I am not sure if anyone can help me with this or not, but here goes. We changed our IP scheme at all of our schools this year including our servers. As a result, we are having to unbind and rebind all of our computers to the same servers (even though the dns names didn't change, just the IPs [frickin' weird]) in order for the users to be able to log in.
I found, in the resource kit, a script to unbind (which is outdated for Lion btw, the line that reads "/usr/bin/killall DirectoryService" should now be "/usr/bin/killall opendirectoryd"), and added it in as a policy with a bind attached for the proper server under accounts. I have set this for "once per computer", set it to run at startup and scoped it to the proper computer group. The script seems to run, the computers get unbound, but they never rebind. This was not the case on some Snow Leopard machines that I ran this on; all of those machines seem to run the script and rebound without any issues.
I have tried to split these 2 up into separate policies to see if it might have been trying to do both at the same time, but it seems to be a problem with the bind portion of any policy that I run.
So, 3 questions:
Does the bind under accounts in a policy still work under Lion 10.7.4 or is it broken?
Does the bind (set under accounts in the policy) try to run before any scripts, even if the script is set to "run before" or at the same time?
Is there a different/better way that you can think of to do an unbind and rebind at startup?
Some relevant information:
All clients that are having issues are running Lion 10.7.4
MacBook Air (11-inch Mid 2011)
JSS v8.6 running on an Xserve
Please let me know if anyone has any ideas. We are about to start classes again and will have around 1500 laptops that need to be unbound and rebound before they can log in, and I need to know ASAP if we are going to need to do all of these by hand.
Thanks,
Dan
