Login and directory binding delays on systems joined to an Active Directory domain ending in ".local"
Delays may occur when joining to or authenticating users against an Active Directory domain that ends in ".local".
For OS X Mountain Lion, please see this article.
For OS X Lion, update to OS X Lion v10.7.3 or later.
For Mac OS X v10.6.8, this behavior can be mitigated by creating forward (AAAA) and reverse (PTR) IPv6 records on each DNS nameserver for all Active Directory domain controllers. An IPv6 reverse zone will need to be created to hold the PTR records.
Specific instructions for creating these records will vary depending on your DNS server. For example, see the following Microsoft support articles if you are using a Microsoft Windows 2008 DNS server:
- "Add a host (A or AAAA) resource record to a zone" details the creation of AAAA records for a Microsoft Windows 2008 DNS nameserver.
- "Creating a reverse lookup zone" details the creation of an IPv6 reverse zone for a Microsoft Windows 2008 DNS nameserver.
- "Add a pointer (PTR) resource record to a reverse lookup zone" details the creation of PTR records for a Microsoft Windows 2008 DNS nameserver.
Self-selected unique-local IPv6 addresses may be employed if an IPv6 address space has not been established. The IETF has designed the FD00::/8 address space for this purpose. Addresses in this space are not globally routable and are suitable for internal networks.