cbarthmann
Registered
Hi Everybody,
Here's my test setup:
*Mac Pro running Leopard Server 10.5.3
*G5 running Leopard Client 10.5.3
*Dell machine running Windows Server 2003 R2.
The main purpose of the setup is to test having both Mac and PC usernames stored in Active Directory, and to access file shares on the Mac server (to avoid paying for Windows CAL's).
I created a new domain on the Windows server, and promoted it to be a domain controller. The Windows server is also a DHCP and DNS server for the test network. The DNS server has reverse DNS entries for all machines on the test network. A few test users were created just to eventually test file and directory permissions.
The OS X server was installed as a Workgroup/Standard installation, and then upgraded to an Advanced Server.
I was able to bind both Server and Client versions of OS X to the Active Directory domain using the Directory Utility. This has allowed me to log in to OS X using usernames from Active Directory. Binding the server automatically changed the SMB server type from Standalone/Workgroup to Domain member. Workgroup Manager also now shows users created in Active Directory.
I created a new file share point in Server Admin on the OS X server, and added one of my Active Directory users under the ACL permissions section. I granted the user read and write privileges in the ACL entry.
Now, when I try to connect to the server via the OS X client using "Go to Server..." and that test account, I get a username/password combination denied, and can't log onto the server. Strangely enough, I can use the same username and password to SSH into the file server. So OS X server is authenticating against Active Directory. When trying to browse the file server from the Windows Server, I get the same issue.
However, when I use an account to that is a local administrator on the OS X server, I'm able to mount the shares properly.
Any ideas/help?
Thanks,
Charles
Here's my test setup:
*Mac Pro running Leopard Server 10.5.3
*G5 running Leopard Client 10.5.3
*Dell machine running Windows Server 2003 R2.
The main purpose of the setup is to test having both Mac and PC usernames stored in Active Directory, and to access file shares on the Mac server (to avoid paying for Windows CAL's).
I created a new domain on the Windows server, and promoted it to be a domain controller. The Windows server is also a DHCP and DNS server for the test network. The DNS server has reverse DNS entries for all machines on the test network. A few test users were created just to eventually test file and directory permissions.
The OS X server was installed as a Workgroup/Standard installation, and then upgraded to an Advanced Server.
I was able to bind both Server and Client versions of OS X to the Active Directory domain using the Directory Utility. This has allowed me to log in to OS X using usernames from Active Directory. Binding the server automatically changed the SMB server type from Standalone/Workgroup to Domain member. Workgroup Manager also now shows users created in Active Directory.
I created a new file share point in Server Admin on the OS X server, and added one of my Active Directory users under the ACL permissions section. I granted the user read and write privileges in the ACL entry.
Now, when I try to connect to the server via the OS X client using "Go to Server..." and that test account, I get a username/password combination denied, and can't log onto the server. Strangely enough, I can use the same username and password to SSH into the file server. So OS X server is authenticating against Active Directory. When trying to browse the file server from the Windows Server, I get the same issue.
However, when I use an account to that is a local administrator on the OS X server, I'm able to mount the shares properly.
Any ideas/help?
Thanks,
Charles