Mac OS X v10.6: Clients bound to Active Directory may not be able to dismiss screen saver using Active Directory credentials

Products Affected

Mac OS X 10.6, Active Directory

Symptoms

When bound to Active Directory, Mac OS X v10.6 clients may not accept Active Directory credentials to dismiss the screen saver if it requires a password (that is, if "Require password to wake this computer from sleep or screen saver" is enabled in the Security preferences pane).  This article provides a workaround.

Resolution

  1. From the Go menu choose Go to Folder
  2. Type /etc
  3. Click Go
  4. Open the file named "authorization" in a text editor
  5. Find the following text in the "system.login.screensaver” entry:
    <string>The owner or any administrator can unlock the screensaver.</string>
     
  6. Change it to this:
    <string>(Use SecurityAgent.) The owner or any administrator can unlock the screensaver.</string>
  7. Save the file
Important: Information about products not manufactured by Apple is provided for information purposes only and does not constitute Apple’s recommendation or endorsement. Please contact the vendor for additional information.
Not helpful Somewhat helpful Helpful Very helpful Solved my problem