[Rockies-Edu] Restricting AD Login to Specific Groups in Lion
[Rockies-Edu] Restricting AD Login to Specific Groups in Lion
- Subject: [Rockies-Edu] Restricting AD Login to Specific Groups in Lion
- From: Justin McHenry <email@hidden>
- Date: Mon, 10 Oct 2011 17:08:03 -0600
- Acceptlanguage: en-US
- Thread-topic: Restricting AD Login to Specific Groups in Lion
Hello Rockies Edu List,
We are having a problem with AD binding in Lion. The binding works fine (mostly) but we are unable to use the option in Login Options to restrict login to certain security groups. Some security groups show up but not all of them. On 10.6 all the groups show up in the dialog just fine. Doing some research we found someone else having a similar problem when trying to change file permissions:
https://discussions.apple.com/thread/3328068
He was able to narrow it down to only displaying groups that have been mail enabled by Exchange and have a display name. After looking over what groups I can see this appears to be the case for us too.
Looks to me like Lion is having problems parsing AD group properly (possibly relying on the display name rather than the group name itself). Has anyone else seen this?
Cory, is this something we can report as a bug to Apple? The last time I tried to submit a bug with AD in OSX I called AppleCare and I spent many hours running tests that I am guessing weren't very useful in figuring the problem out. I would like to avoid that this time but we need this problem fixed so I will do whatever I have to do.
Justin McHenry
Dedicated Desktop Support
Office of Information Technology
303-492-5662
email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Rockies-edu mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden