Apple Mac OS X Server (version 10.2.3 or later) User Manual

Integrating Mac OS X Directory Services With Active Directory

641

Step 1:

Connect to Mac OS X Server

After logging in to a Mac OS 9 or Mac OS X computer, the user requests an Apple file service
connection with Mac OS X Server. First, the user identifies the server, usually by using the
Chooser on a Mac OS 9 computer or choosing Connect to Server from the Go menu on a
Mac OS X computer. Then the user authenticates with Apple file service by entering a name
and password.

In this example, the Mac OS X Server has the IP address 10.43.12.40 and the name
bigmac.corp.apple.com. The user has the short name “jdm,” and the share point the user
wants to access is named “Marketing.”

Step 2:

Set up share point access

Next, the Mac OS X Server retrieves the user’s Active Directory record and authenticates the
user for file service. The server compares the user ID (UID) and group ID (GID) attributes in
the record with the access privilege settings of the server’s hosted share points and
determines which share points the user may access.

10.43.12.40

bigmac.corp.apple.com

/Marketing

Macintosh

client computer

Mac OS X Server

hosting AFP share points

user: jdm

Users

/Marketing

Windows 2000 Server

hosting Active Directory

Mac OS X Server

hosting AFP share points

10.43.12.172

supergirl.corp.apple.com

cn=Users,dc=supergirl,
dc=corp,dc=apple,
dc=com

LL0395.Book Page 641 Wednesday, November 20, 2002 11:44 AM