I came across an issue where my account password for OSX authentication was not in sync with the newly changed Active Directory password.
My account is an Admin, Managed, Mobile account bound to my Active Directory Domain and the Network Account Server is showing a Green dot with my domain. All looks totally normal
![upload_2019-9-4_14-49-36.png]( "upload_2019-9-4_14-49-36.png")
![upload_2019-9-4_14-49-18.png]( "upload_2019-9-4_14-49-18.png")
I am able to authenticate to network services while logged in using my new password, however the new password was not synchronizing with my OSX user account.
I unlocked the lock icon in Users & Groups and clicked on Edit... to pull up the Network Account Server settings and see the following message:
"This server is not in your authentication search policy"
I solved this issue by opening the Open Directory Utility
![upload_2019-9-4_14-55-38.png]( "upload_2019-9-4_14-55-38.png")
And navigating to the Search Policy. Unlock the icon to make changes.
This is where I noticed that the Search Path was originally set to Automatic
![upload_2019-9-4_14-58-16.png]( "upload_2019-9-4_14-58-16.png")
I then was able to change this to a Custom path:
Selecting the + button allowed me to select which domain is preferred in the search path.
First option was Local (default)
Second option I selected my active directory domain.
Saved the settings and immediately my password was synchronized.
This was verified after reboot and I no longer have any password issues.
My account is an Admin, Managed, Mobile account bound to my Active Directory Domain and the Network Account Server is showing a Green dot with my domain. All looks totally normal
I am able to authenticate to network services while logged in using my new password, however the new password was not synchronizing with my OSX user account.
I unlocked the lock icon in Users & Groups and clicked on Edit... to pull up the Network Account Server settings and see the following message:
"This server is not in your authentication search policy"
I solved this issue by opening the Open Directory Utility
And navigating to the Search Policy. Unlock the icon to make changes.
This is where I noticed that the Search Path was originally set to Automatic
I then was able to change this to a Custom path:
Selecting the + button allowed me to select which domain is preferred in the search path.
First option was Local (default)
Second option I selected my active directory domain.
Saved the settings and immediately my password was synchronized.
This was verified after reboot and I no longer have any password issues.
