Zentyal Forum, Linux Small Business Server
Zentyal Server => Directory and Authentication => Topic started by: Dennison on August 28, 2016, 01:07:47 am
-
I am able to bind OS X clients to a zentyal 4.2.2 domain. The zentyal instance is newly configured from the iso. Users are able to authenticate at the OS X log in screen fine, but they are not able to mount their home directories from the server. The two errors that look relevant from the client are:
Aug 27 15:32:08 Liz loginwindow[106]: ERROR | -[LWMounter(Internal) lwMountWithArrayOfPaths:] | lwMountWithArrayOfPaths: failed to mount prefPath=smb://zen tyal.SJI.L/Administrator, error=-1073741275
Aug 27 15:45:00 Liz NetAuthSysAgent[907]: NAHSelectionAcquireCredential Error Domain=com.apple.NetworkAuthenticationHelper Code=-1765328228 "acquire_kerber os failed administrator@168.0.156: -1765328228 - unable to reach any KDC in realm 168.0.156, tried 0 KDCs" UserInfo={NSDescription=acquire_kerberos failed administrator@168.0.156: -1765328228 - unable to reach any KDC in realm 168.0.156, tried 0 KDCs}
On the zentyal server the following lines look relevant:
[2016/08/27 15:59:30.949127, 3] ../source3/smbd/service.c:864(make_connection_snum)
192.168.0.195 (ipv4:192.168.0.195:49719) connect to service IPC$ initially as user SJI\Administrator (uid=2500, gid=2513) (pid 3368)
[2016/08/27 15:59:30.950002, 3] ../source3/param/service.c:150(find_service)
checking for home directory gave (NULL)
[2016/08/27 15:59:30.950134, 0] ../source3/param/loadparm.c:2956(check_usershare_stat)
check_usershare_stat: file /var/lib/samba/usershares/ owned by uid 0 is not a regular file
[2016/08/27 15:59:30.950436, 3] ../source3/param/service.c:249(find_service)
find_service() failed to find service
There is no additional UI for configuring network home dirs, but I do see it included from /etc/samba/shares.conf. Does anyone have this working and can advise what they had to do? Can anyone help me troubleshoot this issue? Does anyone have any resources they could share that might help resolve this issue?
-
I tried this some time ago and as far as I remember, it is a missing entry in the LDAP table! also check that you're using a mobile (roaming) account setting with OS X!
look here: http://www.shabangs.net/zentyal/centralizing-usergroup-management-for-mac-osx-with-zentyal/ (http://www.shabangs.net/zentyal/centralizing-usergroup-management-for-mac-osx-with-zentyal/)
-
Thanks for pointing me back to that shabangs post segelfreak.
I downgraded to zentyal 3.2 and followed the instructions in the shabang post. That post uses zentyal 3.0 and a few things have changed since then. Noteably I did not have to disable any of the SASL authentication methods from LDAPv3 on OSX.
These instructions do not automount the users home directory from the server however, instead it creates a local home directory when the user logs in. If anyone knows how to get the home directory mapped/mounted from the zentyal server that is my goal.