This article applies to:
- R3000/WFR
- Mac Authenticator 1.0.3
Symptoms:
- When a user logs into a master OD server, they authenticate correctly. However, when logging into a replica OD server, authentication fails.
Causes:
- When logging into a replica server, the Authenticator appends the replica server's FQDN onto the user's FQDN, creating a username that normally doesn't exist in the directory.
Resolution:
If all user objects are stored in the same location (i.e. a "CN=users" folder), then a workaround is available. In the 8e6Authenticator.conf file, an additional parameter will need to be added - an example follows:
UQ[uid=%1,cn=users,dc=domain,dc=org]
The portions beyond the "uid" variable will need to be set to match the rest of the FQDN for users. This will force the user to login with the proper FQDN.