Re: [Fed-Talk] AD authentication error (cross post)
Re: [Fed-Talk] AD authentication error (cross post)
- Subject: Re: [Fed-Talk] AD authentication error (cross post)
- From: "Jason T. Bracy" <email@hidden>
- Date: Tue, 06 Jul 2010 11:22:57 -0400
- Thread-topic: [Fed-Talk] AD authentication error (cross post)
Title: Re: [Fed-Talk] AD authentication error (cross post)
Basically the Mac is trying to create a user with the AD short name, but can’t because that name is already in use by an account with a different uid.
You need to create the AD account first and then move the data over and change the uid/gid to the AD uid/gid – which you can find using the ‘id’ command in the terminal. Since you’ve already done it you may be able to run ‘sudo chown –R uid:gid /Users/username/’
Here’s how you need to migrate an AD bound machine:
- build the OS and Apps
- bind
- login as AD user
- connect old machine via FW
- login as local admin
- copy user folder to a temp folder (ie NOT /Users/username/ – I usually move it to /Users/username-old/)
- make sure the uid/gid is the same on the old user folder and the new (if not use ‘id username’ to find the correct uid/gid and then ‘sudo chown –R uid:gid /Users/username-old/’ to change it
- replace the new user folder with the temp using ‘sudo mv /Users/username-old/ /Users/username/’
Let me know how it goes...
Jason
- -
Jason Bracy | SAIC
System Administrator | SAIC Creative | phone: 703.676.6145
https://issaic.saic.com/corporate/saic-creative
Energy | Environment | National Security | Health | Critical Infrastructure
Please consider the environment before printing this email.
> From: "Jerry L. Blackmon II" <email@hidden>
> Date: Tue, 06 Jul 2010 09:26:31 -0400
> To: "Trouton, Rich (NIH/NHGRI) [C]" <email@hidden>
> Cc: "email@hidden" <email@hidden>,
> "email@hidden" <email@hidden>
> Subject: Re: [Fed-Talk] AD authentication error (cross post)
>
> No, did it at the command line with ditto. When I rebuild machines, I don't
> do any sort of system migration, I install the new image and copy data over
> via ditto from a backup. Create an account, point it at the appropriate user
> folder and voila. Works fine with local accounts, apparently not so well with
> AD.
>
> On Jul 6, 2010, at 9:17 AM, Trouton, Rich (NIH/NHGRI) [C] wrote:
>
>> Did you use Migration Assistant to migrate your AD account along with the
>> rest of your data? There may have been an issue when the AD account was
>> recreated on the new Mac Pro.
>>
>> Thanks,
>> Rich
>
> ---
> Jerry <email@hidden>
>
> “As you become more clear about who you really are, you'll be better able to
> decide what is best for you -- the first time around.” -- Oprah Winfrey
>
>
>
>
>
> _______________________________________________
> Do not post admin requests to the list. They will be ignored.
> Fed-talk mailing list (email@hidden)
> Help/Unsubscribe/Update your Subscription:
>
> This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden