What logs you pretend me to see? I really don’t have the ability to see the logs, I never know what to find.
I don;t know too… Give us the list of all logs files.
Take a look here, it seem really interesting:
https://discussions.apple.com/thread/6286830?start=0&tstart=0
Give us more details on your ldap configuration.
And give us details about what you already done, or not done yet…
Because this case is complicate, more yet without technicals details.
Is the Mac is in the same domain? the same network? the same subnetwork? Is in DHCP? the communication between the Mac and the Nethserver is ok?
Until now, we hare really few things to workaround.
In this moment the Ldap configuration is direct (Ldap mappings: from server) I didn’t use custom or the RFC2307
Before I tried this link:
http://www.hawaii.edu/askus/1625
but didn’t work, I already test the others links.
The Mac is in the same network and I put a static IP, the communications are ok because I can access to the file shares.
Look if the dns is correctly set, and the domain name too, it seem important in all doc I see.
Give a try to avahi on the Ns Server, this little daemon can discover and make things easy for the Mac binding.
I beg your pardon, but there’s nothing to workaround about.
To authenticate an OSX machine in a LDAP domain something must be configured on both sides…
I don’t know the OSX’s one, but I’m quite sure that on NS side there must be an addictional schema in ldap and that TLS must be used, otherwise there’s no access to username/passwords (and so you’ve to deal with certificates and so on); it’s not trivial at all.
moreover, the link you posted is referred to a quite old OSX release and a different situation: in that case an OSX client is trying to authenticate itself on another OSX open directory ldap, which is a bit different from openldap and that needs kerberos (just like AD); to work with NS’ ldap, you don’t need kerberos (at least, linux clients don’t need it to use ldap authentication)
regarding logs: they are useless, but it seems you don’t understand…
to understand the situation, think about the client speaking in english and asking for credentials to NS, which is a native chinese speaker… no automatic translation in the middle, so, on both sides, you can only find something that souds like “I asked, no one answered” and “I hear something, but can’t understand what it was”
is it clearer now?
instead of asking for logs, install a vitual NS in bridged mode on your mac and try yourself, but I advise you it won’t be easy
finally: remembering what you told about developers documentation for dummies and the answer you got from @stephdl (something like “if you aren’t driven by curiosity, you won’t never be a developer”), I notice that in this case, where you CAN do some tests on your own and help OP, you are not… I have no mac here and I won’t deal at all with dowloading it in any way just to try, but the request coming from OP is interesting, and who has the possibility to make some tests, should really dive into.
all, as usual, IMVHO
I insist with the log, perhaps in the “chinese” Nethserver log ( to continue the allegory ) he will find something like… “I don’t know what this client want”… And give a bunch of number error… Few indications… 
And yes,there’s nothing to workaround… So I Imagine a situation, make few research on Google and give links.
To configure ldap on a virtual NS…
How to? Which configuration? Configure a ldap cover a waste field on parameters? And @Paulo_Rodrigues until now don’t give one details
I just didn’t give any details about the logs because I don’t know what to find and I have a lot of logs.
and in the previous msg I sent the details. 
I appreciate all the help I got until now from @Jim and @zamboni
You are the best, I will continue to do same tests 
1 Like
ADMit Mac is the only way to Authenticate against NT4 Domains.
it’s from Thursby and you can try it for free ( http://www.thursby.com/ )
for the ldap way, start from this: http://pig.made-it.com/ldap-mac.html
@Jim: please, setup a virtual NS in bridged mode and try on your mac and report back here… you can safely undo all the things…
I don’t know why but Admit Mac doesn’t work,
I’m trying what you said about ldap "for the ldap way, start from this: http://pig.made-it.com/ldap-mac.html"
Makes more sense to me.
well… it’s a payed application, just ask thursby support!
BTW, I guess that you can’t use it if you’re already using ldap
moreover, for the future, “it doesn’t work” tell us nothing… you’d really start do dive into Uninx-like OS logs (google will tell you more about where to find them and how to search into them)