Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

d4rkm0de

macrumors newbie
Original poster
Aug 28, 2019
2
0
I came across an issue where my account password for OSX authentication was not in sync with the newly changed Active Directory password.

My account is an Admin, Managed, Mobile account bound to my Active Directory Domain and the Network Account Server is showing a Green dot with my domain. All looks totally normal
upload_2019-9-4_14-49-36.png

upload_2019-9-4_14-49-18.png


I am able to authenticate to network services while logged in using my new password, however the new password was not synchronizing with my OSX user account.

I unlocked the lock icon in Users & Groups and clicked on Edit... to pull up the Network Account Server settings and see the following message:

"This server is not in your authentication search policy"

I solved this issue by opening the Open Directory Utility
upload_2019-9-4_14-55-38.png


And navigating to the Search Policy. Unlock the icon to make changes.

This is where I noticed that the Search Path was originally set to Automatic
upload_2019-9-4_14-58-16.png


I then was able to change this to a Custom path:
Selecting the + button allowed me to select which domain is preferred in the search path.
First option was Local (default)
Second option I selected my active directory domain.

Saved the settings and immediately my password was synchronized.

This was verified after reboot and I no longer have any password issues.
 

Attachments

  • upload_2019-9-4_14-57-3.png
    upload_2019-9-4_14-57-3.png
    27.3 KB · Views: 139
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.