For anyone watching this discussion, it appears that local users (ones created in the OS) are also deaf to the RealName. I setup some local users and groups and they also can only log in under their short name as well. Does anyone have Server 11 running on Lion, with external authentication to something other than Active Directory?
I have the exact same issue. Just moved from a snow leopard server to a Lion server and now I need to use the shortname to authenticate against the Open Directory.
Now I think it also could be a fms 11.0v4 issue, as I was running 11.0v3 on my snow leopard server.
edit: I just found this in the knowledge base:
It seems that the issue appears with fms 11.0v4 on Lion servers
The knowledgebase article refers to Microsoft Active Directory (unless I am missing something) not Apple Open Directory. I believe the change is an Apple one. They swapped the daemon used to query the OpenLDAP and it no longer supports Full Names (RealName in OD parlance)- however you can throw the Full Names into the ShortNames array and get the same end result (that is what we ended up doing). Apple Enterprise Support confirmed that this is new and expected behavior.
When you say throw the Full Names into the ShortNames array you mean directly in the OD? Replace the shortname with the Full Name?
In the OD - you can use the Workgroup Manager or The Directory Utility to add another ShortName. Just Type or paste in the RealName
RealName: Bob Smith
Real Name: Bob Smith
This technique works in versions of the OS earlier than 10.7, but appears to be essential for Lion FMS setups
Yes... this is what I have had to do in the past with non-local accounts for a few versions of OSX...
I haven't yet configured a Lion /FMSA11 server with local account... so thanks for the heads-up before I do..
Thanks Vince. I'll give it a try.