Mac integration to Active Directory

Joined
Jul 19, 2011
Messages
1
Reaction score
0
Points
1
Your Mac's Specs
PowerMac G5 Dual PPC 2GHz, PowerMac G4 Dual 1Ghz PPC, Mac Mini Intel Core Duo
Hi Forum, I wonder if any one can shed some light on this issue.

AD domain and 4 MACS, no MAC Server. On initial startup none of the MACS have the option to log straight on to the domain. Once logged in locally can log out and then you get the 'Other' Choice. Not sure if I can justify a MAC server, is there something extra I need set up. The time is ok on the MAC's compared to the Domain so not sure if the issue is there but is it poss to find out the actual hardware date and time on the MACS and make sure it is ok. I am having this issue on Tiger, Leopard and Snow Leopard.

Maybe the way I have setup, AD is fine (2003 R2) and I have minimum domain policies, Windows Clients have no issues.

Pretty new to MACS although I have gained a few over the last year. Need to keep AD stuff can't really ditch Windows alltogether yet :\ .

Regards,
;D
 
Joined
Dec 9, 2010
Messages
844
Reaction score
49
Points
28
Location
Virginia
Your Mac's Specs
Currently 13" Late 2010 MBA, 4GB/128GB; Early 2011 13" MBP, dual core i7 2.7ghz, 4gb ram, 500gb hd
I'm only slightly familiar with what needs to be done on the Windows side. I know it involves extending the schema for Macs, and in our environment, we add each computer ID through UMC to a Mac OU.

System Preferences->Accounts
• Unlock to make changes
• Click the Join or Edit button (depending if added to Active Directory)
• Click the Open Directory Utility button
• Highlight Active Directory and click the “edit” button (pencil)
• Expand Show Advanced Options (click arrow)
• Create mobile account at login = Checked
• Require confirmation before creating a mobile account = Unchecked
• Use UNC Path from Active Directory to derive network location = Unchecked
• Leave all other settings as Default

• Active Directory Domain: = domainname
• Computer ID: = computername
• Click the Bind… button
• Authenticate using an Administrator password, if prompted.
• Username: = valid AD admin account used to add computer to UMC
• Password: = password of the admin account above
• Click OK. (You may be asked to enter the local Administrator password)
• Click OK if asked to Join Existing Account.

On the Mac itself, we use the following through terminal to create the mobile accounts:

cd /System/Library/CoreServices/ManagedClient.app/Contents/Resources/
sudo ./createmobileaccount -n userid
enter admin PW (if prompted)
sudo createhomedir -c -u userid
 

Shop Amazon


Shop for your Apple, Mac, iPhone and other computer products on Amazon.
We are a participant in the Amazon Services LLC Associates Program, an affiliate program designed to provide a means for us to earn fees by linking to Amazon and affiliated sites.
Top