The magic triangle is working perfectly for some users. Other users are invisible to the OD master's Server App. Workgroup Manager can access all the users while Server App can't. Viewing permissions through the Server 2003 interface, it seems like the permissions of an invisible user and a visible one are same. I ran SetACL on the directories of the two users and it found no difference.
How can I figure out the difference in the accounts/files that makes certain users invisible to Server App? Thanks in advance!
MacOS – Cannot access certain MS Server 2003 Active Directory users with Mountain Lion Server’s Server App
active-directorymacosopen-directoryosx-server
Related Question
- MacOS – OSX 10.8 Contacts can’t access Active Directory 2003 via LDAP
- MacOS – How to replace Microsoft Small Business Server 2003 with Mac Mini Server (Mountain Lion)
- MacOS – OS X Server network sync issues
- MacOS – “Network accounts are unavailable” when logging into OS X Lion (Open Directory on localhost)
- MacOS – OS X Server & Time Machine for Active Directory Users
Best Answer
Our AD has 1000+ users. As it turns out, Server App could see all the users. It was hard to realize this for a couple of reasons: When viewing "Users from MyDomain", if I typed in a user's name, Server App would not recognize it. This behavior still occurs. It's only when I search under "All Users" that the name is recognized and labeled as a "User from MyDomain". I realized that Server App did recognize the account when I made a Local Network Group and tried adding a user to the group. When I typed in the same user's name (invisible when viewing Users), Server App recognized the account. This whole issue is just the Server App behavior on Mountain Lion and accounts on a Windows Server 2003 AD server.