Users Losing Home Folder connection?
I bought a new server (Mac Pro Intel with three hard drives) and have spent the last two months moving user accounts from the old ldap to the new, This has been a pain in the butt butt it needed to be done.
So for a while there I had two ldap entries in Directory Access for users. I finished the move of all users to the new ldap last week and turneded off the old one. I am in the process of putting out a new image which only has the one ldap entry.
We are running network accounts. Server is a MAcPro running 10.4.11 End user cpus are iMacs or eMacs all running 10.4.11
Issues:
Many times a person logs in and are treated like a new user. It wants to set up their email, no bookmarks, etc. Only a restart fixes.
MAny times a person will be working and troubles like email says it can't be shown because it hasn't been downloaded from the server and to connect to the network, user will be unable to save and the documents folder will get a transparent ? over it happen. All of these things happen during th same session. Only a restart fixes.
I ran the a permission fix program on the docs because the names of the home folders have changed.
I am frustrated beyond belief..... Suggestions?
How exactly did you make the move from one server to another?
I ask because it sounds like you created new users on the new server and moved their folders over. If this is the case, you should expect some issues to crop up. You'll need to assign the permissions to each and every user directory on the new server...or am I missing something?
Jeff
Similar Messages
-
An error occurred while backing up the user's home folder
I have a user account that I'm trying to remove from a computer. I have updated to 10.5.2, and restarted a number of times and repaired permissions. There were 3 accounts on the machine I'm trying to remove, and the first 2 deleted just fine. However, this last one, the most important one, will not delete and save to a dmg file.
The error message is "an error occurred while backing up the user's home folder" shortly after beginning the process.
log file shows:
/08 12:52:49 AM authexec[266] executing /System/Library/PrivateFrameworks/DiskImages.framework/Resources/diskimages-hel per
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] 2008-02-28 00:53:13.213 writeconfig[209:10b] DILDiskImageCreate: internal error - missing kDIHLCreateImageComponentsKey in return dictionary
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] 2008-02-28 00:53:13.230 writeconfig[209:10b] DIHLDiskImageCreate failed: 999 (options:{
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] "create-content-spec" = {
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] "iff-spec" = {
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] "any-owners" = 1;
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] "copy-uid" = 501;
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] "no-cross-dev-nodes" = 1;
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] scrub = 1;
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] "skip-unreadable" = 1;
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] url = file://localhost/Users/woneal/;
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] };
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] "nbi-spec" = {
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] filesystem = "HFS+";
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] layout = SPUD;
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] };
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] };
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] "create-target-spec" = {
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] "image-type" = UDIF;
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] overwrite = 1;
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] url = file://localhost/Users/Deleted%20Users/woneal.dmg;
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] };
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] "suppress-uiagent" = 1;
2/28/08 12:53:13 AM [0x0-0xe00e].com.apple.systempreferences[197] })
any ideas?This is the correct steps to solve this problem:
1. Cancel the update (with the backing up error, of course)
2. Do a manual backup
3. Do a manual restore (your password to unlock your backup file is your AppleID password, not your IPhone keypad password)
4. Now Update your phone. This time the backup should work.
5. After it is updated, it will automatically restore, if you choose to restore not to set up a new phone.
And yes, copy all your photos manually. Your backup probabally won't include photos.
If this still doesn't work, try to stop your anti-virus software. -
ICloud for pages app not working on network users having home folder on Mac Mini Lion server
Does anyone know how to make iCloud for pages work on network users having home folder on server, having home folder on local Client iCloud for Pages works fine but when home folder is on Server iCloud for Pages app does not work. My Clients are Running Mountain Lion 10.8.2, my Server is a Mac Mini Lion Server.
Hi Tim,
No fix yet, my home folders reside on a thunderbolt external hard drive, I also tested having home folders on default server HD and no changes, I called Apple Support a while ago, they replicated the issue, it just does not work on network users, they did not say when will it be fix.
The version of Pages I am using is from the Apple Store.
Hector -
Network user, network home folder, and the login keychain
I've got everything set up in WGM. I can log the user onto a workstation, and the home folder maps to the appropriate network location.
What I can't seem to do, is get a login keychain working. The keychain exists, in the proper folder on the network home folder. Keychain Assistant First Aid says everything is hunky dory. The problem is that the login keychain won't show up on the keychain list, nor can I add it. If I delete the file from the networked location and run first aid again, it says the login keychain doesn't exist and proceeds to create it, just like I'd expect. Only problem is, the keychain still doesn't show and I can't use it!
So any time I try to save email passwords, Safari passwords, etc. it errors out. Going through the prompted reset dialogs doesn't seem to do anything. I'm not seeing any console messages pointing to errors, either.
Anybody gon any ideas?Ok then, I got one for you. Similar sort of thing. Just created a 10.6 server, created all the relevant users within WGM, then imported the home folders from the previous 10.5 server. Ensured all new UIDs matched the UIDs from the 10.5 WGM because it then simplifies permissions - i.e. all the permissions are recognised by the new server automatically for the right users.
Now for one of my users, her login keychain is never open by default. When you start Keychain Access (she's on 10.5.8 btw) you get the System keychain and the System Roots list of certificate authorities, but no login keychain.
Have checked the permissions of her ~/Library/Keychains/ folder and they're correct, as are the permissions for ~/Library/Keychains/login.keychain.
Double-clicking on the login.keychain file opens it up just fine in Keychain Access, however as soon as you close KA and re-open it, the login keychain's gone again.
I've tried importing a keychain, adding an existing keychain (obviously the login one) and creating a new keychain called login, none of which work - there's no error, it just ignores me.
I'd rather not create a temporary user account, transfer all the docsuments/mail etc, delete the original and recreate a new one using the old name and copy everything back, but unless someone can help me out, that's what I'm going to have to do.
There has to be some guru's out there somewhere that can help???
Thanks in advance,
Matt -
Can I use "~" in Automator instead of user's home folder?
I want to create an Automator action that I send to someone that can put a file in their iTunes Folder. If I create it on my computer however, Automator uses the actual file path to MY iTunes Library.
Is there a way to use the "~/Music/iTunes/" to have Automator use a relative link to THEIR home folder?
Can't figure this one out. ThanksUse ~username/Music/iTunes
Be aware that you will have to change the permissions on ~username's Music and iTunes folders to allow you read and write access. All users be default have read only access to other users' iTunes folder and no access at all to the Music folder. -
Creating a user without home folder ?
Hi
Can i create a new "User " programatically(iam using to do this) without having a home folder for that user ? Let me explain what iam doing basically.MY application tracks complex deals,financial transactions between corporate firms.Any valid user(called as Member) to this system can create what is known as a "DEAL" for which associated documents have to be managed among other things.For this i start off by creating a new user in the IFS with user name as the deal itself(DealCode which is the DEAL's code is the User name ).(this account will have a home folder and will be /home/<DealCode>).This account will hold all documents pertaining to that DEAL .Now can i create users(rather Members) who can access this account for Deal ?I do not want the Members to have a home folder but when they login their home folder should automatically be the Deal's home folder for which they are authorised.So what is the best way of doing this ?and is this the right approach ?
thanks
Sampige
nullI'm trying to understand your model.
I think I understand this much.
Each Deal is has it's own folder.
Members create Deals.
A Deal will be accessed by Many Members.
What I'm not sure about is can a member access many deals, but I would expect this to be the case.
My gut feeling is that you do not represent each deal as user with a home folder. When a new deal is created I would create a folder for that deal and a new group which will be used to control who has access to that folder.
The group will be used to control which members have access to the folder containing the deal. If a member has access to the deal they should be added to the group which has access permissions on the folder.
When a member has access to deal their home folder will contain a link to the folder that contains the information for the deal
When a member logs in they will see one folder for each deal that they have access to in their home folder.
Does this help -
Hello. I have deployed roaming user profiles in our home office. We are using Windows Server 2012 on our datacenter computer, which has a partition with all our home directories. All was working beautifully for quite some time.
I re-installed Windows 8.1 Pro on my laptop. I am able to log in to my profile from the new installation.
The problem that has started happening seems to be some sort of permission problem with my home directory, but I am not sure how to go about diagnosing it. I haven't changed anything in the policies or remote profiles.
The symptoms:
When I try to run an installation program from my documents/downloads/desktop (remote) folders, UAC asks for the administrative credentials as expected, and then I am asked to enter my user credentials. If I do so, I sometimes get a message about duplicate
connections to a share, and the installation program does not execute. "Multiple connections to a server or shared resource by the same user, using more than one user name, are not allowed. Disconnect all previous connections to the server or
shared resource and try again." I am confused, because I am entering credentials for the same user name as the one I am logged in with.
To work around, I have to copy the executable to a folder on my workstation hard drive and run it from there.
Another symptom is when I download anything from the internet, chrome will reflect a "Failed - Download error" message with the download. If I re-attempt the same download several times, eventually it will succeed. This appears to be due to my
downloads folder being on the remote computer.
I am looking for any guidance on how to remedy these symptoms. I suspect there must be a setting I have forgotten to change in the local computer, because nothing has changed on the server since it was operating properly.
Thank you for your time.Hi Exintrovert,
Thanks for posting here.
According to your discription above, you can check the microsoft artical as below:
https://support.microsoft.com/en-us/kb/938120/
Would you please have a try the work around in the artical and then let us know the update?
Looking forward to your feedback.
Best Regards,
Elaine
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected] -
Losing home wireless connection intermittently
Every so often, I have to re-enter the key code for our home wireless router into the iPod Touch (64gb). Most of the time I don't, and the Touch works like you'd expect - immediately connecting to Safari, local weather, everything internet-wise.
Unfortunately, for the past few weeks there have been a couple of occasions where the Touch apparently has forgotten the key code as nothing connects. In fact an entry screen pops up saying 'wrong password' or something to that effect, and asks for the password to our home router (which it specifically and correctly names). However, passwords don't work, but re-entering the key code gets it working again.
This has been a pain as the code is about 24 alpha-numeric characters long. I have to look them up in a safekeeping spot which is a bit of a hassle.
Does anyone know why the iPod Touch would be losing this information only on occasion?
Thanks in advanceTo check on or change things on a router is actually done through a browser - you can use your Mac or your son's PC, doesn't matter. If you type in http://192.168.1.1 in the browser window, you will open the router control software. If you haven't set a password (which you should do) you can get into the router control software and make changes to suit your network. You will probably want to review the router documentation before you do this or view the manual online.
Here's some router terms defined:
SSID is your network name. You can choose to broadcast it or not. For troubleshooting I would broadcast it.
WEP is an encryption format for wireless networking. It is dated, doesn't work well with the touch, and is best replaced with WPA2-psk.
MAC address filtering is a security scheme that limits connections to devices you select, each of which as an unique MAC address. Leave it turned off.
DHCP is a routine that assigns IP addresses to devices on the network. This works for wired and wireless devices.
When you are looking down through all of this stuff, note the firmware version the router is using. Check the Linksys website for newer versions of the firmware. Do download and install them - that alone may correct your problems.
Take your time learning some of this and let me know when you are ready for more. -
Losing Home Sharing connection on Apple TV when Mac goes to sleep
Just got the 2nd gen Apple TV all setup with home sharing to my Mac Mini library with all the wake on sleep options activated in OSX as well as the latest Airport Extreme router. However, when my Mini goes to sleep, the AppleTV eventually loses the connection and I have to physically wake up the Mac to get the library back (it's in a different room of course). If I connect via my laptop, iTunes still shows the Mini still active like it should (ie. everything is setup correctly and it wakes up when accessing the library)), but it looks like the AppleTV implementation isn't doing the same (perhaps Apple can fix this in an update). Has anyone else successfully been able to access the home sharing library once the Mac goes to sleep? I'd hate to have my Mac on all the time and thought the whole purpose of the new Airport Extreme and wake on LAN options in 10.6 Snow Leopard was to be able to do this. Any suggestions or tips? Thanks
I have a similar but slightly different problem. My Mac never goes to sleep so that's not my problem. My problem is that I sometimes work from home over a secure VPN connection. While logged into the VPN the Apple TV cannot see the iTunes server, which is behavior I expect. But when I log out of the VPN network the Apple TV will still not see the iTunes server. I have to turn off home sharing, and turn it back on. Or quit iTunes and start it back up. Then the Apple TV will see the library. I think my issue and your issue have the same root cause.
-
How do I restrict an sFTP user to just their home folder?
Today I setup a user for on my Mac specifically for someone to sFTP files to my computer.
I tested the connection on another computer on the network, it worked OK but I quickly realised that after logging in via an FTP client, I could got to the root dir and start to navigate around other folders, getting to other home directories, download photos etc.. all of which I dont want the user to do.
I would like the FTP user to login, and only see their home directory, nothing else.
the root shouldnt show any files for example.
I have tried to lock things down and its a bit better, ensuring that a lot of the folders have owner only permissions, and group write only.
However there are some folders that cannot be locked down by default.
/Applications
For example, any user can read any file in that folder, even if the user is only intended to FTP files.
i have tried changing the group the user belongs to (changing it from 'Staff' to 'Nobody') but it doesnt seem to make a difference.
Hope someone can help me with this please, perhaps there is a better way. I have not used any terminal commands in what I have done, everything has been via the GUI (which I guess should be sufficient).Thanks Linc,
that has helped a lot.
Here is what I have done for the record:
1) opened the sshd_config file in /etc
sudo vi sshd_config
2) added the following lines to the very bottom of the file:
Match User MYUSER
# The following two directivces force klm to become chrooted
# and only have sftp available. No other chroot setup is required
ChrootDirectory /Users/MYUSER/
ForceCommand internal-sftp
# For additional paranoia, siallow all types of port forwardings
AllowTcpForwarding no
GatewayPorts no
X11Forwarding no
3) Saved the file and tried to reconnect
4) My FTP Software (on another computer on the network) wouldnt connect! I kept getting an error message:
Error: Server unexpectedly closed network conection
Error: Could not connect to server
5) I opened up the "Console" program and looked at the secure.log under /var/log and saw the following entry:
Aug 2 10:28:57 rmlloyd-imac sshd[6590]: fatal: bad ownership or modes for chroot directory component "/Users/MYUSER"
This made me realise that it was someting to do with permissions on the home folder, but I still dont quite appreciate why the user logging in doesnt have permissions to its own folder as a root.
6) Some searching on the internet yielded something like the perfect answer, that a home directory cannot be set as a chroot directory.
So I changed the ChrootDirectory to:
ChrootDirectory /Users
7) Attempt to login with sFTP again works! What I see is the root appears to be the contents of /Users
Conclusion
This is much much better than the situation I was in originally, I can set access permissions to the home directories, but the ftp user still sees them. Its not perfect but it nearly is.
I really wish I didnt have to mess around in the terminal though, as fun as it is, a check box added by apple to the user UI would do the job much easier. e.g.
"Restrict user to home folder only" - makes the home folder the root
"Restrict user to the following activities" - then have check boxes for sFTP etc...
Then the apple UI can write to the sshd_config for me .
All in all, I am very pleased and have learnt a fair bit from setting this up, so thanks to those that replied and I hope this information helps someone else one day. -
How can a Windows user remotely access their Home folder on a MacOSX Server
I have a staff member who would like to remotely access (ourside of our LAN) their Home folder on our Mac OSX server. Anyone know and willing to share the process?
ThanksHi Brad!
Generally, a VPN solution is best to allow someone access to your company network. VPN provides security and access to some or all of your company's network resources.
If AFP is allowed to pass through the VPN tunnel, then your user would connect via VPN first and then connect to the server with a connect string such as "afp://servername".
Or if your user's home folder is also shared as a Windows share, your user could connect via VPN first and then connect to the server with a connect string such as "smb://servername".
Hope this helps! bill
1 GHz Powerbook G4 Mac OS X (10.4.6) -
All Adobe Creative Cloud apps fail to work, creating new user Home folder fixed it.
We have Adobe Creative Cloud device licenses. I had a user contact me yesterday with these problems.
Adobe Photoshop CC 2014 - error opening, "could not complete your request because the file is locked do not have necessary access permissions or another program is using the file photoshop"
Adobe Illustrator CC 2014 - error opening, "the operation cannot complete because of an unknown error [cant]"
Adobe InDesign CC 2014 - would crash when opening, no error given
These same apps worked when logged in as a different user.
None of these worked:
I tried removing all kinds of user Adobe preferences, Application Support files, etc.
Deleted ~/.adobe
I fixed permissions on the user's home folder.
Renamed user's Home/Library to LibraryBak.
Uninstalling and reinstalling CC.
What finally worked was creating a new user and copying the contents of the broken user home directory over, except for Home/* level hidden files. (eg: .adobe, bash_history) Basically I just copied over the visible folders and used the Terminal to copy of the hidden ~/Library folder.
Does anyone have any idea what the exact cause was? What file/folder could've been deleted to fix this instead of the longer route I took?This wasn't answered and I see that it's still not resolved.
-
Manually created folders in the Home folder won't be hidden to other computer users
First, I noticed this in Mountain Lion, so it's not Mavericks to be considered the responsible.
All Mac users (ok, except guests and limited) come with a home folder, which contains some default created subfolders that are not accessible by other users on the same Mac. That said, I created a couple of folders under my home folder, in order to store some personal data there: I believed that every newly created folder in there would automatically become unaccessible to other users as well as the default ones. Actually not: after a co-worker of mine logged in, navigating to my user's home folder, I spotted the prohibition sign at every system created folder, but not at the folders I manually created! In fact they were accessible, with full rights to read and write. I manually set their permissions and now I hope noone may see those folders content.
Is it a common behaviour? I expected different.
Thankshi there,
yes it is common, since any newly created folder has the default set of permissions, which in current OSX versions and most other unixoid systems is "755" or "rwx r-x r-x".
If you want to change this to the more private setting ("700" or "rwx --- ---"), as used by the subfolders within your home directory in OSX, you need to use the terminal command "chmod" or the Info-Panel within the Finder to alter the permissions manually.
hope this helps,
Chris -
Reinstalling lion server but keeping users/groups including their home folder, mail, etc
I need to reinstall my lion server due to some changes in the DNS. I have a time machine backup of the server.
Is there an easy way to transfer/migrate only user data (home folder, mail, calendar, address book).. I do not need to recover the whole server as some services need to be reconfigured.
Can I use the installtion program as there is an option to migrate from other serves? If so, can I select what to migrate?
ThanksMigration can be handled by the installer or run post-installation by launching /Applications/Utilities/Migration Assistant.app. You'll get three checkboxes: User accounts, applications and "other data." You can exclude certain users from migration, but you can't otherwise alter the list of files brought in from your backup.
You might choose to migrate users and applications, then, post-install, mount your Time Machine backup as a volume and copy over whatever arbitrary data you want to recover. Don't forget to turn Time Machine off so you don't risk clobbering your backed-up data.
Best of luck. -
Home folder in dock for all users (via template)
Hi,
I'm setting up a Mac lab which is bound to AD. I've got the default preferences working via the English.lproj template, but I can't figure out how to modify this so that whomever logs in, their Home folder icon will appear in the dock.
Obviously if I drage the home folder icon into the dock on the dummy account I setup to create the master template for English.lproj, the next user that logs in will have the dummy user's home folder in their dock instead of their one.
Any help would be appreciated.
ThanksI'm not sure I know what you mean. Because these Macs are joined to AD, there are 1300 potential people who could log into them. I therefore need to set this up in the template before they ever login for the first time.
Thanks for your response.
Maybe you are looking for
-
How to setToolTipText for a file in jfilechooser?
I want to set tooltip text for a file in jfilechooser for getting its detail to user without selecting a file as it is in windows explorer(e.g for file size,date modified). Since jfilechooser does not give directly reference to a file without clickin
-
Where is the WebService class located in the Flex SDK?
I checked there and all I found in the \frameworks\source\mx\rpc folder is the IResponder.as class file. There wasn't a soap package or anything... When you do the import mx.rpc.soap.Webservice where is it coming from?
-
Have you tried returning a photo book that has a binding problem? I just ordered 2 large hardcover photobooks and one arrived with the inside binding messed up. Do you know how this can get corrected? They were over $80 and it seems they should not b
-
Why can't I change the genre on the new iTunes
I wish to change the genre of a song on the new iTunes. I right click on the song go to details, write in the genre and then click on OK and yet nothing changes. So how can I effectively change the genre of a song?
-
Airport Time Capsule keeps dropping out
I have just got an Airport Time Capsule to store my photos on from my mac book pro. TC is in bridge mode to my existing router and green light is on. Mac cant find the device. If I disconnect and then reconnect power to TC the mac finds it again f