Using local home directories and OD
I'm setting up 10.5 server and OD. I have 10 mac workstations (all 10.4), each with established users and home directories. I have set up new users on the server, in the directory domain the exact same as they are set up on the local workstations (same long name, short name, and password. Obviously they have different UIDs and GIDs). I have user home folder paths set to None, accept the diradmin folder, which is set to /Users.
When I log in as a OD user other than diradmin from a workstation, I see my home folder as "99". I'm not sure why this is, but it appears to create this home folder locally. I don't like this.
When I log in as diradmin from a workstation, it creates a folder home folder called "diradmin" on the local mac. This is better.
Ideally, what I'd like is the home folder always be located on the workstation, even if logging in from a different machine, so preferences, email, tunes, etc. are there. I DON'T want home directories on the server due to bandwidth limitation of our network. I want home directories to say as-is ((on local machines) and just change how users log onto their workstations (using LDAP instead of NetInfo).
Questions:
1. Can I have the same long/short name and password on the workstation, and in the shared directory? If not, will just changing the long name be enough to differentiate, or does the short name also need to change?
2. Is it possible to have my home folders set up as described (living on the local workstation and shared in logging in from a different mac)? If so, how? I've read the apple docs and nothing seems to clearly describe how to do this.
Thanks much.
Let me understand what it is you're trying to do.
You want user 'joe''s home directory to be stored on machine A.
Any time 'joe' logs in on any machine you want it to connect to his home directory on machine A?
Likewise, user 'jane' has her home directory stored on machine B.
When she logs in on any machine you want that machine to connect to her home directory on machine B?
I don't see the difference between doing this and having all the home directories stored on one central machine - you're still using the network to access each user's home directory from a different machine, except maybe for the times when the user logs on to the machine that hosts their own home directory.
It doubtless can be done - just set each user's home directory in Open Directory to be the AFP URL that points to the machine with their home directory, but each machine in the network would have to act as an AFP server to share out the home directory, and you wouldn't have any central control of home directory content for backups, etc.
You'd also need to edit UIDs since that's how all file ownership is tracked. Right now every user probably has the same UID since they're all working on standalone machines. When you move to a central user database that breaks, so you'll need to assign new, unique UIDs to each user in Open Directory, then change all the files in their home directory to match the new UID.
Similar Messages
-
Disabling local home directories breaks the software update
Hello,
I have my mac authenticating to a win2003 server and have disabled the local home directories but now the software update gives an error when it tries to download to the networked home directory library...etc....I have checked and rechecked the permissions... has anyone else had this problem?
All suggestions welcome.
Thanks
LoriWell, after several hours on the phone, I'm convinced that somehow my ISP is blocking the Software Update address. Soft. Update works when I connect to other networks.
I asked Apple for the address that Software Update is trying to connect to, but they wouldn't give it to me. Privacy and Security issues for them, apparently. Consequently, I don't have a web address to Ping. That was a good idea , though. My ISP couldn't seem to help me. So, at this point I'm not sure what else I can do except...
In a month, my satellite internet provider is sending a stand alone sat-modem that I'm going to use instead of the set up I have now: involving a USB modem and sharing the internet connection through a specific computer that always has to be on and connected. (the satellite internet is a "one way" system that uses dial-up for the uplink and comes high-speed back down through the satellite) This new modem will serve as the dial up modem and also has two ethernet connections so I can send one directly to my router and the other to my wired desktop. I hope by taking the host computer out of the equation I'll also solve this issue. Who knows.
Anyway, thanks for the info. I appreciate your feedback and if you have any other ideas, I'd love to see them.
ben kaufmann -
Portable Home Directories and Login Hooks
We recently switched from Network Home Directories to Portable Home Directories. We used to use login hooks to do all kinds of nifty things to a user's home folder at login, but now it's complicated. I can't figure out at what point in the login+sync process the login hook executes.
If the login hook executes before syncing, then I need to modify the network copy of the home folder, i.e. Network/Servers/servername/.../username. If the login hook executes after syncing, then I need to modify the local copy of the home folder, i.e. /Users/username. Unless I'm mistaken, you can't just use the tilde (~) in the script to denote the path the home folder, so you have to list the path explicitly.
My testing seemed to result in inconsistent behavior. Can anyone give me some guidance?
(Keywords: Loginhook Logouthook Login Script Logout Script Mobility Mobile PHD)Thank you for the advice, Syth, but I'm already aware of the basics of writing and implementing login and logout hooks. I wrote a lot of them when we were using Network Home Directories. The root of my question has to do with Portable Home Directories and login hooks.
This is a computer lab environment where every user has their own account, network home folder, and "Mobility" preferences set in Workgroup Manager. When a user logs into a lab computer, syncing kicks in and they work from a local copy of their home folder which then syncs to the server at login and logout.
So the core question is: Do login and logout hooks execute before or after login/logout home syncing occurs?
For example, if a user with a brand new network account, i.e. who doesn't even have a network home yet, logs into a computer, what's the order of events? I would hope it would be:
1) server creates network home
2) computer creates local home, i.e. syncs
3) login hook executes
But my testing has been inconsistent. Anyone have any experience or insights to share? -
I have ipad2, using wifi home network and ios7. Why I cannot play youtube...help!
I have ipad2, using wifi home network and ios7. Why I cannot play youtube...help!
You don't download anything at all. The feature is built into the iPhone 4 already. Your carrier has to support the feature and there might be an extra charge to use it.
You can read about how it works here.
iOS: Understanding Personal Hotspot - Support - Apple -
My iphone 4s' screen is black, but it's still on and charging. I broke my lock screen button so I am unable to turn it off using the home button and lock button. Is there any other way my phone can restart or turn off ? Is my phone broken for sure?
Kbkohn wrote:
I am in tears right now because I entered all my 11month old sons milestones into my phone and now I have nothing I'm so upset and am hoping there is a way to get this information back.
Most intelligent people would not store such sensitive data on a device that could so easily be lost, stolen, or damaged. Even if they chose to do so, they would use the device as designed and regularly sync and backup that device as described in the User's Guide.
Have you done so? If you have, all of the data is either in iCloud or iTunes on your computer. Replace the device and restore the new iDevice with the backup of the old one. -
If i reset my iphone using the home button and the sleep/wake button will my information like contacts,email,apps etc be lost??
No.
...JER -
My Word files are corrupted. When I open 'Get Info' then 'More Info' I find 'Photos for Personal Use or Home Display' and 'Authors' : Technology. - Nothing to do with the file I'd just written. My most recent files can't be saved or opened.
Is this Malware or some other kind of attack? I grabbed photos yesterday from what seem to be freely available pictures online. I discovered Firevault and Firewall were both turned off. (I hadn't checked before.) Any suggestions?Apply the two fixes below in order as needed:
Fix #1
Launch iPhoto with the Command+Option keys held down and rebuild the library.
Since only one option can be run at a time start
with Option #4 and then #1 as needed.
Fix #2
Using iPhoto Library Manager to Rebuild Your iPhoto Library
1 - download iPhoto Library Manager and launch.
2 - click on the Add Library button, navigate to your Home/Pictures folder and select your iPhoto Library folder.
3 - Now that the library is listed in the left hand pane of iPLM, click on your library and go to the File ➙ Rebuild Library menu option.
4 - In the next window name the new library and select the location you want it to be placed.
5 - Click on the Create button.
Note: This creates a new library based on the LIbraryData.xml file in the library and will recover Events, Albums, keywords, titles and comments. However, books, calendars, cards and slideshows will be lost. The original library will be left untouched for further attempts at fixing the problem or in case the rebuilt library is not satisfactory.
OT -
Help with Portable Home Directories and AD
Is it possible to implement "Portable Home Directories" without an Open Directory server, using just binding to an Active Directory Domain. (no "Golden Triangle")?
We are just starting to integrate Macs into our company (finally!) and I'm looking for the best way to allow Macbook Pro users to have their files sync'ed with their NW home folder and still available locally when they are offline.
I'm able to bind to AD successfully but can't find any documentation on how to make the sync happen.
ThanksIf you are putting Macs in a LARGE business environment then bookmark the site www.MacWindows.com. They do nothing then connect lone macs into Windows Domains. Pay attention to the links on side panel of the slash page to get to the section you want to read the reader reports.
-
ARD 3.2, network home directories and two admin workstations = problems
Hello:
I've got a situation where I've got two ARD admin workstations in two separate classrooms where the instructors have network home directories. If an instructor switches from one machine to another after setting up ARD on the first (i.e. entering a password, making computer lists, etc.), they are asked to enter their ARD password and they are not allowed in no matter what password they enter. It seems that there is some machine specific information in the ~/Library/Preferences/com.apple.RemoteDesktop.plist file because the only way around the problem that I've found is to delete this file and re-enter a password. This creates a new plist file, but the problem comes back as soon as the user uses ARD on the other admin workstation. Each machine has a separate (licensed) copy of ARD on it.
What's the right way to use ARD with admins that have network home directories?Hi,
You mentioned the machines are all from a single image. I realize you are an experienced ARD user. However, there are quirks in this app at any stage of development. I'm sure you already applied a unique name to the shared network name and have no DHCP conflicts as well as checked that all the accounts, not just the admin account that permissions are checked. Although you may have all the correct ports addressed and configured, there is no accurate accounting for the gremlins. These play havoc across the network. Sometimes the only thing you can do is go to the machine and walk through the settings as if it was the first time. I can't tell you how many times a problem has resolved itself after just logging into the admin and redoing the settings. I mean the exact settings that are already selected. Sometimes the settings were actually wrong, even ones that came from an identical image. Like forgetting to select the observe and control selections in the sharing options for all the users. Other times it was simply deselecting and reselecting the options and restarting that snapped the machine out of the funk.
Aside from the occasional discovery of admin setup issues, I live by the motto "the simplest solutions are usually the best, and should be tried first". Glitches do happen though. Sometimes running the scanner and reselecting and dragging the same machine into your user lists can refresh a connection that is not acting properly. I have detected countless quirks that cause strange side effects. Do a get info on the specific machine and delete the IP, then make sure you have the "name".local in the DNS name field. Re-enter the admin or try a user account name in this experiment and test this. This has given me clues to setup issues before having to go to the machine. I know this stuff sounds simplistic but it has solved most of my issues.
Good Luck -
Unable to use network home directories on a 2nd volume
Hi,
I am having a problem hosting network home directories on 10.4.4 server. Through the help of AFP 548's instructions I have had them working fine when the users folder is at /users however I would like the data stored on another hard drive for easy backups, etc. But when I set this up I just get the unable to connect due to an error message on the client machines.
I have tried setting up another folder on the boot volume and that works fine so I think the settings I am inputting are correct but as soon as I select a folder off the boot drive I run into problems again.
Any ideas?Any ideas?
Yes, but it might also be helpful to know specifically what error message your users are getting when they try to log in.
If you've correctly set up your share point and network mount record as criss describes but you're still having problems, it may be due to the length of the path to the user's home folder. For more information on that point, see KnowledgeBase article number 107695.
One question: can your users find their home directories when they log in to the server using Go > Connect to Server in the Finder?
David Walton -
Portable Home Directories and Entourage
I going to be implementing Portable Home Directories into our office, but I am trying to figure out what I want to be syncing.
The office uses Entourage and having 60+ users. From what I can if I exclude the microsoft user data folder I don't get the account to show up in Entourage when I switch to another computer.
I really don't want to be syncing Microsoft User Data folder for each user onto the server. Considering we have a mail cap of 2gig some users are larger due to historical reasons and rank. We also use public folders heavily and some public folders can be about 10gig.
So my question is, is there away to get around this. Can I get the account information to sync for Entourage, but not the email. I see how it works with apple mail were it syncs the mail folder, but excludes the folders that contain the email.
I have a feeling the answer to my question no, but just checking if any one else has found a work around.Since Entourage is a DB it would sync the whole 2GB or 10GB every time. This is why Apple pushes there product as thy use a flat file system where only the files that changed would be sync'd. Entourage is a db and since there is no program out there that can open the db up and just sync or backup what has changed you will sync the whole profile /db.
-
Using Portable Home Directories with more than one client
Hi, I've got a general question about Portable Home Directories (PHD) that I'm hoping someone with more experience can help me with. I've only ever tied used PHDs to tie a Network Home to a single laptop in the past. But now I'd like to sync the home directories of a user that uses both an iMac (in the office) and a MacBook Air (on the road).
Any caveats to watch out for if we do this?
What if the user is logged into both machines at the same time?
What if the home directory on the iMac is larger than the entire SSD on the MacBook?
Appreciate any advice before heading down this path…well... my english is not so good but i will try to explain it to you...
iTunes have a funcion that put the music in the iPod automaticaly and it will put the music of THAT computer in your iPod.
so when you conect your iPod go to options and select put the music manually or something like that (i have it in spanish XD)
or go to the "help" in iTunes > "help iTunes" then... charge iPod > charge iPod manually
this is dificult to explain in english im from argentina XD i hope you understand me XD -
Trouble with network home directors and keychain
Hello all,
I have recently started to dabble into Managed Accounts using 10.4.11 server, however I am running into sporadic issues. First of all, Keychain access to users is extremely flaky. All of my users' files are being imported from existing local accounts, so I'm betting that my import procedure has something to do with my problems. Fortunately all of my local accounts have long ago had their uid's changed to mirror the users workgroup UID, so I haven't had to bother with changing permissions on any files. My import process goes like this.
First, I create the users home folder in the Workgroup Manager. Then, I log into the users computer via ARD, take control, connect to the users Home Folder, and copy all of the contents of the users local folder into the Network Home. Once this is done, I apply the correct permissions to the users home folder to ensure that no files may have been overlooked during the import process, and then I log out of the users account, log into the administrator account, and completely delete the users local account. I then add the computer to the Servers managed computer list, add the user as the sole authorized user (other then Administrators of course), restart the computer, and then log in as the workgroup user.
Once this is done, I usually have several issues with the Keychain in authorizing the workgroup user to use the existing keychains. Even after logging back in to the local Administrator account and completely deleting all existing users' keychains, the user has the same issues. To my untrained eyes, some programs have a hard time accessing the proper keychain, or remembering that the keychain has been altered.
The second problem that has only recently cropped up is that some users are loosing the ability to use their keyboard in certain applications. This happened to me maybe once or twice in the last couple of days, but starting today, and in the last 2 hours, has had this happen no less then 10 times. The only program that I have seen this happen to is Microsoft Excel 2004, and it is also the only program that I have had it happen to me on.
This is only happening on users who are using Leopard 10.5.4.
Any help is appreciated. Also, is the macos-x mailing list dead? I haven't seen any posts to it in almost a week...
Thanks,
JamesHi
I’m sorry that the guide is unreliable for you, although it does seem strange that it is. Perhaps there is something fundamentally wrong with the configuration of the AD Server?
Apple have made binding clients to Active Directory relatively simple and easy since 10.4. You had to work a little harder in 10.3. All I can add is successful integration depends almost entirely on how well the AD Server is set up. It might be worth your while to look more closely at that for a solution?
Speaking for myself I have never really had a problem and as far as I can tell all of the installations I have been involved with that required AD-OD integration are still working as desired. Some of them going back 2 years, that’s pretty reliable don’t you think?
Tony -
Portable Home Directories and iphoto - problems
Hi
We have recently set up the 'mobility' funtion for our staff via our 10.4 server - thuse creating Portable Home Directories. This all seems to be working fine and documents sync perfectly. What is not behaving is iphoto - we keep getting synchronization conflicts based around iphoto files - not the images themselves but files such as:
Library6.iphoto
iphoto.ipspot
Dir.data
Albumdata.xml
.lpoptions (not sure if this one relates to iphoto but is recurring on numerous acccounts)
Anyone have any clues on this. Iphoto does not seem to be syncing the images at all........and I can't resolve the conflict.
ChrisiPhoto works fine with my users so I can't offer much assistance there, but .lpoptions is where the default printer is stored, and that's typically not something you'd want to synchronize. I personally exclude it.
-
Local home directories vs network home directories?
We have an existing linux server which handles web, ftp, dhcp and email for our design group. I am planning the integration of a new mac os x server to handle shared work folders, client archives, shared resources (stock images etc) with eSATA raids as a fail over back up. I have been doing a lot of reading and research, but have not arrived at a best solution for local vs network homes. Our users never connect from another mac workstation, and so utilize a number of iLife content mgmt apps. They all have large personal photo libraries, music libraries etc on their workstations. In addition, many of our projects involve working on extremely large photoshop files, video files etc. I am leaning towards leaving these users as local homes as there is concern over performance on the network. Pros? Cons? am open to any input before establishing final plans for osx server services.
Network is cat 5e ethernet with 3 gigabit switches (one on each floor of a 3 storey building with an uplink between ea floor)
more macs than I can list Mac OS X (10.4.8)Is the local home with synchronization of
selected folders a variant of mobile home? or mobile
user? (newbie osx server admin, still digesting the
apple manuals!!
Ok what I believe your asking is can you sync your portable home directory ~/shortname to the Server /HomeDir/shortname and ignore the lets say ~/shortname/Pictures or Music Directory? Since you only want Work related files on the Server and only have to backup 1 big user directory with only work related file on the server? Well the answers is a big YES .
What is required takes a bit to setup. Heres a quick list of things to do and that need to be in place for it to all work smooth.
1. OS X Server Software with OD/LDAP setup 10.4.3 or higher!
2. All Client 10.4.3 or higher and binded to the OD/LDAP Server.
3. Setup Workgroup Admin/Preferences Management. You can set rules for a Group or individual Users. Groups being the preferred way. In here you can set the Path to the Files & Folders to ignore during the Sync. You can do lots of other MCX Managed client settings here and if your OD/bind is good it works great.
4. You'd have to move stuff around on the Local units i.e. ~/oldfiles to New ~/shortname which will be created. There a few way to do this and hold Permissions and all that just read about Mobile homes more. Think of it as a Laptop connecting for the first time to a binded OD server. Lots of folks have different ways.
My clients also work with Large files (PS, ID, ai) and a network home was a bit of a pain. To be honest it's not the large files that get you it was the BS cache files that slow it all down. There are now work arounds for the performance hit but took time for the community to figure it all out. I had them in 10.3 working on files in the /Users/Shared/ directory and moving finished work back to the server after.
10.4 has been the saviour of my sanity with mobile homes. Servers Fast Clients Fast, I have full control of clients (<--admin god complex), and all lived happily ever after... for the most part.
Maybe you are looking for
-
Acrobat cannot connect to the Review Server
I've been invited to a shared review on Acrobat.com. When I download and open the PDF from the Acrobat.com invitation email, I get this error message: Acrobat cannot connect to the Review Server: Adobe online services. If I click the "Check for new c
-
Technical Support “Tshering” Changed my Adobe Account/ID, and Permanently Deactivated Creative Cloud, and told me to contact Adobe Forums if any problems uninstalling/reinstalling CS5 Design Premium (perpetual subscription) continued. I am contactin
-
Events, and thumbnails for each picture can be seen on iPhoto, but the files can't be opened..."the volume cannot be found". It's only happening to the two or three most recent events, older pictures are still available.
-
Best way to migrate applications from Lion to Snow Leopard?
Hello! own a mid 2011 MacBook Pro and upgraded to Lion back when it came out. I've now realized that Lion and CIFS network drives don't get along well. I want to downgrade back to Snow Leopard. I didn't have any Time machine back ups or anything like
-
Master-Detail Key relationship
Hi All, I am unsing EJB3.0 and Toplink POJO. This is related to foreign key relationship. I am having two tables master and detail table. In both the table there is no record (Newly created table). I want to design the page which will accept master v