beautypg.com

Populating ldapv3 domains with data for macosx, Using an active directory server, Using an active directory server 98 – Apple Mac OS X Server (version 10.2.3 or later) User Manual

Page 98

background image

98

Chapter 2

You can find out the object classes of existing user records on the LDAPv3 server by using the
UNIX tool ldapsearch in a Terminal window. The following example would display the object
classes for a user record whose cn attribute is “Leonardo da Vinci:”

ldapsearch -x -h ldapserver.example.com -b "dc=example, dc=com"

'cn=Leonardo da Vinci' objectClass

The output displayed for this example command could be something similar to the
following:

# Leonardo da Vinci, example.com

dn: cn=Leonardo da Vinci, dc=example, dc=com

objectClass: inetOrgPerson

objectClass: posixAccount

Populating LDAPv3 Domains With Data for Mac OS X

After configuring LDAPv3 directory domains and setting up their data mapping, you can
populate them with records and data for Mac OS X. For directory domains that allow remote
administration (read/write access), use the Workgroup Manager application as follows:

m Identify share points and shared domains that you want to mount automatically in a

user’s /Network directory (the Network globe in Finder windows). Use the Sharing
module of Workgroup Manager. For instructions, see Chapter 4, “Sharing.”

m Define user records and group records and configure their settings. Use the Accounts

module of Workgroup Manager. For instructions, see Chapter 3, “Users and Groups.”

m Define lists of computers that have the same preference settings and are available to the

same users and groups. Use the Computers module of Workgroup Manager. For
instructions, see Chapter 6, “Client Management: Mac OS X.”

In all cases, use the At pop-up menu in Workgroup Manager to choose the LDAPv3 directory
domain. If the LDAPv3 domain is not listed in the At pop-up menu, choose Other from this
menu to select the LDAPv3 domain.

Note: To add records and data to a read-only LDAPv3 domain, you must use tools on the
server that hosts the LDAPv3 domain.

Using an Active Directory Server

Your Mac OS X Server, like any computer with Mac OS X version 10.2, can use Open
Directory to access an Active Directory domain hosted by a Microsoft Windows server. This
section explains how to configure your Mac OS X Server and client Mac OS X computers to
access an Active Directory server. This section also explains how to use your Mac OS X Server
to populate the Active Directory domain with records and data.

LL0395.Book Page 98 Wednesday, November 20, 2002 11:44 AM

See also other documents in the category Apple Software: