Apple Mac will not login when away from the domain


We have a new iMac that has been connected onto our windows 2008 domain.  Logs in fine when on the network in the building but not when away.  

Any ideas?

Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Windows caches user credentials by default, OS X does not.  To do this you need to go into System Preferences and then User and Groups. If the padlock is closed you'll need to open it using admin credentials and then click on Login items.

This window should show you your domain with an EDIT button next to it, click on the EDIT button. Then click on Open Directory Utility. Once again open the padlock if it's shut and highlight Active Directory and click on the pencil icon.

IN the middle of the next window will be a right facing arrow, click on it. In the User Experience tab make sure that Create mobile account at login is checked.  Optionally click on the require... check box. OK your way back out.  The next time the user logs in, OS X should crate a mobile account for him which is basically caching his credentials allowing him access to the Mac when away from the network.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Assuming you have Admin privileges, you can also run this on the command line to set individual accounts if you don't want every domain account to maintain a local profile when they log in.
sudo /System/Library/CoreServices/ -n ACCOUNT_NAME

Open in new window

That way only your account maintains a local profile.  All other domain accounts continue to get a roaming profile that disappears when they log out.
superjohnbarnesAuthor Commented:
Thanks that worked fine.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Mac OS X

From novice to tech pro — start learning today.