The only issue I'm having is that it keeps losing connection with my wrist and locking itself when I'm out and about, and asking me to enter the passcode, or unlock it with my iPhone. When using it for things like maps, or to quickly see if a notification is important or not, this gets very annoying and inconvenient.
When trying to use saved credentials in Remote Desktop Connection you might receive this message: Your credentials did not work. Best charge for mac. Your system administrator does not allow the use of saved credentials to log on to the remote computer terminal.server.com because its identity is not fully verified.
Please enter new credentials. To be able to use saved credentials in this situation you need to do the following: 1. Open Group Policy Editor via cmd -> gpedit.msc 2. Navigate to Local Computer Policy Computer Configuration Administrative Templates System Credentials Delegation 3.Open Setting Allow Delegating Saved Credentials with NTLM-only Server Authentication, set it to Enabled click on button Show. And in Show Contents window add Value TERMSRV/* Close all windows by pressing OK. Run cmd and enter gpupdate command to update your policy.
Now you should be able to use your saved credentials.
In our office, we are running some Windows servers running an Active Directory domain. We've got a a number of security policies that we enforce, including a 180 day password expiration policy. Everybody in the company has a laptop that is joined to the domain, a mix of Win7 and Macbook Pro's (Mountain Lion or Lion). Every users domain login is used to log in to their laptops as well as a few corporate resources, including Cisco VPN connection when away from the office.
When the expiration date comes up, it's not a problem for most users. They come in to the office, get the expiration notice, and change their password at login or via the usual change password options for Win7 or OS X. The problem comes for the handful of office users who are permanently remote.
Specifically the Mac users. Step and repeat template. I've found several ways for users to be notified of an expiring password (scripts+email, adpassmon, etc). The problem is the actual password change. The Windows users can VPN in, hit Ctrl-Alt-Del, change their password and everything is updated and fine. If a Mac VPN's in and tries to change their password, they just get the 'password was not changed' message ('your system administrator may not allow you to change your password or there was some other problem with your password.'
Anyone know why, or have a solution for this? I know I could have users VPN in and Remote Desktop to another machine to change their passwords, but this will play havoc with the local machines keychain, as well as sudo privileges, which might just get worse the next time they visit the office. Edit: I should clarify that one of the issues seems to be that even with an active vpn connection, OS X doesn't seem to try and communicate/authenticate against the AD servers (just keeps using cached credentials), even when a password change has been attempted. So even if a password is changed via some external method (OWA, remote desktop, a manual reset by me) the OS X machine will not have the changed password. This will necessitate the user knowing 2 passwords for a length of time, as well as some possible screwy permissions with the keychain and sudo.