Mailing Lists: Apple Mailing Lists
Image of Mac OS face in stamp
 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: AD authentication and mail service

On 7/30/04 1:44 PM, Prell, Jason D wrote:

> settings because they do not exist otherwise. Since this setting cache
> does not exist in AD and it is providing for the lack of those LDAP
> attributes, you can not write back to Active Directory the settings in
> WGM unless you have extended your schema.

Ah, I didn't realize it was trying to write back to the AD. Because Panther
can authenticate against AD, and because the mail store is local, I didn't
think it would need to write back. But I guess the *settings* for the
user's mail services would need to be stored in the AD, so now I see the
problem.

> Why are you trying to configure mail accounts for users that reside in
> AD from the server running your mail service?

Because we only want to maintain one directory. Window would run the
directory, OS X runs the mail server, and the goal is to simplify and
centralize. If a user changes their AD password, we don't want to have to
change it on the OS X machine as well. We just thought this was how
directory integration worked, and that mail password integration would be
one of the benefits of binding the Xserve to AD. I see now that it's not.

> You can configure mail accounts through AD Users and Computers to
> forward mail to accounts that reside on your mail server (if that is
> what your OS X Server is going to do, but you will need to setup
> separate accounts for them) You do not need to create local accounts,
> but Open Directory Accounts.

Right, sorry - that's what I meant.

Thanks for the explanation.

Still, it seems like something like this must be possible. I wonder if
there's a way to sync AD users to OD, to avoid having to maintain two
directories.

Scot

--

UC Berkeley Graduate School of Journalism
http://journalism.berkeley.edu
_______________________________________________
macos-x-server mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/macos-x-server
Do not post admin requests to the list. They will be ignored.
When responding to messages, please keep your quotes short.


Visit the Apple Store online or at retail locations.
1-800-MY-APPLE

Contact Apple | Terms of Use | Privacy Policy

Copyright © 2007 Apple Inc. All rights reserved.