Forums
New posts
Articles
Product Reviews
Policies
FAQ
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Menu
Log in
Register
Install the app
Install
Forums
Apple Computing Products:
macOS - Operating System
Mac integration to Active Directory
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="EvenStranger" data-source="post: 1267745" data-attributes="member: 181804"><p>I'm only slightly familiar with what needs to be done on the Windows side. I know it involves extending the schema for Macs, and in our environment, we add each computer ID through UMC to a Mac OU. </p><p></p><p>System Preferences->Accounts</p><p>• Unlock to make changes</p><p>• Click the Join or Edit button (depending if added to Active Directory)</p><p>• Click the Open Directory Utility button</p><p>• Highlight Active Directory and click the “edit” button (pencil)</p><p>• Expand Show Advanced Options (click arrow)</p><p>• Create mobile account at login = Checked</p><p>• Require confirmation before creating a mobile account = Unchecked</p><p>• Use UNC Path from Active Directory to derive network location = Unchecked</p><p>• Leave all other settings as Default</p><p></p><p>• Active Directory Domain: = domainname</p><p>• Computer ID: = computername</p><p>• Click the Bind… button</p><p>• Authenticate using an Administrator password, if prompted.</p><p>• Username: = valid AD admin account used to add computer to UMC</p><p>• Password: = password of the admin account above</p><p>• Click OK. (You may be asked to enter the local Administrator password)</p><p>• Click OK if asked to Join Existing Account.</p><p></p><p>On the Mac itself, we use the following through terminal to create the mobile accounts:</p><p></p><p>cd /System/Library/CoreServices/ManagedClient.app/Contents/Resources/</p><p>sudo ./createmobileaccount -n userid</p><p> <em>enter admin PW (if prompted)</em></p><p>sudo createhomedir -c -u userid</p></blockquote><p></p>
[QUOTE="EvenStranger, post: 1267745, member: 181804"] I'm only slightly familiar with what needs to be done on the Windows side. I know it involves extending the schema for Macs, and in our environment, we add each computer ID through UMC to a Mac OU. System Preferences->Accounts • Unlock to make changes • Click the Join or Edit button (depending if added to Active Directory) • Click the Open Directory Utility button • Highlight Active Directory and click the “edit” button (pencil) • Expand Show Advanced Options (click arrow) • Create mobile account at login = Checked • Require confirmation before creating a mobile account = Unchecked • Use UNC Path from Active Directory to derive network location = Unchecked • Leave all other settings as Default • Active Directory Domain: = domainname • Computer ID: = computername • Click the Bind… button • Authenticate using an Administrator password, if prompted. • Username: = valid AD admin account used to add computer to UMC • Password: = password of the admin account above • Click OK. (You may be asked to enter the local Administrator password) • Click OK if asked to Join Existing Account. On the Mac itself, we use the following through terminal to create the mobile accounts: cd /System/Library/CoreServices/ManagedClient.app/Contents/Resources/ sudo ./createmobileaccount -n userid [I]enter admin PW (if prompted)[/I] sudo createhomedir -c -u userid [/QUOTE]
Verification
Post reply
Forums
Apple Computing Products:
macOS - Operating System
Mac integration to Active Directory
Top