Workgroup Manager doesn't create home directories for OD accounts

Similar Messages

• Workgroup Manager won't create home directories; no error message

  This is quite frustrating. For the past 3 years or so I have used the same procedure to add new users to my LDAP directory:
  1) In Workgroup Manager, click the New User button
  2) Assign name and password under the basic tab
  3) Assign group memberships under the Groups tab
  4) Under the Home tab, select the right place (nfs://my.server.org/Volumes/Users), click Create Home Now
  5) Click Save
  Suddenly, when I try to do this yesterday, workgroup manager won't create home directories anymore. I could probably do it manually, but I'm not sure how to get all the right skeleton setup in there. But my main question is, why doesn't this work anymore? Why can't I at least get an error message instead of being silently ignored?
  I share admin duties with other people, so it's possible someone installed an update recently; all I can really say is that I'm running Leopard Server 10.5.8 right now, and can find out whatever else is relevant.
  Any ideas?
  Thanks!
  ~Ben

  Thanks for the pointer to createhomedir - that did indeed do the trick. (How on earth do people find these little nuggets).
  I hesitate to mark this as solved however - it's a functioning workaround, but does nothing to explain why on earth the GUI suddenly stopped functioning.
  But in the (likely) event that that question never gets answered, thanks again for letting me get on with working!

• No longer able to create home directories

  I'm having a slight problem here. Recently after adding some new users, with PHD activated I have been having problems creating home directories on the server.
  If i am in local node I can create home directories, but once i switch over to LDAP/myserver home directories are no longer created ---> this leads to me no longer being able to sync homes or do anything.
  Does anyone have any advice for me? I've deleted the users directory, created new ones, turned the ldap service off, restarted, turned it back on, restarted, added new users tested tested tested to no avail.
  Any help would be appreciated.

  My Woes continue :
  So far I have reinstalled OSX server, re-set everything up for an OD master, dns ,afp ect. And I am still having issues with WGM to create home directories for my users. SO, i decided to create all my users and than type in terminal : createhomedir -s --> the end result no changes.
  Next I tried
  Createhomedir -b and voila I get all my home directories built. Fantastic. Or so I think. so i start to log all my PHD users in, everything seems good. Than i start a test, simply downloading a file to my desktop. I hit sync now. The sync window comes up, few conflicts but other than that everything looks great. I goto the users home directory on the server and no changes.
  So where are my PHD's syncing to?
  This is getting very frustrating because I am pretty sure nothing is being backed up anymore.
  any advice would be great.

• Creating Home Directories

  Hi,
  I'm still fairly new to Mac Servers (come across from a Windows background), and am having trouble creating the home directories for the users I've created.
  Initially I created the user (just bog standard users - no mail, no calendars etc), bound the client machine to the server in Directory Utility (all working ok so far), even added the client machine to workgroup manager.
  However, the user was unable to logon - just a shaking screen after each logon attempt. Confirmed the password etc, all ok.
  Deduced (after looking on here) that it may be because the client has no home folder (a prerequisite for 10.5, even though it doesn't tell you that). However, coming from a Windows background, am unfamiliar with the syntax of network paths for Mac/Linux.
  The home folder location I've created is on the server: Server HD/Users/Shared/ and it is shared in Server manager as a Share Point. Actual folder permissions include Users: Read and Write, and share permissions are the same. AFP is on.
  In Workgroup manager, the syntax for the three fields I currently have is:
  Share point URL: afp://servername.domain.co.uk/Users/Shared
  Path to Home folder: username
  Full Path: /Network/Servers/servername.domain.co.uk/Users/Shared/username
  I click OK, then click on Create Home now, then Save and it returns the error: Unable to create Home Directory. The home directory could not be created because an error occurred.

  Hi
  +". . . The home folder location I've created is on the server: Server HD/Users/Shared . . ."+
  This is possibly where the problem lies? By default OSX Server, after installation, creates Users, Groups and Public as default share points. You only have to enable AFP and those shares are instantly available once users have been created to access them.
  Don't be tempted to delete the default Users and Groups folders as the Server will complain. There is already a default Shared folder that the Public folder resides in. Don't be tempted to delete these either.
  There is no need to create another shared directory within the top level User Directory as that is already being shared. Once you promote to OD Master and populate the node with users all you have to do is set the default Users folder to be auto-mounting for users Home folders. There is no further need to share it or define permissions. These are correctly set when the folder was initially created.
  In Workgroup Manager you should see the path as afp://fqdnofyourserver/Users. That's all you need. Simply select it and click Create Now and Save. Navigate to the Users folder and you should see the home directory has been created. There is no need either to tinker with permissions for individual users' home folders as these are correctly set at the time of creation. The default permissions model used for users' home folders is standard POSIX.
  For clients to access networked home folders correctly it's a good idea if the server's IP address is used to resolve DNS queries. Assuming the service is placed with the server?
  Unlike Microsoft, Apple don't tinker with Open Source OpenLDAP as much. They still modify it to suit their purposes but it's more standards based. If you don't want to use the default Users directory on the boot volume then simply un-share and un-automount and define a similar directory on another volume (a RAID for example) instead. Define it as a Share in Server Admin and set it for auto-mounting home directories. It will show in WGM with the correct path. Avoid long names and spaces if you can. You could stick with Users as it works.
  There is no need to resort to the command line in any of this as all the tools you need are there in the interface. Provided DNS is correctly configured on both pointers and you have not used .local as the basis for DNS it does work as it's supposed to and it works well.
  Tony

• Crearting Home Directories for AD clients

  I am trying to create Home Directories on an Xserve for AD clients. We get a permissions error when the PC server attempts to create the folder.Am I missing a step ?

  Three steps actually. >=)
  1: Yell loudly
  2: Push the PC server off the desk
  3: Kick it across the floor.
  Okay okay... Just kidding.
  It's an issue with the PC server trying to use it's own permissions to create the folder. Make sure the directory that the PC's trying to place in has the "everyone" posix permissions set to read and write.
  After you're done creating folders, set it back to read only.
  -Graham

• I want to create home page for my application with short URL

  I want to create home page for my application with short URL
  as when I want user to use my application user must go to URL like this
  http://127.0.0.1:7101/My-Project/faces/app/empModule/allEmployees/viewMyEmployees.jspxI want the user to use short URL , How can I use shorter URL not all this one.
  I want shorter URL for my application not to write full path .
  thanks in advance.
  Edited by: user611775 on Oct 31, 2010 10:21 PM

  Well,
  it's up to you. The first part (Mcit-Project-ViewController-context-root) is the context root which you define in the view controller project. 'faces' is the name the servlet filter reacts on. You can't omit it but shorten it in web.xml. The rest is your directory structure. I'm not sure how to shorten this other as to move the jspx files back into the web root folder.
  By the way an ADF faces app never uses the .jspx at the end of the url. If you specify '.jspx', you only render the page but don't start the work flow.
  Timo

• How do i turn on home sharing for my account?

  I am trying to use the apple tv remote app from my phone, but it indicates I must turn on my home sharing for my account, I dont know how to do this.

  Welcome to the Apple Community.
  You enable homesharing with in the remote app itself under settings.

• How to create Charge indicator for Bank account

  Dear SAP Gurus,
  Please advice how to create charge indicator for bank account under - Set Up Bank Determination for Payment Transactions - activity in automatic outgoing payment configuration.
  There is no customizing option in F1 help option. I also try to search in IMG there is also no link for the same.
  Early reply would be appreciated.
  Regards,
  Prafful Kansal
  9910432881

  Dear,
  Charge Indicator is freely definable field, you can put any value you want.....
  Regards
  Chintan Joshi

• Problems creating home directories

  I'm having a lot of trouble trying to configure user home directories on a Windows 2012 R2 server running active directory.
  What I've currently done is created a share on the drive called "home" and made it read/write accessible to "authenticated users".
  In the user profile where I set up the user home directory, I select the drive letter (this case H:) and put in the path as "\\fs1\home\%username%".
  On my windows 2008 server, after I hit apply, it would create a folder with the username in the home share that I created.  It doesn't do this on the 2012 server.  Am I doing something wrong?  I verified that \\fs1\home\ was accessible remotely,
  and it is, but there are no user directories created in it.
  Any ideas?  Thanks!

  Hi,
  More information for you:
  Automatic creation of user folders for home, roaming profile and redirected folders
  http://blogs.technet.com/b/askds/archive/2008/06/30/automatic-creation-of-user-folders-for-home-roaming-profile-and-redirected-folders.aspx
  If these links couldn’t help you solve this issue, please post out related errors and warnings for troubleshooting.
  Best Regards,
  Amy Wang

• Workgroup Manager doesn't affect app restrictions

  Hi
  I've set up a new mac mini with Lion Server, and a new iMac with Lion. I configured a set of network accounts on the Lion Server (its a directory master) using Workgroup manager. I set a group heirarchy for (lets just say for example) "thefamily" with subgroups "theadults" and "thekids". I downloaded the Workgroup Manager app and installed on the iMac, where I used it to connect back to the Lion Server Open Directory and set up application restrictions for "theKids". I set up all accounts in "thefamily" to create mobile accounts. I created a "testkid" account as a member of "thekids" group and logged in via the iMac. Log-in and home-sync seemd to go OK BUT all the applications that I had restricted in Workgroup Manager are still accessible! What can I do to fix this?
  Thanks

  Make sure your user accounts are network accounts. (You need to configure OpenDirectory via the Users Next Steps tab in Server app on the server, then create user accounts from the Server app.)
  Place the restrictions on the Network accounts.
  Log everyone off of the iMac, then log in using a local admin account on the iMac.
  Make sure the iMac is connected to the right OpenDirectory server. Also make sure that network logins are allowed and displayed on the login screen.
  Log out of the iMac and log back in as a network user. You will need to click the Other button on the login screen, then type in the network user name and password.
  This, in theory, should be the necessary steps to make the restrictions work. From what your description I am guessing you were placing restrictions on local accounts (which also show up in Workgroup Admin), and unless you set up OpenDirectory, there won't be any network accounts in LION. (At least that has been my experience so far.)
  Hopefully this was able to help you somewhat.
  ~Mike

• Network Home Directories for all users

  Hi,
  I hope someone can shed some light on a possible issue.
  I work for a primary school in the UK.
  I have Tiger server 10.4.10 running as an Open Directory Master. I have a 1TB XRAID attached to this server where the Home Directories are hosted. I have been told that they are now slow at logging in (I am currently unwell at home so have not confirmed this yet).
  It used to be a magic triangle setup but found there were problems with the managed prefs for the clients not being obtained on startup and network logins not working.
  The DNS and DHCP comes from the AD still.
  The OD has been set up to have the same kerberos realm as that of the AD (is this wrong) as the users are in both AD and OD with same username and password.
  The users Home dirs for the OD are hosted as i say on the XRAID which has a striped array of 1TB so the HDD speed shouldn't be a problem.
  The server is now connected to a 1Gb switch as are the clients.
  I have added more ram to the Xserve (now running on 5GB RAM). I have read that an afp server needs a lot of ram to work effectively. Is this enough?
  I have not set up link aggregation yet.
  The total amount of users logging in at one time will be no more than 40 users at once as there are only 40 mac machines in the school.
  I hope you can help as i would like to have something to go back to school with to tackle this if it does turn out to be true.
  Any more info needed just ask.
  TIA

  Hi. Let me restate so I understand it right. You are using an XServe to host network home folders and also using Active Directory for authentication? I work at a primary school also and we have an XServe that has the users home folder on it, but we also connect to an AD server for authentication. We had some speed issue with logging in but as soon as we set up a time server to ensure that both the XServe and AD server had the same time the trouble was fixed. Hope this helps.

• Airport Disk as home directories for server

  Is it possible to use an airport disk / time capsule as NAS host for home directories?
  I've seen no mention of being able to bind the disk to OD/Kerberos (network accounts).  Seems that would be necessary for hosting home directories.
  Or, would it simply be a matter of creating airport disk users (and passwords) which match those in OD?
  Anybody doing this?
  Thanks!

  When you log in to the linux machine, do you get an error that states that the home directory for the user cannot be found? That error message should give you the path that is set in the LDAP directory as the home directory for that user. This directory needs to be added to the Linux filesystem, and then the Users folder on the OS X Server needs to be NFS mounted (rw) on the Linux machine.
  For ease of transition, I softlink /home to this directory on the Linux machines.

• Workgroup manager crash on creating a new user?

  Everytime I add a new user to workgroup manager, it crash.
  When I launch it again it has created a new user called untitled,
  I can edit that user but not change its shortname,
  so that user will forever be called untitled.
  I run 10.4.7 with 10.4.7 admin tools, even tho workgroup manager still say 10.4.4
  Is there some way I can manually add a user to give it the proper shortname and then edit it with workgroup manager?
  I've had this problem for a long time, and system upgrading and permission fixes doesnt solve the problem!

  I am having the same issues. I will let you know what I find out.

• Workgroup Manager doesn't show all group members

  Hello,
  Workgroup Manager does not display all members of certain a certain group I defined a while ago. I figured out that it is very likely that the group record is corrupt - or at least it is not interpreted the right way anymore.
  What confused me are the different (Open Directory?) Attributes that could have to do with the problem:
  dsAttrTypeStandard:GroupMembers
  dsAttrTypeStandard:GroupMembership
  dsAttrTypeStandard:Member
  dsAttrTypeNative:memberUid
  dsAttrTypeNative:apple-group-memberguid
  I searched the UserManagement_Adminv10.4B.pdf for those keywords, but there is nothing in it. A Google search was of no help, either. Can someone help me with that?
  Cheers,
  Florian Schneider
  PowerBook G4   Mac OS X (10.4.7)   Server Admin Software 10.4.7
  iBook G3   Mac OS X (10.4.6)  

  Exporting the user list does not export the group list, or any related user info.  Including passwords.
  The only sure way to export and import users and groups with any automation is by using the archive feature in the OpenDirecroty tab in server admin.
  Do you still have the old 10.5 system?  If so, run the archive.
  On your new computer, demote the server to standalone.  Then promote it to master.
  Restore your archive on the 10.6 machine, and you should be back up and running.
  HTH
  -Graham

• Seperate Home Directories for Windows and Mac OS Mac Clients

  Hi,
  I have a Mac Mini Server with Snow Leopard 10.6.2, with open directory master set up and then joined to Active Directory and that works fine. The only thing is that I would like the macbooks to log in, and display a home directory that resides on the mac server so they can save their video editting work. So the user has 2 home directories one on windows server one on mac but same user account.
  Can this be done at all???

  Hi
  +"Can this be done at all???"+
  There are a number of approaches you could use? Modifying the AD Schema is one way. This method is generally not considered as a viable one because of the risk of SP updates breaking the modified schema. A popular way is to use the methods outlined by Mike Bombich:
  http://www.bombich.com/mactips/activedir.html
  This involves the use of Augmented Records stored in an even lighter LDAP database that 'straddles' (sort of) both directories (AD and OD). Yet another method would be to add redirects via AD GPOs for a home folder that resides in a suitably prepared share on the OD Master. There are still other ways depending on how hard you want to work.
  AFAIK you don't want the OD Master in all these scenarios to be the KDC.
  There is a wealth of information regarding this which you could google for yourself? AD-OD Integration has been going on for at least 4 years now in form or another all with varying success. How successful the integration is depends (as ever) largely on how well the AD environment has been configured. The most successful integrated sites in my experience involved the AD environment being configured from the outset to accommodate the mac platform.
  There's a lot of useful stuff over on edugeek.net:
  http://www.edugeek.net/forums/mac/
  Read some of the stickies at the top of the Forum. One of them refers to Corey Carson's AD-OD Sandbox. Another site you should visit is:
  http://www.afp548.com/search.php?query=AD-OD+Integration&type=all&mode=search
  Tony