Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

MAC will not authenticate and log in network users, working with MAC server

Posted on 2011-09-14
9
Medium Priority
?
462 Views
Last Modified: 2012-05-12
I have a MAC workstation running 10.6 that is in a network environment with a MAC server.  Everything was running fine for months until today, now this one computer will no longer allow network users to "authenticate" and log in.  I have tried the following:

Ran Onyx to clean up files
Un-bound and re-bound the machine to the server
Performed a reinstall of the OS files from the MAC disk

The problem still persists.  Of course I have ensured that there is good network connectivity and I can see the network and all network resources when logged in as the local administrator, I just can not get network users logged into this machine.  We are using LDAP on the server to administer the accounts.  Any ideas would greatly be appreciated.
0
Comment
Question by:jfoster316
  • 5
  • 3
9 Comments
 

Expert Comment

by:abaskerville
ID: 36542054
Have you booted from the CD and done a repair disk?  

We had this problem once and it was caused because we restarted a computer that we thought was hung up during a firmware update.  It booted up okay, but you couldn't get anywhere.  For us, our only solution was to redeploy the system image from the server.

0
 

Author Comment

by:jfoster316
ID: 36542359
Yes, I tried booting from the disk and doing a repair, unfortunately that did not work either.  I can only think at this point it has something to do with the kerboros database getting corrupted somehow.  I am going to try and fix the kerberos, but barring that, reinstall is the only thing that I can think should work.
0
 
LVL 10

Expert Comment

by:EdTechy
ID: 36542758
A couple of things you can try.
Unbind the workstation from the server. Delete the file /Library/Preferences/edu.mit.Kerberos, rebind.
Check System Preferences>Accounts>Login Options. Make sure there is a check mark next to "Allow network users to log in at login window." Check the options for that and make sure they are appropriate.
Make sure your time is synced to the same server on the workstation and server. Or at least, the time is within a few seconds of each other.
0
Choose an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

 

Author Comment

by:jfoster316
ID: 36546819
I have reloaded the MAC, erased the HDD first and did a clean reload.  You may not believe this, but now I can not join it to the server now with the admin account.  It will not allow the admin user and password to even talk to the server.

Something is wickedly wrong with this set up.  I am out of ideas, and have tried all of the suggestions posted here and many others suggested by friends and colleagues.
0
 
LVL 10

Expert Comment

by:EdTechy
ID: 36548992
Try binding without authentication.
Here is some info from apple on authenticated binding. I do not require it on my server so I don't know much about it. http://docs.info.apple.com/article.html?path=ServerAdmin/10.5/en/c8od18.html
0
 

Assisted Solution

by:jfoster316
jfoster316 earned 0 total points
ID: 36551308
I use the binding with authentication so that I can use roaming profiles.
0
 

Accepted Solution

by:
jfoster316 earned 0 total points
ID: 36551326
Issue solved on my end.  Found that after reload and then rebooting the server, this machine finally allowed me to authenticate users on it.  Then hooked this mac back up to the original location and it failed again.  Did some checking and found that the ethernet cable had been crushed back behind some furninture.  This crushing did not seem to have totally terminated the connection, as I was still able to surf the web, see network resources, and the like, but for some reason, the signal was degraded enough to causee the connection to the server to become corrupted when Kerberos was trying to authenticate.  So, after replacing the ethernet cord and then rebooting the server to purge the database, the machine is up and running perfectly fine.  Only MAC could have this kind of crazy issue, IMO.
0
 

Author Closing Comment

by:jfoster316
ID: 36572287
This issue all stemmed from a bad cable, that for some reason caused the Kerberos database on the server to become corrupt and not allow this machine to log in.
0
 
LVL 10

Expert Comment

by:EdTechy
ID: 36552153
Glad you got it.
0

Featured Post

[Webinar] Cloud and Mobile-First Strategy

Maybe you’ve fully adopted the cloud since the beginning. Or maybe you started with on-prem resources but are pursuing a “cloud and mobile first” strategy. Getting to that end state has its challenges. Discover how to build out a 100% cloud and mobile IT strategy in this webinar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

As dyndns has reduced the capabilities of the free service, I looked around for other free providers of Dynamic DNS service. After testing several I decided to move my DNS hosting to Hurricane Electric as then domains that require dynamic hostnam…
Managing 24/7 IT Operations is a hands-on job and indeed a difficult one. Over the years I have found some simple tips and techniques to increase the efficiency of the overall operations. The core concept has always been on continuous improvement; a…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Suggested Courses
Course of the Month11 days, 12 hours left to enroll

916 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question