My IT dept setup my new MacBook Pro with 2 accounts. One is a local account and the other is on the Active Directory server. Both have administrative privileges on the mac.
I've been using the AD account to setup apps while on the corporate network (wired and/or wi-fi). My standard 'shutdown' procedure is simply to close the lid. There's a setting that will prompt for password after 15 minutes, so I can close it, walk to a conference room, open it and start typing w/o password, whereas if I unplug and lock it in the desk drawer for the night, I'll need to type a password after flipping it open.
Today, for the first time, I opened it while NOT on the corporate network. Many miles away from it, infact. I had closed it while using my AD account, so I typed in those credentials–and was denied. I tried again, one careful keypress at a time, verified caps lock off, etc. and still I was told invalid username or password.
So I tried the local account credentials. Those also failed.
How do I get back into my Mac?
Best Answer
You might be out of luck. Sounds like the AD authentication isn't caching your credentials locally so you can login when you're away from your AD server.
You can go brute force on the problem:
Hold down the power button your MacBook Pro for ~5 seconds until the machine shuts itself off. Power it back on and use your local credentials to log in instead of your AD credentials.
Once you're back up and running run
/System/Library/CoreServices/Directory Utility
. Click the lock icon to unlock the settings. HighlightActive Directory
in the list and click the pen icon to edit the settings. In the window that pops up click theShow Advanced Options
and make sure thatCreate mobile account at login
is checked. This ensures you can login when the AD server isn't present.