Solved

Snow Leopard, Small Business Server 08, and Existing User Profiles

Posted on 2010-11-27
10
563 Views
Last Modified: 2012-05-10
Hi Experts,

I am trying to join a few Snow Leopard systems to my SBS 2008 Domain.  I am able to bind to Active Directory, and most things seem to be working.  I have a somewhat serious problem though:

The Mac's have been in use for sometime so the users have their own profiles already configured.  When I join to AD and then log on with my domain user name and password it creates a new local profile for that user, just as with Windows.  In Windows I would just rename the profile directory or use a tool like Profwiz to do the trick.  Anyone know how I could do it here?

I tried the same trick (rename the user's home directory on the Mac) followed by some chmod/chown attempts but no joy.

Help!

Thanks!
0
Comment
Question by:dandnet
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
  • 3
10 Comments
 
LVL 30

Expert Comment

by:Britt Thompson
ID: 34225255
Renaming isn't going to work because the users have a new UID and old profile is attached to their old local UID. You may be able to get it to work eventually by running chown, changing the UID or chmod but I doubt it would work smoothly. You can log in with the new user and type "echo $UID" to see the ID of the new user and type "dscl . -list /Users UniqueID" to see the list of local users' ID's and attempt to chown/change the UID associated with the files: "sudo find . -path "./Volumes" -prune -o -user <old user id> -exec chown <user name> {} \; -print" but this will render the old account useless.

I recommend simply changing the permissions for the old user directory files that are needed and copying them over to the new profile...Desktop, Documents, Music, Movies... and maybe some specific preferences like bookmarks, com.apple.printpresets.plist and you'll have a much smoother transition as opposed to forcing an old profile to work. I've tried to make this work and I ALWAYS run into ridiculous permissions issues with the accounts.
0
 
LVL 3

Expert Comment

by:dccj
ID: 34225972
My experience is that there is not enough gained for the effort trying to gets Macs to play on Windows domains. Better to just connect shared folders and printers using domain credentials.
0
 

Author Comment

by:dandnet
ID: 34226407
Thank you, Renazonse.  Would be benficial for me to just copy the entire contents of /Lib/Preferences?
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 
LVL 30

Expert Comment

by:Britt Thompson
ID: 34226751
I wouldn't copy the entire preferences directory because you're going to have to alter the permissions on every file in there for it to work...if you want to give it a try you can always rename the newly created preferences folder and replaced it with the modded old prefs folder. I've just run into too much trouble in the past with trying to do that. The worst thing to lose is the keychains and that's not going to get migrated no matter what you do.
0
 

Author Comment

by:dandnet
ID: 34227156
Thank you.  I actually meant HOMEDIR/Lib/Prefs....  I see what you are saying.  Maybe since it would be just that particular users preferences (and since only one user uses these machines) I'll give it a shot on one and see what happens?

Thanks again!
0
 

Author Comment

by:dandnet
ID: 34276535
So I think I'll be taking ICCC's advice and forget adding the machines to AD.  I'll use IMAP for the email.

I'm replacing an OS X Leopard server so I need to know if there is anyway I can export the mail from the IMAP folders on it and import them into Exchange.

Any ideas?
0
 
LVL 3

Accepted Solution

by:
dccj earned 250 total points
ID: 34277651
According to Apple, the Snow Leopard email client  directly supports Exchange, so can't you just copy the emails into the Exchange folders? I'm naive on how Mac email clients work, so this may be a stupid question!
0
 

Author Comment

by:dandnet
ID: 34278076
Snow Leopard supports Exchange, however if I do not authenticate via Active Directory I cannot use delegates (for Calendar) which is key for me.  Thanks anyway!
0
 
LVL 30

Assisted Solution

by:Britt Thompson
Britt Thompson earned 250 total points
ID: 34278108
dccj is correct, you can definitely just drag and drop the email from one account to another using IMAP or Exchange. If you were using Entourage or Outlook 2011 they support delegation and are highly operable as Exchange clients...the machines do not have to be joined to AD in that case.
0
 
LVL 3

Expert Comment

by:dccj
ID: 34435143
Oh, last thing. Outlook 2011 only supports Exchange mode with Exchange 2010, not 2007 or 2003.
0

Featured Post

Optimum High-Definition Video Viewing and Control

The ATEN VM0404HA 4x4 4K HDMI Matrix Switch supports 4K resolutions of UHD (3840 x 2160) and DCI (4096 x 2160) with refresh rates of 30 Hz (4:4:4) and 60 Hz (4:2:0). It is ideal for applications where the routing of 4K digital signals is required.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A project that enables an administrator to perform actions within a user session context not just at the time of login but any time later on day(s) or week(s) later.
Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

628 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question