<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
On 08/07/2013 10:27 AM, Davis Goodman wrote:
<blockquote
cite="mid:213C6A6D-F238-4A56-A3F3-21D8620AB92C@digital-district.ca"
type="cite">
<meta http-equiv="Content-Type" content="text/html;
charset=ISO-8859-1">
When I mention GUI I'm talking about the Mac OSX Login screen not
through a browser<br>
<div apple-content-edited="true">
<div style="color: rgb(0, 0, 0); font-family: Helvetica;
font-size: medium; font-style: normal; font-variant: normal;
font-weight: normal; letter-spacing: normal; line-height:
normal; orphans: 2; text-align: -webkit-auto; text-indent:
0px; text-transform: none; white-space: normal; widows: 2;
word-spacing: 0px; -webkit-text-size-adjust: auto;
-webkit-text-stroke-width: 0px; word-wrap: break-word;
-webkit-nbsp-mode: space; -webkit-line-break:
after-white-space; ">
<div style="color: rgb(34, 34, 34); font-family: arial;
font-size: small; "><br class="Apple-interchange-newline">
<br>
</div>
<span style="color: rgb(34, 34, 34); font-family: arial;
font-size: small; background-color: rgb(255, 255, 255); ">-- </span><br
style="color: rgb(34, 34, 34); font-family: arial;
font-size: small; ">
<div dir="ltr" style="color: rgb(34, 34, 34); font-family:
arial; font-size: small; "><font color="#888888">
<div dir="ltr" style="color: rgb(34, 34, 34); "><br>
</div>
<div dir="ltr" style="color: rgb(34, 34, 34); "><br>
</div>
<div dir="ltr" style="color: rgb(34, 34, 34); ">
<table style="font-family: Times; position: static;
z-index: auto; " border="0" cellpadding="0"
cellspacing="0">
<tbody>
<tr>
<td style="font-family: arial, sans-serif; margin:
0px; padding-left: 0px; font-size: 8pt; "
valign="top"><span style="font-family: Arial,
sans-serif; font-size: 9pt; font-weight: bold;
">Davis Goodman</span><br>
<span color="#B9B9B9" style="margin-top: 0px;
margin-bottom: 0px; font-family: Arial,
sans-serif; font-size: 8pt; ">Directeur
Informatique <font color="#B9B9B9" size="1"> |</font>
IT Manager<br>
</span></td>
</tr>
</tbody>
</table>
<a moz-do-not-send="true"
href="http://www.digital-district.ca/" target="_blank"
style="color: rgb(17, 85, 204); font-family: Times;
font-size: medium; "><img moz-do-not-send="true"
src="http://www.digital-district.fr/ddca/logo_dd_small.png"
alt="Digital-District" title="Digital-District"
align="middle" border="0" vspace="2"></a>
<table style="font-family: Times; " cellpadding="2"
cellspacing="1">
</table>
<table style="font-family: Times; " border="0"
cellpadding="0" cellspacing="0">
<tbody>
<tr>
<td style="font-family: arial, sans-serif; margin:
0px; padding-left: 0px; font-size: 8pt; "
valign="top"><span style="font-family: Arial;
font-size: 8pt; ">5605 Avenue de Gaspé, Suite
408 <font color="#B9B9B9" size="1">|</font> Montréal, QC H2T
2A4 <br>
Tél: +1 (514) 360-3253 x104 Cell:
+1 (514) 994-7360 <br>
<br>
</span></td>
</tr>
</tbody>
</table>
</div>
</font></div>
</div>
</div>
<br>
<div>
<div>On 2013-08-07, at 10:07 , Rob Crittenden <<a
moz-do-not-send="true" href="mailto:rcritten@redhat.com">rcritten@redhat.com</a>>
wrote:</div>
<br class="Apple-interchange-newline">
<blockquote type="cite">Davis Goodman wrote:<br>
<blockquote type="cite">Hi Brian, Lynn,<br>
<br>
As far as Linux client, this is not my issue for now, I
believe the Linux setup is quite straight forward and the
password change at first login seems to work without an
issue.<br>
<br>
My main concern is on Mountain Lion 10.8.x,<br>
<br>
At this point I've managed to bind the OSX machine to the
IPA server without any issue following this guide:<br>
<br>
<a moz-do-not-send="true"
href="http://linsec.ca/Using_FreeIPA_for_User_Authentication#Mac_OS_X_10.7.2F10.8">http://linsec.ca/Using_FreeIPA_for_User_Authentication#Mac_OS_X_10.7.2F10.8</a><br>
<br>
I also have all the autmounts configured via LDAP using
this: <a class="moz-txt-link-freetext" href="https://ssl.apple.com/business/docs/Autofs.pdf">https://ssl.apple.com/business/docs/Autofs.pdf</a> on page
16.<br>
<br>
My main issue right now seems to be at the GUI login. The
applet shows up for password change but doesn't seem to do
anything. When I press continue the applet comes back and
this goes in a loop until I hit "Cancel".<br>
<br>
My IPA versions are as follows:<br>
ipa-admintools.x86_64 3.0.0-26.el6_4.4<br>
ipa-client.x86_64 3.0.0-26.el6_4.4<br>
ipa-gothic-fonts.noarch 003.02-4.2.el6<br>
ipa-mincho-fonts.noarch 003.02-3.1.el6<br>
ipa-pgothic-fonts.noarch 003.02-4.1.el6<br>
ipa-pmincho-fonts.noarch 003.02-3.1.el6<br>
ipa-python.x86_64 3.0.0-26.el6_4.4<br>
ipa-server.x86_64 3.0.0-26.el6_4.4<br>
ipa-server-selinux.x86_64 3.0.0-26.el6_4.4<br>
ipa-server-trust-ad.x86_64 3.0.0-26.el6_4.4<br>
<br>
As mentioned in my first post, if I make the password change
at the terminal prompt, I am then able to login without a
password change prompt.<br>
<br>
Not sure if I'll be able to go through this issue unless
someone as already experienced this.<br>
<br>
Davis<br>
</blockquote>
<br>
What browser are you using?<br>
<br>
Have you tried the GUI with a new user from a Linux client?<br>
<br>
I'm thinking this is a browser issue rather than something
with OSX as the majority of the work is done on the server.<br>
<br>
rob<br>
<br>
</blockquote>
</div>
<br>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
Freeipa-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Freeipa-users@redhat.com">Freeipa-users@redhat.com</a>
<a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/freeipa-users">https://www.redhat.com/mailman/listinfo/freeipa-users</a></pre>
</blockquote>
<br>
Not an expert on OSX.<br>
I wonder whether the UI prompt supports password change workflow.
May be it does but needs to be explicitly enabled?<br>
There should be some logs on the OSX that would indicate what is
going on when the server responds with the password change prompt.<br>
I would suggest starting troubleshooting efforts there.<br>
<br>
<pre class="moz-signature" cols="72">--
Thank you,
Dmitri Pal
Sr. Engineering Manager for IdM portfolio
Red Hat Inc.
-------------------------------
Looking to carve out IT costs?
<a class="moz-txt-link-abbreviated" href="http://www.redhat.com/carveoutcosts/">www.redhat.com/carveoutcosts/</a>
</pre>
</body>
</html>