Jamf Nation Community

ran scutil --dns (edited for security)

DNS configuration

resolver #1 search domain[0] : xxx.domain.edu search domain[1] : ooo.domain.edu search domain[2] : scsc.domain.edu search domain[3] : asas.domain.edu search domain[4] : domain.edu

nameserver[0] : 10.00.00.3 nameserver[1] : 10.00.000.4 nameserver[2] : 10.000.000.2 nameserver[3] : 10.000.00.29 if_index : 7 (en0) flags : Scoped, Request A records reach : 0x00000002 (Reachable)

Ok, for some reason, I can log into NoMAD, but still cannot with NoMAD Login

Hey!

Questions for you:
How are you telling the NoLoAD where the DC is? Do you have NoMAD installed? If so, NoLoAD will use the same .plist file. Otherwise, you need to tell NoLoAD where the DC is with either a Configuration Profile or a .plist file.

From my experience, NoMAD runs in a local level but when you want to log in with NoLoAD you need to have enforced the settings in a System Level which will also help NoMAD to be aligned all the time with the same preferences.

Yes to all. Both are installed and the plist is correct:

defaults read /Library/Preferences/menu.nomad.login.ad
{ ADDomain = "xxx.mydomain.com"; BackgroundImage = "/Library/Application Support/JAMF/backgroundimage.png"; KeychainAddNoMAD = 1; KeychainCreate = 1; LoginLogo = "/Library/Application Support/JAMF/PURPLE.png";

This guide helped me the most. I found that the instructions on Orchard Grove git were a little too generic, but the instructions on this site were the best. Hope this helps.

Made progress but I am stuck. (using NoMADLoginAD-1.2.3-b3) I can only log in via my elevated AD account and not my regular employee account. The elevated account is used for Admin purposes at our institution. Why it can see the elevated account on AD and not the regular user account is a mystery.