NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
CNID DB error using AFP in Lion
My rig: late 2011 iMac 27inch 3.1Ghz Quad Core i5 running OS X Lion ReadyNAS NV+ RAIDiator 4.1.8 4x1tb Hitachi drives I'm having an issue whenever I try to use AFP on the ReadyNAS NV+. The pro...
Fun reading - http://www.pcmag.com/article2/0,2817,2388928,00.asp - Headline - Apple OS X Lion, NAS Data Issues Widespread; Could Take Weeks to Fix from July last year.
After a week with L3 tech support not able to do anything for me and reverting from 4.2.20 to 4.2.17 back up to 4.2.19 and having to delete .AppleD* files at least twice a day to get my AFP shares to work (they did not work) ....I did a ton of reading think I may have figured this out. The problem is that apple updated Netatalk authentication. For security reasons apple disabled "DHCAST128", which is an asymmetrical encryption algorithm used for the password authentication, as allowed for the AFP Protocol in Lion. Now the minimum requirement is "DHX2" – the successor of DHCAST128. and they removed Lion needs DHX2 authentication in order to support user logins and support for AFP 3.3
The default configuration is to symlink "uams_dhx2.so" to "uams_dhx2_pam.so" inside "/usr/lib/netatalk". I noticed there is "uams_dhx2_passwd.so" in /usr/lib/netatalk so I edited:
/etc/netatalk/afpd.conf >>
and
/etc/default/netatalk >>
You could alternatively change the symlink for "uams_dhx2.so" to "uams_dhx2_passwd.so" inside "/usr/lib/netatalk
Reboot after changes and I am good so far.
After a week with L3 tech support not able to do anything for me and reverting from 4.2.20 to 4.2.17 back up to 4.2.19 and having to delete .AppleD* files at least twice a day to get my AFP shares to work (they did not work) ....I did a ton of reading think I may have figured this out. The problem is that apple updated Netatalk authentication. For security reasons apple disabled "DHCAST128", which is an asymmetrical encryption algorithm used for the password authentication, as allowed for the AFP Protocol in Lion. Now the minimum requirement is "DHX2" – the successor of DHCAST128. and they removed Lion needs DHX2 authentication in order to support user logins and support for AFP 3.3
The default configuration is to symlink "uams_dhx2.so" to "uams_dhx2_pam.so" inside "/usr/lib/netatalk". I noticed there is "uams_dhx2_passwd.so" in /usr/lib/netatalk so I edited:
/etc/netatalk/afpd.conf >>
- -tcp -noddp -uamlist uams_dhx.so,uams_dhx2_passwd.so
and
/etc/default/netatalk >>
AFPD_UAMLIST="-U uams_dhx.so,uams_dhx2_passwd.so"
You could alternatively change the symlink for "uams_dhx2.so" to "uams_dhx2_passwd.so" inside "/usr/lib/netatalk
Reboot after changes and I am good so far.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
