Help

Issues with policies and jamf admin mounting on-prem distribution point

Go to solution
Ken_Edgar
New Contributor II

Posted on ‎11-15-2022 11:54 AM

Since I migrated Jamf to a Windows 2019 server two weeks ago, I have been troubleshooting the primary distribution point. The distribution point and jamf server are running on the same VM. I have tried and failed with https, probably because of the same root cause... so I am trying to simplify the issue by first troubleshooting the SMB dist point problem.

I am able to mount the share both from Windows and Mac clients using the jamf service accounts. I have been able to validate that the accounts work as-should... one read-only, the other read-write. I don't know what the jamf binary and jamf admin do differently to mount the distribution point, but both fail without any helpful messages.

I'm wondering if any of you have had a similar experience, and whether you have been able to locate your root cause and resolve. I have a packet capture out to Jamf support right now. I have been working with them for two weeks without resolution. I just re-built my Jamf server a second time with the same results.

Thank you

0 Kudos
Reply
1 ACCEPTED SOLUTION

Go to solution
Ken_Edgar
New Contributor II
In response to mvu

Posted on ‎11-15-2022 02:55 PM

I'll update this and mark it solved later this week after testing some more scenarios. What I found just now, which is weird because it was not setup this way on the old server... everything works when I use the legacy short domain name2022-11-15 16_52_28-jamf_share.png

View solution in original post

0 Kudos
Reply
7 REPLIES 7

Go to solution
mvu
Valued Contributor III

Posted on ‎11-15-2022 01:52 PM

A few years back, had the same issue when we migrated/updated our on-premise server. If I recall, it ended up being the settings on Jamf Pro (Settings, Server, File share distribution points). SMB.

It had something to do with the username needing a "\" in front of the username.

Or maybe both a "." and "\".

Example: username: .\caspershare

Once we played with that, it worked. I can't recall all the details, but if I come across the articles, I'll post.

Reply

Go to solution
Ken_Edgar
New Contributor II
In response to mvu

Posted on ‎11-15-2022 02:55 PM

I'll update this and mark it solved later this week after testing some more scenarios. What I found just now, which is weird because it was not setup this way on the old server... everything works when I use the legacy short domain name2022-11-15 16_52_28-jamf_share.png

0 Kudos
Reply

Go to solution
Ken_Edgar
New Contributor II
In response to Ken_Edgar

Posted on ‎11-18-2022 06:45 AM

This was the resolution... I need to take a look into why this is the case... but maybe this will help someone in the future.

0 Kudos
Reply

Go to solution
mvu
Valued Contributor III

Posted on ‎11-16-2022 04:23 AM

Nice.

0 Kudos
Reply

Go to solution
mvu
Valued Contributor III

Posted on ‎11-18-2022 06:49 AM

Curious, was the Workgroup or Domain name beyond 20 characters before you switched to the short name?

 

0 Kudos
Reply

Go to solution
Ken_Edgar
New Contributor II
In response to mvu

Posted on ‎11-18-2022 02:12 PM

it is exactly 20 chars

0 Kudos
Reply

Go to solution
bradtchapman
Valued Contributor II

Posted on ‎02-26-2023 09:18 PM

I fixed this by removing the domain suffix from our domain name in the SMB distribution point settings, and just used the simple AD name for the domain, e.g.: pretendco instead of pretendco.com .  This started to be an issue in Monterey, though I'm not sure why.

0 Kudos
Reply