Parallels Desktop 8 for Mac is lets you seamlessly run Windows and Mac applications side-by-side

Login | Register

Post new topic Reply to topic  [ 1 post ] 

Mon Mar 14, 2011 7:29 pm

Offline
Joined: Mon Mar 14, 2011 7:25 pm
Posts: 1

We have a 10.6.6 Server that is bound to our AD and is serving as an OD master (for creating local groups with both local and AD users as members). DNS is handled by the AD domain (we are not running DNS on the 10.6.6 server) THe servers role is primarily to provide file services over AFP, SMB and NFS. The problem we are having is connecting XP clients to a SAMBA share on the server. All clients are bound to the AD domain. If we connect an XP client to the server using the FQDN (i.e. "\\serverhostname.company.com\") we are shown a list of the shares available on the server. It appears to properly pass Kerberos credential from XP client to the server - it does not prompt domain users to authenticate. However - we also have an "alias" hostname registered in DNS for this machine (i.e. "
serveralias.company.com") If we connect an XP client to the server this way we connect - but do not see any available shares. If we attempt to connect more specifically (i.e. "\\severalias.company.com\group\sharename\") we are prompted to authenticate but it fails every time. I am assuming this is because the samba server (standard version for Snow Leopard) does not "know" that it is both "serverhostname.company.com" and "serveralias.company.com"??? We have tried adding a line to /etc/hosts/ that references "serveralias.company.com" and even created an /etc/lmhosts file with the line "<ipaddress> serveralias.company.com" - to no avail. Any help is appreciated.

FWIW - this problem is not present on: 1. Snow Leopard clients (bound to AD) and connecting via smb://serverhostname.company.com or smb://serveralias.company.com 2. Windows 7 clients (bound to AD) connecting via "
severhostname.company.com" or "
serveralias.company.com" However in the cases of Mac clients connecting to the parent share ("group") users are not given access to traverse folders unless they are named specifically in ACL permissions for the individual folders - in other words - AD users who are members of the LDAPv3/127.0.0.1 group on the 10.6.6. server still cannot access the folder - they see the folder - but it has the "no permissions" icon.



Top Top
  Profile
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 1 post ] 

All times are UTC - 8 hours [ DST ]


Who is online

Users browsing this forum: AlbertSi and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum


Search for:
Jump to:  
cron

OS X Mountain Lion Server for Dummies
By John Rizzo

Simplifies the installation, configuration, and management of Apple's OS X Server software. Support Mac and Windows clients for file sharing, email, and directory services; Install software to your iOS devices and Macs. Incorporate a Mac subnet into a Windows Active Directory domain, manage Mac and Windows clients, and configure security options, and more. Click here for more.

Serving the cross-platform community since November 15, 1997. Copyright 2010-2013 John Rizzo. All rights reserved.
Powered by phpBB