Skip to main content
Question

Active Directory Woes on 10.5 Server

  • July 27, 2010
  • 7 replies
  • 9 views
N
Forum|alt.badge.img+8

Yesterday our Mac Server lost partial DNS. I can still access it through its IP and DNS name, but when I tag our domain onto it <server>.<domain>.<company>.com I get no response. I went to unbind and rebind to the domain and Directory Utility locked up the server and required a force reboot. If I open Directory Utility it says the connection is good however, there's no computer account in AD anymore. I then tried to use the dsconfigad command in Terminal only to have Terminal lock up.

Has anyone seen this or know of a way I can unbind without locking up again?

Noah Swanson
Imaging Specialist
Enterprise Desktop Services
Phone: 309-765-3153
SwansonNoah at johndeere.com

    7 replies

    K
    Forum|alt.badge.img+12
    • Kedgar
    • Contributor
    • 186 replies
    • July 27, 2010

    Try daconfigad -rf

    This should force a removal from the domain.

    Sent from Ken's iPhone

    N
    Forum|alt.badge.img+8
    • noah_swanson
    • Author
    • Contributor
    • 142 replies
    • July 27, 2010

    Worked great. However, when I tried to rebind, it locked up again. I’m guessing there’s a corrupt plist or cache somewhere…Anyone know the exact files I should trash before attempting to rebind?

    A
    • Anonymous
    • 0 replies
    • July 27, 2010

    When this happens to one of my Mac servers I delete the Directory Service folder, empty trash and reboot then rebind:

    MacHD > Library > Preferences> DirectoryService

    T
    Forum|alt.badge.img+31
    • tlarkin
    • Honored Contributor
    • 2721 replies
    • July 27, 2010

    Did you fully unbind first?

    N
    Forum|alt.badge.img+8
    • noah_swanson
    • Author
    • Contributor
    • 142 replies
    • July 27, 2010

    Yep. Full unbind, removed the account from AD even.

    T
    Forum|alt.badge.img+31
    • tlarkin
    • Honored Contributor
    • 2721 replies
    • July 27, 2010

    Look at the dsconfigldap command to fully force unbind and to clear all
    caches

    A
    • Anonymous
    • 0 replies
    • July 28, 2010

    If you just can't get the server to bind, create the computer object in AD first (with the server's name) and rebind.

    Tony S. Wu
    tonyswu.mac at gmail.com


    Terms & ConditionsCookie settingsAccessibility statement