Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >
article

KB-3331: Automount GPs will only create a shortcut to the root of the network share

Centrify Identity Service, Mac Edition ,  

12 April,16 at 11:11 AM

Applies to: Centrify DirectControl for Mac version 5.1.3 and below with OS X 10.7 and above

 
Problem:
 
If the automount group policies are set to a share path that is several folders deep, the share is mounted successfully, but the shortcut created only leads to the root of the sharepoint instead of the target subfolder.
 
Multiple duplicated shortcuts may also be created if there are multiple shares configured from the same file server.
 
Example:
- There are two shared folders that a user wishes to automount
- Both folders come from the same network share.
 
- The "Automount network shares" GP is set up with the following paths:
  • smb://server.domain.com/TestShare/SubTest/SecondSubTest/ThirdSubTest
  • smb://server.domain.com/TestShare/SubTest/2nd With Space/ThirdSubTest
 
- Therefore the expected shortcuts that are created in the "Network Shares" folder on the Desktop should be:
  •   ~/Desktop/Network Shares/ThirdSubTest -> /Volumes/TestShare/SubTest/SecondSubTest/ThirdSubTest
  •   ~/Desktop/Network Shares/ThirdSubTest -> /Volumes/TestShare/SubTest/2nd With Space/ThirdSubTest
 
- However when the AD user logs in, the only shortcut created in the folder is:
  •   ~/Desktop/Network Shares/TestShare -> /Volumes/TestShare
User-added image

 
This issue does not exist on OS X 10.6 and below.
 

Cause:
 
OS X changed the way it handled share mounting from OS X 10.7 onwards which directly affected the way the automount group policies detected the path with which to create its shortcuts.
 
The change affected both the "Automount network shares" and the "Automount user's Windows home" group policies.
 

Workaround:
 
Centrify User Suite 2014 introduced a new option to create automount shortcuts as aliases instead of symlinks.

This can also be used to workaround this issue for all versions of OS X:
  1. Update the Mac agent to version 5.1.3-482 or higher. (Run adinfo -v at the Terminal to check the currently installed version)
     
  2. Go to the GPO containing the Automount group policies and update the GPO template to the latest versions using the following KB:

    KB-2600: How to install new Centrify Group Policies templates for Mac.
     
  3. Enable the following GP:

    User Configuration / Centrify Settings / Mac OS X Settings / Automount Settings / "Create alias instead of symbolic link"
     
  4. Go to the target Mac, logout and log back in as an AD user. The network share shortcuts should now appear correctly on the Desktop.


Resolution:

This was fixed in Centrify for Mac agent version 5.2.0
 

Still have questions? Click here to log a technical support case, or collaborate with your peers in Centrify's Online Community.