Users can't log in anymore

[agtjazz]

We have a Filemaker server serving a database. The users (populated via LDAP) are in a group (FM_Dataentry) on the Mac server. Filemaker database is assigning permissions via the External Server and specifying that group (FM_Dataentry). They logged into the database using their LDAP login and password without any problems …. UNTIL this morning when we did an unexpected reboot. The login/password screen just blinks at you. It tries and comes back- no error, no message- nothing.

I have tried making a new group on a test database on the server and can recreate the issue. It’s like the Filemaker Server is not recognizing the group on the Mac Workgroup manager.

Now we can’t log into the database using these LDAP accounts that are in the group on the MAC OSX server. When we open the logs in FIlemaker Server, there’s not an error or event recorded.

Any ideas or clues on where to look?

[Steven H. Blackwell]

I assume you're talking about Open Directory, not LDAP. There is no authentication by LDAP on either Mac or Windows.

Where are the groups located? On the FileMaker Server as local groups or on a domain controller?

If on a Domain Controller, possible the FileMaker Server has become "unbound" from the Domain. You may need to reset that.

Steven

[agtjazz]

This server is a member of a "Golden Triangle" environment. It's a domain controller. We will try to unbind-rebind tomorrow morning....

At cmd line on the server, if you type id username... it shows some but not all the groups this user belongs to.

[Singlequanta]

Another thing to check as well;

If kerberos is involved; ensure that your machines clocks are all synch'd. Skewed time will certainly cause big issues with authentication.

S