In Directory Access, click Services and authenticate. Then select LDAPv3 in the list of services, then click Configure. Net, select the server configuration of interest, then click Edit. Or click on the plus icon and type in the name of the server and click on Bind. When prompted, enter the name of the computer and the name and password of an LDAP directory domain admin account. Next, click on the OK button bind.
-
-
What is a Kerberos Realm
A realm is where the kerberos database is stored. The realm lives on one computer (KDC) and can have read-only slave servers (kinda’ like a cluster). Each realm will have a listing in the following files /private/var/db/krb5kdc/ .k5.FQDN.OF.REALM (secret key) kdc.conf (configuration file for the KDC) kadm5.acl (access control list for KDC)
-
Kerio and Entourage
Kerio leverages the OWA aspect of Entourage so if you open up OWA on the firewall then Entourage will be able to work over port 80 (or 443).
-
Mac OS X: Safari Shortcut Keystrokes
I originally posted this at http://www.318.com/TechJournal Some useful shortcuts for Safari users: Command-N opens a new Window Command-T opens a new tab Command-Option-V – views the page source Command-Up Arrow scrolls to the top of a page Command-Down Arrow scrolls to the bottom of a page Spacebar – scrolls down Command-Shift-+ Zooms in Command-Shift– Zooms out Command-W closes the current tab Command-Q quits Safari Command-M minimizes Safari Command-R reloads a page Command-Shift-H takes you home Command-Shift-D bookmarks the current page Command-K enables or disables the pop-up blocker Command-Option-V views page source Command-Shift-A autofills forms Command-Option-F takes you to the Google box Command-Option-K marks a page Command-} takes you to the…
-
Interview with SANS Leadership Lab
Interview I did with Stephen Northcutt of the SANS Institute: http://www.sans.edu/resources/leadershiplab/osx_security.php
-
Build Your Own PAM for OS X
Despite the deep hatred for the in-state rival, I must admit that Georgia Tech has done something nice for the community here: http://www.math.gatech.edu/~villegas/pam_krb5
-
Noah's Classifieds
I setup this site for posting Mac jobs, projects, training and resume’s to. Let me know if you have any recommendations and be kind, as it’s a work in progress! www.macjobs.org
-
Mac OS X: Setting a Software Update Server without Open Directory
Setting up a Software Update Server if you are using Open Directory is a fairly simple task. Just open Workgroup Manager, connect to an OD server or the appropriate Directory Service and then click on the computer or computer group you would like to edit the software update information for and then click on Preferences. Then click on Software Update and type in the appropriate URL. But what if the system is not managed using Open Directory. Well, that’s when you would use ARD to send out the following command or run it on your GM at imaging time: defaults write /Library/Preferences/com.apple.SoftwareUpdate CatalogURL “http://server:8088/”;
-
SANS Course on Mac OS X Security
I originally posted this at http://www.318.com/TechJournal The SANS Institute recently released a course by Charles Edge (er, me) on Mac OS X Security Fundamentals. The course is described in the following manner: “SANS is the leader in Information Security. This course on securing Mac OS X is the fastest way and most comprehensive way to get up to speed on applying the principals of the information security industry to the Mac. Written and taught by one of the security veterans of the Mac community, this course covers how real world security concepts are applied to the Mac with real world examples from the Mac community. The course offers a balanced…
-
Mac OS X Server: Another MCX
So the the last article talked about an Apple-based preference. But then I thought it might make sense to talk about pushing out one that’s non-Apple. Let’s look at the Name in the Settings from Microsoft Office. For this, Click on the + sign in Workgroup Manager, then browse to a user account -> Library -> Preferences -> Microsoft -> Office 2008 -> Microsoft Office 2008 Settings.plist. Then change Manage imported preferences to Always. Now double-click on Microsoft Office 2008 Settings and open up that disclosure triangle for Always. Change the string for the 1000 value to be what you want the name to be. Then save and test. Fun…