I setup this site for posting Mac jobs, projects, training and resume’s to. Let me know if you have any recommendations and be kind, as it’s a work in progress! www.macjobs.org
-
-
Mac OS X Server: Remove OD
You can fully remove OD with the following command: slapconfig -destroyldapserver Warning – this will wipe all information, so have a backup for most scenario’s where you’re using this!!!
-
Mac OS X: Setting a Software Update Server without Open Directory
Setting up a Software Update Server if you are using Open Directory is a fairly simple task. Just open Workgroup Manager, connect to an OD server or the appropriate Directory Service and then click on the computer or computer group you would like to edit the software update information for and then click on Preferences. Then click on Software Update and type in the appropriate URL. But what if the system is not managed using Open Directory. Well, that’s when you would use ARD to send out the following command or run it on your GM at imaging time: defaults write /Library/Preferences/com.apple.SoftwareUpdate CatalogURL “http://server:8088/”;
-
Mac OS X: Changing to a Custom Search Path with dscl
The Search Path in Mac OS X client can be used to define where your system can search for directory services information, whether local or shared. To set the search path manually you will first need to switch from LSPSearchPath to CSPSearchPath for your Search Policy. To do so use the following command: sudo dscl /Search -change / SearchPolicy dsAttrTypeStandard:LSPSearchPath dsAttrTypeStandard:CSPSearchPath If you were to want to switch back to a local policy you would just run the following command: sudo dscl /Search -change / SearchPolicy dsAttrTypeStandard:CSPSearchPath dsAttrTypeStandard:LSPSearchPath
-
Mac OS X Server: Another MCX
So the the last article talked about an Apple-based preference. But then I thought it might make sense to talk about pushing out one that’s non-Apple. Let’s look at the Name in the Settings from Microsoft Office. For this, Click on the + sign in Workgroup Manager, then browse to a user account -> Library -> Preferences -> Microsoft -> Office 2008 -> Microsoft Office 2008 Settings.plist. Then change Manage imported preferences to Always. Now double-click on Microsoft Office 2008 Settings and open up that disclosure triangle for Always. Change the string for the 1000 value to be what you want the name to be. Then save and test. Fun…
-
Mac OS X: What is Open Directory?
Technically speaking, Open Directory is an LDAP database that can be used to store information about users, contacts, computers, groups (of all of the above) and other devices. The reason we do not call Open Directory LDAP is that it also has other components. These include Kerberos for single sign-on, SASL for integration with other services and password server, to keep the passwords you use secure.
-
Mac OS X Server: DHCP and Open Directory
You can push out Open Directory bindings through DHCP. This means that if anything happens with your DHCP server that your users might not be able to log in. This is also not a trusted bind, or a bind where your computer records are generated on the server. If you take issue to either of these then you likely want to check out pushing out Open Directory bindings using the dsconfigldap command through, let’s say, Apple Remote Desktop.
-
Open Directory and MAC Addresses
There are a number of items that get logged into Mac OS X Server with only the unique identifier of the MAC address. Sometimes it helps to find the name based on the MAC address. If you are in an environment using trusted binding you can use Open Directory to do so. To determine the name of a computer based on the MAC address from Open Directory, you can run the following from dscl: dscl /LDAPv3/127.0.0.1 -readall /Computers RecordName macAddress | grep -A 1 $MAC
-
Moving the LDAP Database in Open Directory
Before you start moving anything around, first stop LDAP: launchctl stop org.openldap.slapd To move the LDAP database for Open Directory, just use the following command (assuming you would like to save to /Volumes/target/openldap/data – although you can use another URI if you choose): cp -prnv /var/db/openldap/data /Volumes/target/openldap/data Once moved you can alter the location that Mac OS X Server looks for the data by typing in a new path using the LDAP tab of the Open Directory listing in the SERVERS list of Server Admin. Once you’re all done, fire up LDAP again using the following command and test: launchctl start org.openldap.slapd
-
FileMaker and Directory Services
I originally posted this at http://www.318.com/TechJournal Did you know FileMaker can be configured to authenticate with Open Directory and Active Directory? What does that mean? Well, most companies use a Windows Server or Macintosh Server to allow their employees to log in every day. FileMaker Server 7 now has the ability to connect to those same user accounts instead of having to remember usernames and passwords for both your FileMaker account and your computer account. This also allows companies easier account maintenance when employees join or leave companies. You no longer have to add an account for both the network and FileMaker. In addition to all these benefits, external authentication…