Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [opendirectory]

Open Directory is an LDAP-based Apple technology that is the centerpiece of its macOS Server product. It manages users, groups, computers, policies, managed settings, authentication and more.

98 questions
3
votes
0 answers

Ubuntu server + Samba + PAM + Apple OpenDirectory

Due to various reasons, we are looking to migrate our file servers from OS X Server 10.9 over to a true Samba implementation running on Ubuntu 14.04LTS. We have Ubuntu up and running with Samba installed, and even have PAM setup to authenticate…
quickthyme
  • 141
  • 4
3
votes
4 answers

What commands will change Open Directory passwords?

I understand Open Directory to be OpenLDAP + SASL (Password Server) + Kerberos. It appears that OpenLDAP defers to SASL for authentication; I don't know about Kerberos. I want to change user passwords from a script, preferably remotely, and I want…
Clinton Blackmore
  • 3,510
  • 6
  • 35
  • 61
3
votes
5 answers

Mac OS X Server user unable to log in though log appears fine

Trying to troubleshoot a user who is unable to log into our server from a client. Client is bound to server and other users can authenticate. ApplePasswordServer.Server.log says the following when user in question tries to log in from a…
Meltemi
  • 559
  • 2
  • 11
  • 23
3
votes
1 answer

What are the differences in schemas of main directory servers?

Active Directory, OpenLDAP or Apple's Open Directory have different schemas for holding user info and group membership. Having a Open Directory here I can say for example that user's Distinguished Name is attribute dn, while it seems to be…
CharlesB
  • 515
  • 1
  • 4
  • 20
3
votes
0 answers

Add memberOf attribute to all users in OpenLDAP on OS X Lion Server Open Directory

Our school's website has the ability to pull user authentication from a LDAP source. They "support" and LDAP. Unfortunately, to pull group membership you must have a memberOf attribute in each users' record. OS X Lion Server does not store users…
Phillip Boushy
  • 76
  • 5
3
votes
4 answers

OS X Login Authentication Against Leopard Server

I am doing a few tests with OS X Server before I have to do a deploy in a few months. I have configured Open Directory, and created a few users. I've configured Directory Utility on a 10.5 client, but the login authentication doesn't work the way…
mattdwen
  • 353
  • 1
  • 7
  • 20
3
votes
1 answer

Connecting FreeNAS 8 to Mac OS X Lion LDAP Server

I currently have Mac OS X Lion Server running from a MacMini and want to use it purely as an LDAP server for authentication for FreeNAS 8. I have FreeNAS setup and running on a VM, all features working correctly and as expected however I cannot…
Sam Ryder
  • 75
  • 6
3
votes
1 answer

Lag in MCX (Workgroup Manager) controlled Macs

At the beginning of the day and on semi-random days, some of my Mac users are experiencing heavy lag. For example, 5-10 minutes to login, several minutes for Safari to load, visible delays while typing in a text field in Safari (e.g. the login form…
Data Scavenger
  • 477
  • 3
  • 9
3
votes
1 answer

Repercussions of Raising Domain Functional Level to 2008 on Mac computers running 10.6.2 with OD

We have recently replaced all of our 2003 server domain controllers to 2008 r2 and have tried to implement PSO's but have found that the domain functional level must be raised to 2008. We have a mac server in our environment that runs open directory…
JohnyV
  • 938
  • 4
  • 26
  • 45
3
votes
4 answers

Easiest option for sharing users across linux machines?

On windows there's active directory. On Linux there are several options, but what's the dead simplest option to set up? I'd like to manage users and groups centrally, but don't need anything fancy beyond that. Let's say this doesn't have to scale to…
user32437
  • 131
  • 1
  • 2
2
votes
2 answers

Locked out of Snow Leopard Server. How do I get back in?

I have an XServe running Snow Leopard Server (10.6.2). It has some local administrator accounts on it and it is also an OpenDirectory master. I noticed earlier today that I was not able to login with local administrator credentials via a VNC …
Clint Miller
  • 1,141
  • 1
  • 11
  • 19
2
votes
2 answers

OS X Server NFS home directory mount options

we are running a couple of OS X clients in an open directory OS X server environment with home directories provide via NFS. The auto_home script allows to mount the home folder of the user without changing the client, the directory util has two…
chrstnwhlrt
  • 325
  • 6
  • 15
2
votes
2 answers

How can I disable a User Account from the CLI with Mac OS X Server Yosemite with pwpolicy deprecated?

Prior to Mac OS X Yosemite, admins were able to disable a Open Directory user by taking advantage of the pwpolicy command below: pwpolicy -a diradmin -p password -u username -disableuser or pwpolicy -a diradmin -p password -u username…
FKICK
  • 21
  • 2
2
votes
2 answers

How to enable DIGEST-MD5 SASL mechanism in Open Directory?

We've created an Open Directory master on OSX 10.10 Yosemite + Server.app v4: $ sudo slapconfig -createldapmasterandadmin admin Administrator 1000 But it doesn't support DIGEST-MD5: $ ldapsearch -x -LLL -b "" -s base…
eggyal
  • 392
  • 4
  • 16
2
votes
0 answers

SBS 2011 Essentials and too many new Mac users

We currently have about 15 users on a Windows SBS 2011 Essentials Server. I've just been informed that we plan to bring aboard about 15 more users that will be using Macs. We'll be using a Mac Server to manage the 15 new Macs, however, I'm looking…
Harry Muscle
  • 213
  • 2
  • 9
1
2
3 4 5 6 7