Question

10.8.3 AD Mobile Accounts Not Being Created

Forum|Forum|12 years ago
March 27, 2013
3 replies
24 views

+7

sgrall-pfg
Contributor

Since upgrading to 10.8.3, it seems that the settings related to creating mobile accounts in the Apple AD plug-in (shown in Directory Utility) aren't being respected after a restart. I've been able to determine that the managed preferences that the plug-in creates disappear after a restart, and will not recreate without unsetting and re-setting the mobile accounts settings within the Apple AD plug-in, via Directory Utility or dsconfigad.

Has anyone else experienced this issue and found a workaround? I've tried setting the preference via a Configuration Profile as well, and it still loses the setting after a restart. This is a serious issue, as we want mobile accounts to be created automatically.

S

+7

sgrall-pfg
Author
Contributor
Forum|Forum|12 years ago
March 27, 2013

Running the following command with no MCX or Configuration Profiles solved the issue in testing:

dscl . -list Computers | grep -v "^localhost$" | while read computer_name ; do sudo dscl . -delete Computers/"$computer_name" ; done

I still haven't determined what causes the issue to begin with.

Like

A

+8

andrew_stenehje
Contributor
Forum|Forum|12 years ago
March 27, 2013

We've had an issue where cached mobile accounts don't work when off of our internal network... there's some sort of problem with the cached credentials and it won't allow login. The workaround, from Apple, is to login twice while on your internal network before using it off site. They said that others have had this problem as well but 10.8.3 did not resolve it. Anybody else have that problem?