Solved

Certain iMac's now can't log in to mixed environment

Posted on 2013-06-29
12
281 Views
Last Modified: 2013-07-25
Hi,

I have recently inherited a client that has a mixed environment.

They have 2 locations connected by a IPSEC VPN.

2 IBM Windows Server 2008 r2 mirrored in each location with six 2008+ iMac's in one location and 4 in the other.

In each of the locations we cannot log onto the network on 2 machines. We can log on using local admin accounts; access the internet and low security shared resources. I can even log in via remote desktop to the servers.

I found that the clocks on the iMac's are about 5-6 minutes slower than the server. Looking at this I thought this possibly was the cause with Active Directory not authenticating the machines.

I have looked at the servers time server and it is time.microsoft.com and when I try to amend the ntp.conf file on the iMac's to represent this and have them sync up nothing changes.

I have been working on this for a few days and am really banging my head against a wall now.

Any ideas would be greatly appreciated.
0
Comment
Question by:SharkNorris
  • 6
  • 5
12 Comments
 
LVL 53

Expert Comment

by:strung
Comment Utility
By "nothing changes", do you mean that the Macs' clocks are still 5 - 6 minutes slow, or do you mean that the Macs' clocks now show the same time as the servers' but you still can't log in?
0
 
LVL 53

Expert Comment

by:strung
Comment Utility
0
 
LVL 53

Expert Comment

by:strung
Comment Utility
Alternatively, is the server clock wrong? 5 to 6 minutes is a lot. It ought to be easy to tell whether the clocks on the servers or the Macs are wrong.
0
 

Author Comment

by:SharkNorris
Comment Utility
Nothing changes in that the clocks are still slower than the server and logging on to the network is still not possible from those machines

I have tried the method found on http://www.macinstruct.com/node/92 with no luck.

Now I am wondering if the server time is off; but then the other 9 or so machines are fine...
0
 
LVL 53

Expert Comment

by:strung
Comment Utility
My guess is the sever is off. The other 9 machines may be picking up their time from the server. You can set PC's to pick up their time from the server.

Should be easy to tell which is right. Compare the time to the time on your smart phone.
0
 
LVL 53

Expert Comment

by:strung
Comment Utility
If your server is set up as in this KB:  http://support.microsoft.com/kb/816042 then your Windows computers are probably picking up their time by sync with the server, whereas the Macs are synching with the Apple Time Server. If your server's time is wrong, then that would account for your problem.
0
How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

 
LVL 53

Expert Comment

by:strung
Comment Utility
The link in the previous message will tell you how to sync the server to an external time server.
0
 

Author Comment

by:SharkNorris
Comment Utility
I'll report back when on-site tomorrow with more info or hopefully a "hoorah!" and its working.

Thanks for the help strung.
0
 

Author Comment

by:SharkNorris
Comment Utility
Also I must not have been clear enough, the only Windows environments on the network are the two mirrored servers - otherwise its all iMac's. Some work, and some do not.
0
 
LVL 11

Expert Comment

by:naderz
Comment Utility
Are your Windows servers running NTP server? They should be. If yes, try using them as the NTP server for the Macs and run two tests:

1. use the Windows server's IP address.
2. use the Windows server's FQDN.
0
 

Accepted Solution

by:
SharkNorris earned 0 total points
Comment Utility
Manually setting the time on 3 of the 4 iMacs was the only thing that resolved the issue.

On the 4th I logged in as local admin and then removed from AD and reconnected to AD.

All working.
0
 

Author Closing Comment

by:SharkNorris
Comment Utility
The suggestions of other people were unsuccessful but further testing myself resolved the issue.
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

iCloud Drive was introduced after iOS 8 was launched last year. This drive is Apple’s online storage device that lets users sync their files and access them from all their Apple devices.   There is a lot of data that is not automatically backed up…
OfficeMate Freezes on login or does not load after login credentials are input.
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now