[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Active Directory - Scenarios 3 & 4

Subject: Active Directory - Scenarios 3 & 4
From: "email@hidden" <email@hidden>
Date: Mon, 29 Apr 2002 21:46:37 -0400

Gday Everyone
I've been experimenting with Active Directory. I am looking toward Macs/
Windows integeration. I want user to access the same home
directories whether they log in on a windows client or through MM. The
AD integration mention scenarios 1 & 2. I propose scenarios 3 & 4
The mac users would be os9.x clients running MM.
Scenario 3 is home directories being stored on the OSX Server
Scenario 4 is home directories being stored on a windows 2000 server

To get the senarios working you need to report a different home
directory string to each platform. Windows clients get //servername/
sharepoint/username and mac clients get the xml afp version as in the
active directory integration document. You map the home dirctory to
another LDAP fileld where you store the afp home directory path. I
used User Parameters in the test but I would probably use the
description field if I did it again.

Unfortunately Scenario 3 will not work as the version of Samba
OSXS10 uses is not compiled with the LDAP option. I have no desire to
replace samba as I want the OSXS box to be easily upgradable. There
would need to be a copy of the active directory users on the osx10
server which is what I'm trying to avoid.

Scenario 4 will work because w2000 will share windows & mac
properly through AD. However there are a couple of considerations.

1: You can only have 1 Organisational Unit to search in the AD
2: While an import all will bring in the LDAP users into MM ok , a
synchronisation will delete them since they do not exist on the osxs
box. A way to disallow synchronisation would be nice
3: Users must log in with their shortname. Allthough it displays the
long users name I couldn't log in with them, athough there may be a
way around this.
4: You can't change the password from within MM. But using adsi it
would be easy to provide a web based way to do this.

It would be nice if apple got scenario 3 working. We are re-evaluating
our plans to buy retrospect 5 to backup our OSXS box if we end up
moving users to a w2000 box to get Windows/Mac integration. It is
quite possible to have a OSXS box running local netinfo acting as the
MM front for a windows network. This would mean less OSX server
would be purchased since only 1 per site would needed. So Apple if
you want to sell more servers get samba/LDAP working.

Window/MAC integration is going to happen here, not matter which way
we have to do it.

Any comments

Phillip Graham
IT Support
St Josephs catholic High

--------------------------------------------------------------------
mail2web - Check your email from the web at
http://mail2web.com/ .
_______________________________________________
macos-x-server mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/macos-x-server
Do not post admin requests to the list. They will be ignored.

Prev by Date: Re: PKG installation via CLI
Next by Date: Apache includes help needed
Previous by thread: Apple Remote Desktop client on a OS X server (SOLUTION)
Next by thread: Apache includes help needed
Index(es):
- Date
- Thread

Home