Solved

MAC will not authenticate and log in network users, working with MAC server

Posted on 2011-09-14
9
414 Views
Last Modified: 2012-05-12
I have a MAC workstation running 10.6 that is in a network environment with a MAC server.  Everything was running fine for months until today, now this one computer will no longer allow network users to "authenticate" and log in.  I have tried the following:

Ran Onyx to clean up files
Un-bound and re-bound the machine to the server
Performed a reinstall of the OS files from the MAC disk

The problem still persists.  Of course I have ensured that there is good network connectivity and I can see the network and all network resources when logged in as the local administrator, I just can not get network users logged into this machine.  We are using LDAP on the server to administer the accounts.  Any ideas would greatly be appreciated.
0
Comment
Question by:jfoster316
  • 5
  • 3
9 Comments
 

Expert Comment

by:abaskerville
Comment Utility
Have you booted from the CD and done a repair disk?  

We had this problem once and it was caused because we restarted a computer that we thought was hung up during a firmware update.  It booted up okay, but you couldn't get anywhere.  For us, our only solution was to redeploy the system image from the server.

0
 

Author Comment

by:jfoster316
Comment Utility
Yes, I tried booting from the disk and doing a repair, unfortunately that did not work either.  I can only think at this point it has something to do with the kerboros database getting corrupted somehow.  I am going to try and fix the kerberos, but barring that, reinstall is the only thing that I can think should work.
0
 
LVL 10

Expert Comment

by:EdTechy
Comment Utility
A couple of things you can try.
Unbind the workstation from the server. Delete the file /Library/Preferences/edu.mit.Kerberos, rebind.
Check System Preferences>Accounts>Login Options. Make sure there is a check mark next to "Allow network users to log in at login window." Check the options for that and make sure they are appropriate.
Make sure your time is synced to the same server on the workstation and server. Or at least, the time is within a few seconds of each other.
0
 

Author Comment

by:jfoster316
Comment Utility
I have reloaded the MAC, erased the HDD first and did a clean reload.  You may not believe this, but now I can not join it to the server now with the admin account.  It will not allow the admin user and password to even talk to the server.

Something is wickedly wrong with this set up.  I am out of ideas, and have tried all of the suggestions posted here and many others suggested by friends and colleagues.
0
What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 
LVL 10

Expert Comment

by:EdTechy
Comment Utility
Try binding without authentication.
Here is some info from apple on authenticated binding. I do not require it on my server so I don't know much about it. http://docs.info.apple.com/article.html?path=ServerAdmin/10.5/en/c8od18.html
0
 

Assisted Solution

by:jfoster316
jfoster316 earned 0 total points
Comment Utility
I use the binding with authentication so that I can use roaming profiles.
0
 

Accepted Solution

by:
jfoster316 earned 0 total points
Comment Utility
Issue solved on my end.  Found that after reload and then rebooting the server, this machine finally allowed me to authenticate users on it.  Then hooked this mac back up to the original location and it failed again.  Did some checking and found that the ethernet cable had been crushed back behind some furninture.  This crushing did not seem to have totally terminated the connection, as I was still able to surf the web, see network resources, and the like, but for some reason, the signal was degraded enough to causee the connection to the server to become corrupted when Kerberos was trying to authenticate.  So, after replacing the ethernet cord and then rebooting the server to purge the database, the machine is up and running perfectly fine.  Only MAC could have this kind of crazy issue, IMO.
0
 

Author Closing Comment

by:jfoster316
Comment Utility
This issue all stemmed from a bad cable, that for some reason caused the Kerberos database on the server to become corrupt and not allow this machine to log in.
0
 
LVL 10

Expert Comment

by:EdTechy
Comment Utility
Glad you got it.
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

Managing 24/7 IT Operations is a hands-on job and indeed a difficult one. Over the years I have found some simple tips and techniques to increase the efficiency of the overall operations. The core concept has always been on continuous improvement; a…
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now