.
2012-09-11 16:26:46 +0000 Updating ldapreplicas on primary master
2012-09-11 16:26:46 +0000 CopyPrimaryMaster: CopyLdapReplicas failed
2012-09-11 16:26:46 +0000 Unable to locate primary master
2012-09-11 16:26:46 +0000 Primary master node is nil!
2012-09-11 16:26:46 +0000 Unable to locate ldapreplicas record: 0 (null)
2012-09-11 16:26:46 +0000 Error setting read ldap replicas array: 0 (null)
2012-09-11 16:26:46 +0000 Error setting write ldap replicas array: 0 (null)
2012-09-11 16:26:46 +0000 ODRecord *_getODRecord(ODNode *, NSString *, NSString *, NSArray *): ODNodeRef parameter error
2012-09-11 16:26:46 +0000 int _removeReplicaFromConfigRecord(ODNode *, NSString *): ODRecord not found
2012-09-11 16:26:46 +0000 Error synchronizing ldapreplicas: 0 (null)
2012-09-11 16:26:46 +0000 Removing self from the database
2012-09-11 16:26:46 +0000 Stopping LDAP server (slapd)
2012-09-11 16:26:46 +0000 Stopping password server
2012-09-11 16:26:47 +0000 cleanKeytab: unable to retrieve default realm
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/__db.001.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/__db.002.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/__db.003.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/__db.004.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/__db.005.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/__db.006.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/altSecurityIdentities.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/apple-config-realname.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/apple-generateduid.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/apple-group-memberguid.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/apple-group-nestedgroup.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/apple-group-realname.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/cn.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/DB_CONFIG.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/dn2id.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/entryCSN.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/entryUUID.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/gidNumber.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/givenName.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/id2entry.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/ipHostNumber.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/log.0000000001.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/macAddress.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/memberUid.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/objectClass.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/ou.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/sn.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/uid.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/openldap-data/uidNumber.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/__db.001.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/__db.002.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/__db.003.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/__db.004.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/__db.005.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/__db.006.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/alock.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/authGUID.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/DB_CONFIG.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/dn2id.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/draft-krbPrincipalAliases.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/draft-krbPrincipalName.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/entryCSN.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/entryUUID.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/id2entry.bdb.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/log.0000000001.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/openldap/authdata/objectClass.bdb.
2012-09-11 16:26:47 +0000 Removed directory at path /var/db/openldap/authdata.
2012-09-11 16:26:47 +0000 Removed file at path /etc/openldap/slapd_macosxserver.conf.
2012-09-11 16:26:47 +0000 Removed file at path /etc/openldap/slapd.conf.
2012-09-11 16:26:47 +0000 Removed file at path /var/db/dslocal/nodes/Default/groups/com.apple.access_dsproxy.plist.
2012-09-11 16:26:47 +0000 Removed directory at path /etc/openldap/slapd.d/cn=config.
2012-09-11 16:26:47 +0000 Removed file at path /etc/openldap/slapd.d/cn=config.ldif.
2012-09-11 16:26:47 +0000 Removed directory at path /etc/openldap/slapd.d.
2012-09-11 16:26:47 +0000 Removed directory at path /etc/openldap/slapd.d.backup/cn=config.
2012-09-11 16:26:47 +0000 Removed file at path /etc/openldap/slapd.d.backup/cn=config.ldif.
2012-09-11 16:26:47 +0000 Removed directory at path /etc/openldap/slapd.d.backup.
2012-09-11 16:26:47 +0000 Stopping password server
2012-09-11 16:26:48 +0000 Removed file at path /etc/ntp_opendirectory.conf.
2012-09-11 16:26:48 +0000 Removed file at path /Library/Preferences/com.apple.openldap.plist.
2012-09-11 16:26:48 +0000 Removed file at path /var/run/slapconfig.lock.
Thanks again for any help. DNS is correct, certs are not present, using FQDN. -
Mac os x server 3.0.2 open directory master disappear from list
Hi, There is a very funny Mac OS X Server 3.0.2 issue.
After I updated my mac os X server from 3.0.0 to 3.0.2. as my host name is conflict with other Mac mini, I changed X server's Mac mini's host name, computer name and localhost name. When I restart my x server. My defined "Open Directory Master" disappear from my server list.
Actually, I need to change some setting from UI, as it disppeared from UI, I can't do any about it. Is there any way to delete it from command line? or How I can enable it appear again?As can't find the defined open directory server master, have to delete it from terminal command line as:
sudo slapconfig -destroyldapserver
and then add a new open directory master. -
Converting from Standalone to Open Directory Master
I want to change my server to an Open Directory Master from a standalone server so that mail clients can use Kerberos to send and receive email. I want to do this just to increase security measures on my network. I have been sucessfully running the server for 3 years or so but am not very knowlegable about Open directories.
My questions is this.
1. Is there any documentation on makeing the change to Open Directory Master with the sole purpose of being able to Authenticate using Kerberos for mail clients. Step by step would be great.Take a look at www.afp548.com for some good tutorials on the subject.
The admin guide should have step by step instructions as well.
One thing, you will need to move your users from the local "domain" to the OD "domain" in order for them to use kerberos. e.g. all your current user records have a dir node path of "/Users", and you will need to move them to "LDAPv3/127.0.0.1/Users".
Hope this gets you started
- Leland -
Unable to set up Kerberos when creating Open Directory Master-beginner!
I'm trying to promote a standalone server to an Open Directory master.
In the Kerberos section I am typing my FQDN into the Realm field
which is studioserver.example.com.
However the searchbase is already filled with dc=studioserver,dc=local
I've tried every different permutation but when I save the settings, the overview shows that Kerberos is stopped and therefore no KDC is created.
I've used Lookup to confirm that DNS is ok...could this still be the problem?
Any help much appreciated.Hi
If DNS is configured correctly then the Kerberos Realm and search base fields will be both filled in automatically. The only difficult you have to do is decide on the Directory Administrator name and password and click OK.
The only way out of this is to demote back to Standalone. This will trash the LDAP configuration and database effectively allowing you to start again. Export any users and groups first. Home folders (if you have created any) will not be affected.
Go back and stop the DNS Service and delete the configuration you have in there, stop any other service you have running as well as deleting any configuration that depends on DNS. If you have configured DHCP, stop this and delete the configuration. Restart the server. Start simple file services first, AFP etc and then move onto DNS. Make sure this is resolving correctly. Avoid .local.
Follow the instructions given in the first thread.
You could also download the Open Directory Administration Manual from here:
http://www.apple.com/support/manuals/macosxserver/
Tony -
Unable To Create New Open Directory Master
I have a brand new installation of MacOS X Mountain Lion Server, latest version, in a brand new Mac Mini. This Mac Mini is being co-located in a data centre, and I am setting it up via remote access (screen sharing). The data centre has setup DNS zone records for my domain, including a reverse DNS PTR record, and everything in the DNS is working fine.
During the installation of Server, when the installer asked for the type of 'Host Name', I selected 'Host name for Internet'. The installer was able to use the IP address of the Mac Mini to automatically find the correct host name, and configure it. Once the installation was complete, no services were turned on - not even DNS, as the installer probably figured out that DNS services were being handled externally.
The first thing I went to try and do was to turn on Open Directory. I turn the service on, and a sheet comes down, where I select to "Create a new Open Directory Domain". I click 'next', and on the next sheet I enter the OD Administrator's details, and password. Click 'next' again, and then I get the following message:
"This computer's host name is invalid.
The host name does not resolve to any configured address of this computer. Please ensure the host name is correct."
Opening Terminal app, and typing "hostname", I get the correct hostname, as showing in Server app itself.
Entering "sudo changeip -checkhostname" in Terminal app, I get all correct details for the IP address and host name of the machine, and the message: "The names match. There is nothing to change. dirserv:success = 'success'"
I finally tried getting Server app to change the host name itself - going into the Server pane, select the 'Network' tab, and in the 'Names' section, next to the host name, click on the "Edit..." button. Again, went through the wizard, and the wizard again was able to find the hostname automatically from the machine's IP address. Once the 'changing' process was completed, I went to try and initialise Open Directory, and again, got the same message.
Can anyone shed any light? Any suggestion would be welcome at this stage...MrHoffman, thank you for your guidance. You have, however, given me a bit of a headache.
MrHoffman wrote:
127.0.0.1 is likely going to be incorrect here. Please reference the DC DNS servers, and not a local server. If you're in a DC and particularly with a public-facing host without an outboard firewall to block DNS traffic, you likely do not want to be running your own local DNS services.
As described previously, the server was referencing the DC DNS servers. The server was not running its own DNS service. Open Directory was not able to detect that the ip address and the hostname were correct with this setup - even though the command line on the server as well as externally showed that all DNS records were setup correctly, and that the IP address and hostname matched. The server's own installation wizard and 'Change Host Name' wizard automatically detected the hostname from the machine's ip address - by consulting the reverse DNS PTR record in the DC DNS servers.
Starting the server's own DNS server - and adding '127.0.0.1' to the top of the DNS list in Preferences - allowed me to create the Open Directory master, finally. Of course, the internal DNS server was setup so that only the server itself could access it - it was closed to any other machines - and even then, I had it running only momentarily: once Open Directory created its master domain, I switched DNS service off, and removed '127.0.0.1' from the DNS list in Prefences.
With that setup, everything seemed to work fine. All users were able to login, access their share points and their mail.
MrHoffman wrote:
For the host name, the host name would usually be the FQDN fully-qualified domain name, and "example.com" isn't usually a host name. You'd usually find somehostname.example.com here
That is the only machine in the domain. All public sub-domains - like 'mail', 'www' or 'calendar' - point to the same machine. The reverse DNS PTR record points to the higher-level domain "example.com".
Your warning, however, made me worried:
MrHoffman wrote:
I'd probably rebuild the OD configuration, as I'd wonder of OD now had a bogus host name. Once bad DNS gets involved, the entanglements can be quite pernicious..
So I decided to heed your advice, and rebuild OD. I deleted the Open Directory master, and tried rebuilding it with DNS service turned off. As before, OD insists that "the host name does not resolve to any configured address of this computer", and refuses to create the new Master. I ended up following the procedure above again - switching DNS service on temporarily to get OD to work.
The problem is, that now no user can connect to the server anymore. Everyone keeps getting a message stating that their password is wrong - including users on their iPhones and iPads.
I suspect that when I created the new OD Master, it created a new certificate, and that is what is causing problems. While I could try to get the desktop users to delete the old certificates from their keychain, this is not really an option for iPhone/iPad users.
Where do I go from here? After almost 24 hours straight dealing with this, I'm at the end of my rope... -
Disabling Kerberos After Setting Up an Open Directory Master - Mavericks
I am attempting to setup the "magic triangle" and one of the steps is to follow KB: Mac OS X 10.6 Server Admin: Disabling Kerberos After Setting Up an Open Directory Master
However, the command mentioned to disable Kerberos does not work on Mavericks as I get remove parameter not found. What is proper way to disable kerberos on a mavericks open directory master server so that Active Directory takes over for kerberos properly?
The article for the magic triangle configuration that I am following is: https://it.uoregon.edu/Magic-Triangle-setup
Also, is Apple's best practice in a "magic triangle" situation to join the client computers to OD and AD?Mavericks server seems to be smart enough to disable its Kerberos for you if you bind the server to AD before you create your OD Master.
if you want to use Workgroup Manager in Mavericks to manage preferences then yes you need to bind clients to AD and OD. We are doing this with Mavericks. it works.
however, Apple has now deprecated Workgroup Manager in favor of Profile Manager. If you switch to Profile Manager then you enroll clients to the server instead of binding them to OD.
pick yer poison. :-) -
Exception in servermgr_accounts when creating open directory master...
Just to give you some background, I'm new to Mac Os X Server. And I'm trying to get a mail/ical/web-server with "open directory" setup. The server is placed in a remote location, behind a NAT-firewall.
I thought I hade everything setup, took a while to figure out the DNS-configs. But I managed to get everything working, and apply the server through a NetworkAccountServer on a client.
When I wanted to setup some e-mail aliases for my e-mail accounts, I remembered I hade seen that in "Server Preferences".
But when opening "Server Preferences" i got the following message:
"Multiple errors occurred on the server while processing commands. Use the Console application to view the error messages.", I could access everything accept Users and Groups, when clicking these it tried to create a new open directory.
The Console App shows this Message:
2/4/11 1:15:31 AM servermgrd[3725] servermgr_accounts: noteDirectoryNodeAdded (reopening nodes)
2/4/11 1:15:31 AM servermgrd[3725] * Terminating app due to uncaught exception 'NSUnknownKeyException', reason: '[<NSCFDictionary 0x102021680> valueForUndefinedKey:]: this class is not key value coding-compliant for the key VR.'
* Call stack at first throw:
0 CoreFoundation 0x00007fff878fc7b4 __exceptionPreprocess + 180
1 libobjc.A.dylib 0x00007fff890ce0f3 objcexceptionthrow + 45
2 CoreFoundation 0x00007fff87954969 -[NSException raise] + 9
3 Foundation 0x00007fff87e61c92 -[NSObject(NSKeyValueCoding) valueForUndefinedKey:] + 245
4 Foundation 0x00007fff87d915a8 -[NSObject(NSKeyValueCoding) valueForKey:] + 420
5 Foundation 0x00007fff87d8d0f6 -[NSDictionary(NSKeyValueCoding) valueForKey:] + 173
6 servermgr_accounts 0x00000001005799c1 scDynamicStoreNotificationCallback + 25876
7 servermgr_accounts 0x0000000100579948 scDynamicStoreNotificationCallback + 25755
8 servermgr_accounts 0x0000000100577648 scDynamicStoreNotificationCallback + 16795
9 servermgr_accounts 0x0000000100573521 scDynamicStoreNotificationCallback + 116
10 SystemConfiguration 0x00007fff82273dad rlsPerform + 115
11 CoreFoundation 0x00007fff87899401 __CFRunLoopDoSources0 + 1361
12 CoreFoundation 0x00007fff878975f9 __CFRunLoopRun + 873
13 CoreFoundation 0x00007fff87896dbf CFRunLoopRunSpecific + 575
14 Foundation 0x00007fff87dc08e4 -[NSRunLoop(NSRunLoop) runMode:beforeDate:] + 270
15 Foundation 0x00007fff87dc07c3 -[NSRunLoop(NSRunLoop) run] + 77
16 servermgrd 0x0000000100003f13 0x0 + 4294983443
17 servermgrd 0x0000000100001388 0x0 + 4294972296
18 ??? 0x0000000000000002 0x0 + 2
2/4/11 1:15:31 AM com.apple.launchd[1] (com.apple.servermgrd[3725]) Job appears to have crashed: Abort trap
2/4/11 1:15:31 AM com.apple.ReportCrash.Root[3831] 2011-02-04 01:15:31.997 ReportCrash[3831:2a03] Saved crash report for servermgrd[3725] version ??? (???) to /Library/Logs/DiagnosticReports/servermgrd2011-02-04-011531localhost.crash
2/4/11 1:15:32 AM edu.mit.Kerberos.kadmind[3848] kadmind: starting...
2/4/11 1:15:33 AM Server Admin[1931] Error '-1' when applying directory role change
2/4/11 1:15:34 AM com.apple.launchd[1] (edu.mit.Kerberos.kadmind[3848]) Exited with exit code: 2
2/4/11 1:15:34 AM com.apple.launchd[1] (edu.mit.Kerberos.kadmind) Throttling respawn: Will start in 9 seconds
2/4/11 1:15:34 AM com.apple.launchd[1] (edu.mit.Kerberos.krb5kdc) Throttling respawn: Will start in 9 seconds
2/4/11 1:15:43 AM edu.mit.Kerberos.kadmind[3951] kadmind: starting...
2/4/11 1:15:51 AM com.apple.launchd[1] (com.apple.suhelperd[4009]) Exited with exit code: 2
I tried reseting the "Open Directory Service" in "Server Admin", by setting it to "standalone directory".
It did stop the "Open directory", but the console was again showing the message above.
With the server in stand-alone mode, I could access "Server Preferences" again, but as soon as I create an "Open Directory again", it fails with the above error, and I cant access the Open Directory from Server Preferences.
To summarize, the message shows when:
1. Creating an Open Directory Master.
2. Removing a Open Directory Master.
3. Entering Server Preferences with Open Directory Master running.
A wierd thing is that the "Open directory" seems to be fine. I can manage it in "Workgroup manager", login to webmail, calenders, VPN etc. I just can't manage it from "Server Preferences".
I did make som misstakes in the beginning (primarly not setting a proper host-name before creating the first "Open Directory", and also having a local-user with the same short-name as a user in the "Open Directory") But that should all solved now.
Any Idea's on what could be wrong?
Where else can I set e-mail aliases for my "Open Directory" users? Is it possible for them to administer aliases themselves?
Thanks in advance!
PS. Anyone have any tips on mail-forwarding to multiple external accounts? Do I really need to edit this manually in /etc/postfix/aliases? Is there anyway I can let my users administer forwarding?If anyone else has similar issues, I didn't find a solution. Re-installed the server from scratch...
-
Microsoft office issues with clients bound to my Open Directory Master
So i converted all of my clients from having a local account on there machine to being bound to my Open Directory Master with a home folder on the server. I deleted there local account on there client machine and then bound it and logged in with there server account. launch microsoft entourage,excel and word and i get weird errors when the applications launch. So i reinstalled on the local admin account of the client machine and all applications now work except for microsoft entourage.
I can set up an account... see my exchange email server but no email. nothing.. if i log the client machine out of the OD master account and log into a local account on the machine everything works fine. Am i missing something? i even set up for the user account in the allowed applications to run the microsoft office suite with no change.
thanks,
JessNote Microsoft Office does not support server-based home directories. You can use portable home directories which syncs stuff down to the client (like a roaming profile but "better" )
As far as errors with application launch, etc., check the permissions on the applications themselves. Office has an annoying habit of installing itself as the user who installs it (well, except Office 2008 which installs itself as user 502, always, lol). Ensure the permissions on the applications make sense -- this will take some command line use of chmod and chown.
Also ensure that your home directory permissions are mapped to the user you're logged in as. If you move from local accounts to server-based accounts the UID on the home directory will not automatically change properly, and Microsoft stores its stuff in ~/Documents/Microsoft Office Documents which will have the owner/permissions of who initially created that directory. -
What is the impact of destroying and re-creating from scratch the Open Directory Master?
In order to try and solve some nasty issues hat I have since upgrading to OS X Server 3,0 I am considering completely destroying my OD Master and re-creating the users and groups from scratch. Before doing so (of course I will have multiple backups) I would like to understand:
1. When re-creating the users and groups is it sufficient to use the same ‘Unix’ groupid and userid numbers or do I also need to use the original GeneratedUIDs (is that even possible)? Are there any other aspects of the users/groups that I need to be sure to preserve?
2. Will there be any impact to services and their data from doing this? Specifically, I have users with data in Mail, Calendar, Contacts and the WiKi. Will they still be able to access their data after the OD destroy/re-create or is that data somehow tied to more than just the username (e.g. does it use the user/group UUID or indeed any other UUID from OD)?
3. Will there be any impact to OS X clients bound to the OD? Should I unbind them before destroying and re-bind them afterwards? Will there be any negative impact on the network users who log in via these systems (they all have ‘mobile’ accounts which do *not* sync to the server - all their data is local to the client)?
Thanks in advance for any advice especially from anyone who has gone through this process.
ChrisHi Rob,
I have solevd my issue and I did not need to destroy / re-create the Open Directory. See my post here https://discussions.apple.com/thread/5785838 for all the gory details. The long and the short of it was that my problems all came from a point in the past when I changed the hostname of my server after I had created the Open Directory master. Seems like that is a very bad idea! Based on what I found it seems liek any small flaw in DNS forward and reverse name resolution can also cause similar issues. I don't knwo if either of thsoe may apply to your situation?
As part of troubleshooting my issue I actually created a 'replica' of my server setup on another machine includingthe OD and associated users and groups. What I found was that many services (certainly mail, calendar and contacts) depend completely on the OD users and groups UUIDS. So if you wish to preserve user's data across an OD destroy and re-create it is vital that you carefully note for each group its Unix GID and its OD UUID and for each user their Unix uid, primary group id and UUID. When you are re-creating your OD master, as you create each group, use Directory editor to change its UUID to the original value. Similarly for Users. If you don't then users will no longer have access to any existign Mail, Contacts or Calendar data afterwards!
HTH,
Chris -
Unable to set working directory (-2147024832) for some app installs
I've found several drivers on a Dell Laptop that don't play well with others in MDT 2012, so I started making an application install package for them instead. Most of them fail with an "unable to set working directory" error. I checked
the app install logs and they don't really make any sense to me. I know the process as a whole works, because I can install .Net 4.0 runtimes without any problems using the same method. The important bits of the ZTI App log are below. Would
be for any guidance on this, as I'm stumped and none of the searches on the exact errors are of much help.
A sample error returned in the wizard is:
WARNING - unable to set working directory (-2147024832)Error installing application Dell 3440_Chipset_Driver_JD3WN IMEI drivers 9.5.3.1520_A00: The system cannot find the file specified.
The ZTIApplication.log file contains the following... the first is one that works (.NET 4), the second is one that fails. (Not using code block for this one, it doesn't like it).
<![LOG[Validating connection to \\ITSASERVER\DeploymentShare$\Applications\Microsoft .NET 4.0 runtime 4.0]LOG]!><time="08:20:30.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1"
thread="" file="ZTIApplications">
<![LOG[Already connected to server ITSASERVER as that is where this script is running from.]LOG]!><time="08:20:30.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread=""
file="ZTIApplications">
<![LOG[ Change directory: \\ITSASERVER\DeploymentShare$\Applications\Microsoft .NET 4.0 runtime 4.0]LOG]!><time="08:20:30.000+000" date="09-27-2013" component="ZTIApplications"
context="" type="1" thread="" file="ZTIApplications">
<![LOG[ Run Command: \\ITSASERVER\DeploymentShare$\Tools\X64\bddrun.exe dotNetFx40_Full_x86_x64.exe /norestart /passive]LOG]!><time="08:20:30.000+000" date="09-27-2013"
component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[ZTI installing application ]LOG]!><time="08:20:30.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[Event 41031 sent: ZTI installing application ]LOG]!><time="08:20:30.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[About to run command: \\ITSASERVER\DeploymentShare$\Tools\X64\bddrun.exe dotNetFx40_Full_x86_x64.exe /norestart /passive]LOG]!><time="08:20:30.000+000" date="09-27-2013" component="ZTIApplications" context=""
type="1" thread="" file="ZTIApplications">
<![LOG[Command has been started (process ID 3212)]LOG]!><time="08:20:30.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[ZTI Heartbeat: command has been running for 0 minutes (process ID 3212)]LOG]!><time="08:20:31.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread=""
file="ZTIApplications">
<![LOG[Event 41003 sent: ZTI Heartbeat: command has been running for 0 minutes (process ID 3212)]LOG]!><time="08:20:31.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1"
thread="" file="ZTIApplications">
<![LOG[Return code from command = 0]LOG]!><time="08:23:48.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[Application Microsoft .NET 4.0 runtime 4.0 installed successfully]LOG]!><time="08:23:48.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[Event 41033 sent: Application Microsoft .NET 4.0 runtime 4.0 installed successfully]LOG]!><time="08:23:48.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread=""
file="ZTIApplications">
<![LOG[Property InstalledApplications001 is now = {9abb5842-9a8e-45c5-9268-4fa4e69dba34}]LOG]!><time="08:23:48.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread=""
file="ZTIApplications">
<![LOG[Application Microsoft .NET 4.0 runtime 4.0 needs a reboot, initiating.]LOG]!><time="08:23:48.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread=""
file="ZTIApplications">
<![LOG[Dependent application requested a reboot]LOG]!><time="08:23:48.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[Property SMSTSRebootRequested is now = true]LOG]!><time="08:23:48.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[Property SMSTSRetryRequested is now = true]LOG]!><time="08:23:48.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[Exiting to initiate a reboot with retry (to pick up where we left off)]LOG]!><time="08:23:48.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread=""
file="ZTIApplications">
<![LOG[ZTIApplications processing completed successfully.]LOG]!><time="08:23:48.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[Event 41001 sent: ZTIApplications processing completed successfully.]LOG]!><time="08:23:48.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[################]LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[Entry: {dee65f94-e269-4eac-927d-6e06c0e0eb9d}]LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[Name: Dell 3440_Chipset_Driver_JD3WN IMEI drivers 9.5.3.1520_A00]LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread=""
file="ZTIApplications">
<![LOG[################]LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[Validating connection to \\ITSASERVER\DeploymentShare$\Applications\Dell 3440_Chipset_Driver_JD3WN IMEI drivers 9.5.3.1520_A00]LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications" context=""
type="1" thread="" file="ZTIApplications">
<![LOG[Already connected to server ITSASERVER as that is where this script is running from.]LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread=""
file="ZTIApplications">
<![LOG[ Change directory: \\ITSASERVER\DeploymentShare$\Applications\Dell 3440_Chipset_Driver_JD3WN IMEI drivers 9.5.3.1520_A00]LOG]!><time="08:25:04.000+000" date="09-27-2013"
component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[WARNING - unable to set working directory: (-2147024832)]LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications" context="" type="2" thread="" file="ZTIApplications">
<![LOG[ Run Command: \\ITSASERVER\DeploymentShare$\Tools\X64\bddrun.exe Setup.exe -s]LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications"
context="" type="1" thread="" file="ZTIApplications">
<![LOG[ZTI installing application ]LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[Error executing web service http://ITSASERVER:9800/MDTMonitorEvent/PostEvent?uniqueID=2a0f4469-d803-4976-b434-adbf06b85c23&computerName=Lat3440_0927b&messageID=41031&severity=1&stepName=Install Applications¤tStep=61&totalSteps=88&id=4C4C4544-0031-4610-8053-B7C04F4C5731,E0:DB:55:AC:48:1C&message=ZTI
installing application &dartIP=&dartPort=&dartTicket=&vmHost=&vmName=: The server name or address could not be resolved
(-2147012889)]LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[Event 41031 sent: ZTI installing application ]LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[About to run command: \\ITSASERVER\DeploymentShare$\Tools\X64\bddrun.exe Setup.exe -s]LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread=""
file="ZTIApplications">
<![LOG[Error installing application Dell 3440_Chipset_Driver_JD3WN IMEI drivers 9.5.3.1520_A00: The system cannot find the file specified.
]LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications" context="" type="3" thread="" file="ZTIApplications">
<![LOG[Error executing web service http://ITSASERVER:9800/MDTMonitorEvent/PostEvent?uniqueID=2a0f4469-d803-4976-b434-adbf06b85c23&computerName=Lat3440_0927b&messageID=41032&severity=3&stepName=Install Applications¤tStep=61&totalSteps=88&id=4C4C4544-0031-4610-8053-B7C04F4C5731,E0:DB:55:AC:48:1C&message=Error
installing application Dell 3440_Chipset_Driver_JD3WN IMEI drivers 9.5.3.1520_A00: The system cannot find the file specified.
&dartIP=&dartPort=&dartTicket=&vmHost=&vmName=: The server name or address could not be resolved
(-2147012889)]LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
<![LOG[Event 41032 sent: Error installing application Dell 3440_Chipset_Driver_JD3WN IMEI drivers 9.5.3.1520_A00: The system cannot find the file specified.]
<![LOG]!><time="08:25:04.000+000" date="09-27-2013" component="ZTIApplications" context="" type="1" thread="" file="ZTIApplications">
Why can't it find it or set the working directory, especially when it's already validated that it's there?
--smthngI'm not familiar with how Dell does their client side software, but for the server-side software (my area of expertise), I've always done something like the following:
I recommend running every application install in a VBScript/Powershell wrapper. You get logging for the application back on your SLShare as well as its cleaner (you can replace Drivers A05 with A06 by changing the script, rather than editing the application
in MDT).
sApplicationName = "Dell 12G Chipset"
oLogging.CreateEntry "Install-" & sApplicationName & ": Starting " & sApplicationName & " installation", LogTypeInfo
'//Set Destination Folder
sDestFolder = "c:\temp\"
'//Set Source Install Directory
sSourceDir = oUtility.ScriptDir
sSourceDir = sSourceDir & "\Source"
'//Check that folder exists, if not, create it.
oLogging.CreateEntry "Install-" & sApplicationName & ": Check that " & sDestFolder & " exists.", LogTypeInfo
if not oFSO.FolderExists (sDestFolder) then
oFSO.CreateFolder sDestFolder
End If
'//Copy folder from MDT share to C:\Temp
oLogging.CreateEntry "Install-" & sApplicationName & ": Copy from " & sSourceDir & " to " & sDestFolder, LogTypeInfo
oFSO.CopyFolder sSourceDir, sDestFolder
'//Sleep for 2 seconds to allow copy to finish
wscript.sleep 2000
sFile = sDestFolder & "Source\setup.exe"
'// Check if file/folder exists
If not oFSO.FileExists(sFile) then
oLogging.CreateEntry "Install-" & sApplicationName & ": " & sFile & " was not found, unable to install " & sApplicationName & "", LogTypeError
ZTIProcess = Failure
Exit Function
End if
'// Create log entry to show file being run
oLogging.CreateEntry "" & sFile & " -s", LogTypeInfo
iRetVal = oUtility.RunWithHeartbeat("" & sFile & " -s")
if (iRetVal = 0) or (iRetVal = 3010) then
ZTIProcess = Success
Else
ZTIProcess = Failure
End If
wscript.sleep 15000
'// Disable Zone Checks
oEnv("SEE_MASK_NOZONECHECKS") = 1
'//Folder Cleanup
oFSO.DeleteFolder sDestFolder & "Source"
I always copy any drivers that are installed after the fact (everything for me other than SAS/NIC drivers) to the C:\Temp as it can break. I always update my NIC drivers during the build to the latest Dell software using their packs. I try to
not mess with my boot image unless I'm adding a new model that is not supported by the built-in drivers. -
Can´t configure Open Directory Master
After a reinstall I can´t config Open Directory Master. I have this logs:
Mar 4 12:22:28 servidor slapd[14293]: @(#) $OpenLDAP: slapd 2.4.23 (Oct 19 2011 00:16:13) $
[email protected]:/private/var/tmp/OpenLDAP/OpenLDAP-186.2~3/servers/slapd
Mar 4 12:22:28 servidor slapd[14293]: daemon: SLAP_SOCK_INIT: dtblsize=8192
Mar 4 12:22:28 servidor slapd[14293]: bdb_monitor_db_open: monitoring disabled; configure monitor database to enable
Mar 4 12:22:28 servidor slapd[14293]: slapd starting
Mar 4 12:22:28 servidor slapd[14293]: daemon: posting com.apple.slapd.startup notification
Mar 4 12:22:47 servidor slapd[14293]: SASL [conn=1025] Failure: no secret in database
Mar 4 12:22:50 servidor slapd[14293]: SASL [conn=1028] Failure: no secret in database
Mar 4 12:22:51 servidor slapd[14293]: => bdb_idl_delete_key: c_get failed: DB_LOCK_DEADLOCK: Locker killed to resolve a deadlock (-30994)
Mar 4 12:22:51 servidor slapd[14293]: conn=1014 op=37: attribute "entryCSN" index delete failure
Mar 4 12:23:10 servidor slapd[14293]: => bdb_idl_delete_key: c_get failed: DB_LOCK_DEADLOCK: Locker killed to resolve a deadlock (-30994)
Mar 4 12:23:10 servidor slapd[14293]: conn=1014 op=101: attribute "entryCSN" index delete failure
Mar 4 12:23:17 servidor slapd[14293]: SASL [conn=1036] Failure: no secret in database
Mar 4 12:23:20 servidor slapd[14293]: SASL [conn=1040] Failure: no secret in database
Mar 4 12:23:47 servidor slapd[14293]: SASL [conn=1098] Failure: no secret in database
Mar 4 12:23:51 servidor slapd[14293]: SASL [conn=1111] Failure: no secret in database
Mar 4 12:24:18 servidor slapd[14293]: SASL [conn=1179] Failure: no secret in database
Mar 4 12:24:21 servidor slapd[14293]: SASL [conn=1182] Failure: no secret in database
Mar 4 12:24:24 servidor slapd[14293]: daemon: shutdown requested and initiated.
Mar 4 12:24:24 servidor slapd[14293]: daemon: posting daemon shutdown notification.
Mar 4 12:24:24 servidor slapd[14293]: slapd shutdown: waiting for 0 operations/tasks to finish
Mar 4 12:24:30 servidor slapd[14293]: slapd stopped.
and:
2012-03-04 12:04:51.855 CET - opendirectoryd (build 172.10) launched...
2012-03-04 12:04:52.073 CET - Logging level limit changed to 'error'
2012-03-04 12:04:52.153 CET - Initialize trigger support
2012-03-04 12:04:52.486 CET - Registered node with name '/Active Directory' as hidden
2012-03-04 12:04:52.487 CET - Registered node with name '/Configure' as hidden
2012-03-04 12:04:52.487 CET - Discovered configuration for node name '/Contacts' at path '/Library/Preferences/OpenDirectory/Configurations//Contacts.plist'
2012-03-04 12:04:52.487 CET - Registered node with name '/Contacts'
2012-03-04 12:04:52.575 CET - Registered node with name '/LDAPv3' as hidden
2012-03-04 12:04:52.620 CET - Registered node with name '/Local' as hidden
2012-03-04 12:04:52.672 CET - Registered node with name '/NIS' as hidden
2012-03-04 12:04:52.697 CET - Discovered configuration for node name '/Search' at path '/Library/Preferences/OpenDirectory/Configurations//Search.plist'
2012-03-04 12:04:52.698 CET - Registered node with name '/Search'
2012-03-04 12:04:52.920 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/legacy.bundle'
2012-03-04 12:04:53.159 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/search.bundle'
2012-03-04 12:04:54.162 CET - '/Search' has registered, loading additional services
2012-03-04 12:04:54.162 CET - Initialize augmentation support
2012-03-04 12:04:54.217 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/SystemCache.bundle'
2012-03-04 12:04:54.247 CET - Successfully registered for Kernel identity service requests
2012-03-04 12:04:54.264 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/PlistFile.bundle'
2012-03-04 12:04:54.310 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/FDESupport.bundle'
2012-03-04 12:04:54.707 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/ConfigurationProfiles.bundle'
2012-03-04 12:04:54.708 CET - Registered subnode with name '/Local/Default'
2012-03-04 12:05:17.128 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/ldap.bundle'
2012-03-04 12:07:47.863 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/configure.bundle'
2012-03-04 12:07:48.030 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/keychain.bundle'
2012-03-04 12:08:42.226 CET - Loaded bundle at path '/System/Library/OpenDirectory/Modules/AppleODClient.bundle'
2012-03-04 12:10:17.881 CET - Registered subnode with name '/LDAPv3/127.0.0.1'
2012-03-04 12:10:29.747 CET - Unregistered node with name '/LDAPv3/127.0.0.1'
2012-03-04 12:24:08.488 CET - Registered subnode with name '/LDAPv3/127.0.0.1'
2012-03-04 12:24:30.792 CET - Unregistered node with name '/LDAPv3/127.0.0.1'
Anyone may help me?It happens after a clean install and posterior data recovery through TimeMachine. With Server Admin it was imposible change Standalone to Master.
Thanks a God I have only a few users and after a hard week end I back up data and I did a new clean installation with a enterely new OD.
Thanks for your interest. -
DNS conflict when running Open Directory Master inside of WIndows network..
We installed Snow Leopard Server as an Open Directory Master in a building that already has a Windows Primary Domain Controller. The intent was to create a Mac network inside of the building with their own services. The Mac server does not pull LDAP/Kerberos/etc. from the Windows server and the Mac clients do not use the WIndows server for any other services.
Everything (Final Cut Server, Open Directory, DNS, File Sharing) worked fine for a day. The next day, all of the windows machines were getting DNS conflict messages on their screens every 15 minutes. After shutting down the Snow Leopard Server, the Windows machines are back to normal.
Ideas?
Thanks!Hi
Is it possible the Window's Administrators have added your server as a DNS Server in their DHCP Service for some reason unknown to you? Or possibly you've chosen an IP address that is listed as a DNS Server in their DHCP Service?
If you launch terminal from a client mac and issue the host command for the server's IP address what's the result?
+"we understood the Mac server has to be hosting DNS in order for Open Directory to function"+
DNS does not have to be running on the Server itself for any of the Services in OSX Server to function. Just as long as it can resolve itself on both pointers is all that matters. If it was the only server on the network then yes configure the Service. If there already is an existing and mature DNS Service then it makes sense to use it.
Tony -
ITunes crashes every time I try to open it on my brand new 5s.
iTunes crashes every time I go to open it on my brand new 5s. What do I do?
Try this one :
Go through Settings > General > Reset > Reset All Settings.
Please note, while this will remove your saved hotspots, it won’t purge any of your data.
OR
This simple, one-step fix that involves going to the Settings app on your home screen and navigating through Safari > Block Cookies > and selecting “From third parties and advertisers” only.
Maybe you are looking for
-
How to find out if a role is deleted
Hi security experts, We are trying to find out the way to identify the role(s) that have been deleted within a certain time interval. In which table is this information stored? Actually we are interested in getting to know the roles without profile a
-
My iPod 5th gen has been doing this for awhile, though it progressively got better over time, it still happens occasionally like when I'm out running. My iPod is never able to connect strongly to any WiFi network. All the WiFi networks keep disappear
-
How to determine mobile operator used
I have bought a second hand iPhone 4s. The seller did not know which operator used. I need this info in order to unlock the mobile and switch operator. How can I determine the old operator used?
-
My Ipod wont turn on no matter what i try!
My ipod is a 1st generation iPod touch. I've tried everything! (Holding the wake button & The Home button, charging it, etc.) Nothing will help! Please send me suggestions!
-
Apple support evening telephone appointments
I am furious this evening, I booked a scheduled support call tonight at 20:15, automated service called me twice, then told me customer support were closed when I selected my option. Are they nuts? My iPhone 5 was insisting I was entering the wrong p