Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [opendirectory]

Open Directory is an LDAP-based Apple technology that is the centerpiece of its macOS Server product. It manages users, groups, computers, policies, managed settings, authentication and more.

98 questions
29
votes
5 answers

How to use Google Apps as an OD/AD/LDAP Provider

I see tons of solutions for allowing Google Apps to use external AD and LDAP services for login. However, I already have a ton of users setup in Google Apps already, and I'm trying to go the other way around. That is, I'd like to allow users to log…
pixelcort
  • 391
  • 1
  • 3
  • 5
17
votes
3 answers

Listing group members using ldapsearch

Our corporate LDAP directory is housed on a Snow Leopard Server Open Directory setup. I'm trying to use the ldapsearch tool to export an .ldif file to import into another external LDAP server to authenticate with externally; basically trying to be…
colemanm
  • 659
  • 5
  • 10
  • 25
13
votes
1 answer

Why is Mac OSX Lion losing login/network credentials?

Symptoms At work we have OSX 10.7.3 installed and every once in a while I will see the following behaviors: If the the screen is locked, then multiple tries of the same user/pass are not accepted. If the screen is unlocked, then opening a new bash…
Larry Kyrala
  • 231
  • 2
  • 5
9
votes
2 answers

Prompt for user group when logging into OSX domain

When a user is a member of more than one group, when logging in to a 10.6 machine, it shows a prompt asking for what group to apply settings for. We're using the groups to mount different shares, e.g. Production and Accounts, based on user…
mattdwen
  • 353
  • 1
  • 7
  • 20
8
votes
3 answers

Join ActiveDirectory (Win 2k8R2) to OpenDirectory(Snow Leopard)

The vast majority of questions and so on regarding the interoperability of Active and Open directories involves getting Mac clients to see an AD and auth against it. What we'd like to do is get a Windows 7 workstation to auth completely against Open…
Tom O'Connor
  • 27,440
  • 10
  • 72
  • 148
6
votes
3 answers

How can I disable a User Account from the CLI with Mac OS X Server?

Is there any possible solution to disable a User from the CLI e.g. over SSH? There has to be a dscl command for that. Or is there a dsAttrTypeStandard attribute that I can set accordingly? Any pointers ?
user19059
5
votes
1 answer

What Is The Recommended Way To Backup OS X Open Directory?

We have recently bought a Mac Mini preloaded with Mountain Lion Server to use as an Open Directory master, and I'm not clear on how the data for Open Directory is supposed to be backed up. We are currently using Time Machine to backup the system,…
Stuart Ellis
  • 151
  • 1
5
votes
0 answers

Dynamically translate posixGroup to groupOfNames in slapd (Apple Open Directory)

I'm setting up an application to authenticate to Open Directory using LDAP. Open Directory stores groups in RFC 2307 posixGroups format, like this: cn: mygroup objectClass: top objectClass: apple-group objectClass: posixGroup apple-group-memberguid:…
paulmelnikow
  • 453
  • 3
  • 9
5
votes
3 answers

Does joining a Lion Open Directory with Windows actually work?

According to https://help.apple.com/advancedserveradmin/mac/10.7/#apd52648A71-571A-433C-81A8-2A7792333F22 it's possible to join a Lion Open Directory using a Windows machine, making it think it's joining an Active Directory domain. However, I had no…
pilif
  • 638
  • 9
  • 11
5
votes
1 answer

Replication from OSX OpenDirectory to OpenLDAP

I have an OpenDirectory server running on an OSX Server machine, and I'd like to increase the reliability of the service by having a slave server. The problem is, I only have 1 OSX Server but I have plenty of Linux servers available. I'm happy with…
natacado
  • 3,317
  • 28
  • 27
5
votes
2 answers

How do I determine if an Apple Open Directory user is disabled via LDAP?

I have an Open Directory user that has the "Access Account" box unchecked in Workgroup Manager so they cannot login. Is there a way to determine this using an LDAP query? It would also be good to be able to check their Login Shell setting for…
Harley
  • 2,177
  • 6
  • 25
  • 29
4
votes
2 answers

Open Directory and SAML Identity Provider

Our office has switched almost entirely from Windows to Mac OS X, and our local server is due for replacement. We use Active Directory basically just for user authentication. We're considering replacing the current Windows Server with a Mac Mini…
samh
  • 213
  • 4
  • 11
4
votes
1 answer

OSX Server 3, Mac clients binding to OD and Profile Manager failing

I've made a setup containing a Mac Mini with OSX Server 3 (Mavericks 10.9.2) using Open Directory and Profile Manager (Mail, etc all set up and working). Now the thing is, internally on the local network, everything works great. Clients can bind to…
dbf
  • 143
  • 1
  • 6
4
votes
0 answers

Open directory, external NFS file shares and automounter

This may be a big one. I've set up Open Directory on Mac OSX 10.8 (Mountain Lion) with users to allow everyone on the network to logon to any client with these centrally stored users. Before this system, we used NIS and mounted home directories with…
Eldamir
  • 179
  • 1
  • 10
4
votes
3 answers

Mac OS X Server add server user

What's the recommended way to add a user to Mac OS X Server that doesn't need all the hoopla associated with Workgroup Manager? There are many users pre-configured in Mac OS X Server (www, root, ldapadmin, etc.) that don't have "Full Name" or mail…
Meltemi
  • 559
  • 2
  • 11
  • 23
1
2 3 4 5 6 7