[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Argh! I hate that I am going to ask this. (UPDATE)

Subject: Re: Argh! I hate that I am going to ask this. (UPDATE)
From: Matt Jenns <email@hidden>
Date: Wed, 31 Aug 2005 11:33:03 +0100
Delivered-to: email@hidden
Delivered-to: email@hidden

Hi Adrian,

Tried this before, with the server name in dc= (ie dc=X-Server) and nothing doing. Tried just now with nothing at all, still nothing doing.
Treading very carefully, I have managed to switch on DHCP without upsetting the PC's (fingers crossed now). Client Mac collects a number from the server, recognises that LDAP is also supplied as Directory Access shows up the servers details when Get LDAP info via DHCP is switched on.

So, at the moment, I can NOT authenticate via LDAP, but I can connect to say Groups and authenticate as a registered user. I feel like I am close but not getting a cigar is beginning to prove annoying. I trust these antics are supplying merriment to one and all, hopefully we'll have this resolved soon. As usual, feel free to jump in with anything at all that you might feel I've missed.

I don't know how far you are down the line with solving your issues, but could i ask for a bit more info?

Firstly, do you have DNS running on your network, set up so that the server can be resolved both forwards and in reverse ie:

a lookup for x-server.internal.mkps.co.uk would give the IP address of the xserve (lets say 10.10.10.10)

a lookup for 10.10.10.10 would resolve to the FQDN of the server ie x- server.internal.mkps.co.uk.

you can test this in the Terminal from your server using the 'host' command. eg

host x-server. internal.mkps.co.uk

obviously i am assuming the name of your domain.

Next, when you say ' Treading very carefully, I have managed to switch on DHCP without upsetting the PC's' - does that mean that you are already running a DHCP service elsewhere on your LAN? Two DHCP servers on the same segment won't play nicely. Handing out LDAP info via DHCP is not necessary to achieve what you want.

Thirdly, what is your LDAP search base? You can find it listed in Server Admin:Open Directory:Settings tab:Protocols tab. In your description of client config above i would expect it to be simply dc=x-server. The default search base in 10.4 server is derived from the fqdn of the server ie ( from my example above) dc=x- server,dc=internal,dc=mkps,dc=co,dc=uk. Did you select this search base when you promoted the server to OD Master.

Lastly, is this a mature setup, ie was it all working under a previous version of OS X server and client; or have you started from scratch?

HTH

matt jenns
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden

This email sent to email@hidden

References:
	>Re: Argh! I hate that I am going to ask this. (UPDATE) (From: Adrian Flaherty <email@hidden>)
	>Re: Argh! I hate that I am going to ask this. (UPDATE) (From: Adrian Flaherty <email@hidden>)

Prev by Date: Re: Argh! I hate that I am going to ask this. (UPDATE)
Next by Date: Re: Remote Apple Events/Standard Additions Security Issue
Previous by thread: Re: Argh! I hate that I am going to ask this. (UPDATE)
Next by thread: Re: Argh! I hate that I am going to ask this. (UPDATE)
Index(es):
- Date
- Thread

Home