无法在AD Connected Mavericks Machine上创建移动帐户

4

每当我尝试以AD用户身份登录OS X Mavericks Macbook Pro时,它都说无法创建移动帐户。我确实将AD设置设置为在登录时创建一个移动帐户,这是正确的,但不能确定它为什么失败。我已经尝试运行terminal命令来创建移动用户(打开详细信息),这就是它返回的内容:(用户名已被替换为<username here>

bash-3.2$ sudo ./createmobileaccount -v -n <username here>
createmobileaccount built Nov 23 2013 15:20:29
verbose output on.
user name = "<username here>"
home path = "(null)"
user password = "(null)"
prompt for password = FALSE
encrypt new home = FALSE
create as external account = TRUE
home sync new account = FALSE
effective home path = /Users/<username here>
2013-12-20 08:14:17.753 createmobileaccount[9371:1303] ### authenticateUsingAuthorizationSync error:Error Domain=com.apple.systemadministration.authorization Code=-60007 "The operation couldn’t be completed. (com.apple.systemadministration.authorization error -60007.)"
2013-12-20 08:14:23.145 createmobileaccount[9371:507] MCXCCacheMCXRecordAndGraph(): vproc_swap_integer(NULL, VPROC_GSK_PERUSER_SUSPEND, &(uid=10175887), NULL) failed
2013-12-20 08:14:23.146 createmobileaccount[9371:507] MCXCCacheMCXRecordAndGraph(): [localNode createRecordWithRecordType:dsRecTypeStandard:Users name:"<username here"] == 4001 (Operation was denied because the current credentials do not have the appropriate privileges.)
2013-12-20 08:14:23.808 createmobileaccount[9371:507] MCXCCacheMCXRecordAndGraph(): vproc_swap_integer(NULL, VPROC_GSK_PERUSER_RESUME, &(uid=10175887), NULL) failed
2013-12-20 08:14:23.809 createmobileaccount[9371:507] MCXCCreateMobileAccount(): Failed to create account. Error = 4001 (MCXCCacheMCXRecordAndGraph failed). Cleaning up mobile account record.
*** mobile account could not be created: 4001 (Operation was denied because the current credentials do not have the appropriate privileges.)

我已经看到这些行声明我没有相应的权限,但我正在运行此操作,就像sudo我的管理员用户一样。

***更新

我尝试使用另一个管理员帐户运行该命令并获得不同的输出

bash-3.2$ sudo ./createmobileaccount -v -n '<username here>'
createmobileaccount built Nov 23 2013 15:20:29
verbose output on.
user name = "'<username here>'"
home path = "(null)"
user password = "(null)"
prompt for password = FALSE
encrypt new home = FALSE
create as external account = TRUE
home sync new account = FALSE
effective home path = /Users/'<username here>'
2013-12-20 09:44:16.603 createmobileaccount[9616:1303] ### authenticateUsingAuthorizationSync error:Error Domain=com.apple.systemadministration.authorization Code=-60007 "The operation couldn’t be completed. (com.apple.systemadministration.authorization error -60007.)"
2013-12-20 09:44:17.163 createmobileaccount[9616:507] MCXCCacheMCXRecordAndGraph(): vproc_swap_integer(NULL, VPROC_GSK_PERUSER_SUSPEND, &(uid=10175887), NULL) failed
2013-12-20 09:44:17.732 createmobileaccount[9616:507] MCXCCacheMCXRecordAndGraph(): vproc_swap_integer(NULL, VPROC_GSK_PERUSER_RESUME, &(uid=10175887), NULL) failed
2013-12-20 09:44:18.015 createmobileaccount[9616:507] MCXCCreateMobileAccount(): Failed to create account. Error = -6304 (mobile account file path is either not a directory or could not be properly created). Cleaning up mobile account record.
2013-12-20 09:44:18.019 createmobileaccount[9616:1303] ### authenticateUsingAuthorizationSync error:Error Domain=com.apple.systemadministration.authorization Code=-60007 "The operation couldn’t be completed. (com.apple.systemadministration.authorization error -60007.)"
2013-12-20 09:44:18.102 createmobileaccount[9616:507] MCXCDeleteAccount(): vproc_swap_integer(NULL, VPROC_GSK_PERUSER_SUSPEND, &(uid=10175887), NULL) failed
2013-12-20 09:44:21.579 createmobileaccount[9616:1303] ### Error: setMachineArray:(
    {
    date = "2013-06-13 23:01:20 +0000";
    "dsAttrTypeStandard:RealName" = '<old deleted username1>';
    "dsAttrTypeStandard:UniqueID" = 503;
    name = '<old deleted username>';
},
    {
    date = "2013-06-13 23:01:51 +0000";
    "dsAttrTypeStandard:RealName" = "'<old deleted username2>'";
    "dsAttrTypeStandard:UniqueID" = 502;
    name = '<old deleted username>';
},
    {
    date = "2013-06-25 21:46:17 +0000";
    "dsAttrTypeStandard:RealName" = temp;
    "dsAttrTypeStandard:UniqueID" = 504;
    name = temp;
},
    {
    date = "2013-08-07 15:29:02 +0000";
    "dsAttrTypeStandard:RealName" = "'<old deleted username3>'";
    "dsAttrTypeStandard:UniqueID" = 501;
    name = '<old deleted username3>';
},
    {
    date = "2013-12-20 16:44:21 +0000";
    "dsAttrTypeStandard:RealName" = "username here";
    "dsAttrTypeStandard:UniqueID" = 10175887;
    name = "'<username here>'";
}
) forKey:deletedUsers inDomain:com.apple.preferences.accounts
2013-12-20 09:44:21.580 createmobileaccount[9616:507] MCXCDeleteAccount(): vproc_swap_integer(NULL, VPROC_GSK_PERUSER_RESUME, &(uid=10175887), NULL)failed
*** mobile account could not be created: -6304 (MCXCCreateMobileAccount(): [newUser createHomeDirectory] failed)
macos  mavericks  user-account  active-directory 
MacMobileAccountHelp
source
您是否尝试通过用户界面而不是终端进行此操作?
Kevin Grabher 2014年

Answers:

1

我们最终通过运行命令解决了这个问题: 

sudo /System/Library/CoreServices/ManagedClient.app/Contents/Resources/createmobileaccount –v –P –n networkusername

我们仍然不确定为什么它不会自动创建帐户,但这对我们需要的东西起作用。

谢谢

MacMobileAccountHelp
source
By using our site, you acknowledge that you have read and understand our Cookie Policy and Privacy Policy.
Licensed under cc by-sa 3.0 with attribution required.