Some clients can not log into server

Discussion in 'Mac OS X Server, Xserve, and Networking' started by cwagner1, Jan 27, 2015.

  1. cwagner1, Jan 27, 2015
    Last edited by a moderator: Jan 27, 2015

    cwagner1 macrumors newbie

    Joined:
    Sep 25, 2010
    #1
    I am at a loss as to what is going on here. I have a Mac Mini running Mavericks Server 3.1.2. It is running open directory and I thought everything was working fine. I have created several Local Network User Accounts that are services only accounts.

    I have bound the client machines to the Open Directory server and on computers running OS X Lion and Mountain Lion I have no problems. The clients can log into the server and access all the sharepoints and other services. The same users can not log into the server from computers running Mavericks or Yosemite. When trying to log in they just get an error connection failed.

    Attached is the server log of one of these failed attempts. Hopefully someone can point me in the right direction or at least tell me what Apple changed between 10.8 and 10.9 regarding the way Open Directory Authorization is handled.

    Thanks
    Chris

    Code:
    1/27/15 2:28:15.753 PM kdc[80]: Got a canonicalize request for a LKDC realm from local-ipc
    1/27/15 2:28:15.753 PM kdc[80]: Asked for LKDC, but there is none
    1/27/15 2:28:15.823 PM kdc[80]: AS-REQ [email]debkenny@FUTURAMARKETING.NET[/email] from 192.168.2.120:54246 for krbtgt/FUTURAMARKETING.NET@FUTURAMARKETING.NET
    1/27/15 2:28:15.831 PM kdc[80]: AS-REQ [email]debkenny@FUTURAMARKETING.NET[/email] from 192.168.2.120:54246 for krbtgt/FUTURAMARKETING.NET@FUTURAMARKETING.NET
    1/27/15 2:28:15.832 PM kdc[80]: Need to use PA-ENC-TIMESTAMP/PA-PK-AS-REQ
    1/27/15 2:28:15.841 PM kdc[80]: AS-REQ [email]debkenny@FUTURAMARKETING.NET[/email] from 192.168.2.120:63190 for krbtgt/FUTURAMARKETING.NET@FUTURAMARKETING.NET
    1/27/15 2:28:15.848 PM kdc[80]: AS-REQ [email]debkenny@FUTURAMARKETING.NET[/email] from 192.168.2.120:63190 for krbtgt/FUTURAMARKETING.NET@FUTURAMARKETING.NET
    1/27/15 2:28:15.849 PM kdc[80]: Client sent patypes: ENC-TS
    1/27/15 2:28:15.849 PM kdc[80]: ENC-TS pre-authentication succeeded -- [email]debkenny@FUTURAMARKETING.NET[/email]
    1/27/15 2:28:15.851 PM kdc[80]: Client supported enctypes: aes256-cts-hmac-sha1-96, aes128-cts-hmac-sha1-96, des3-cbc-sha1, arcfour-hmac-md5, using aes256-cts-hmac-sha1-96/aes256-cts-hmac-sha1-96
    1/27/15 2:28:15.851 PM kdc[80]: Requested flags: canonicalize
    1/27/15 2:28:15.867 PM kdc[80]: TGS-REQ [email]debkenny@FUTURAMARKETING.NET[/email] from 192.168.2.120:49614 for cifs/futuramarketing.local@FUTURAMARKETING.NET [canonicalize]
    1/27/15 2:28:15.868 PM kdc[80]: Searching referral for futuramarketing.local
    1/27/15 2:28:15.868 PM kdc[80]: Server not found in database: krbtgt/LOCAL@FUTURAMARKETING.NET: no such entry found in hdb
    1/27/15 2:28:15.868 PM kdc[80]: Failed building TGS-REP to 192.168.2.120:49614
    1/27/15 2:28:15.872 PM kdc[80]: TGS-REQ [email]debkenny@FUTURAMARKETING.NET[/email] from 192.168.2.120:56481 for cifs/futuramarketing.local@FUTURAMARKETING.NET
    1/27/15 2:28:15.872 PM kdc[80]: Server not found in database: cifs/futuramarketing.local@FUTURAMARKETING.NET: no such entry found in hdb
    1/27/15 2:28:15.873 PM kdc[80]: Failed building TGS-REP to 192.168.2.120:56481
    1/27/15 2:28:15.877 PM kdc[80]: TGS-REQ [email]debkenny@FUTURAMARKETING.NET[/email] from 192.168.2.120:50688 for cifs/futuramarketing.local@FUTURAMARKETING.NET [canonicalize]
    1/27/15 2:28:15.877 PM kdc[80]: Searching referral for futuramarketing.local
    1/27/15 2:28:15.878 PM kdc[80]: Server not found in database: krbtgt/LOCAL@FUTURAMARKETING.NET: no such entry found in hdb
    1/27/15 2:28:15.878 PM kdc[80]: Failed building TGS-REP to 192.168.2.120:50688
    1/27/15 2:28:15.881 PM kdc[80]: TGS-REQ [email]debkenny@FUTURAMARKETING.NET[/email] from 192.168.2.120:53453 for krbtgt/LOCAL@FUTURAMARKETING.NET
    1/27/15 2:28:15.882 PM kdc[80]: Server not found in database: krbtgt/LOCAL@FUTURAMARKETING.NET: no such entry found in hdb
    1/27/15 2:28:15.882 PM kdc[80]: Failed building TGS-REP to 192.168.2.120:53453
    1/27/15 2:28:16.434 PM rpcsvchost[8423]: passwd entry for uid=1031 homedirectory invalid
     
  2. studiolx macrumors newbie

    Joined:
    Feb 4, 2015

Share This Page