Solved

How to manage user accounts on Mac's in Active Directory Server 2012 domain

Posted on 2013-10-22
1
415 Views
Last Modified: 2013-10-24
This environment consists of about 20 Win7 PC's (mostly laptops) & 50 MacBook Air laptops running OS X 10.7 or later.

They've been using just a NAS for central storage and we're just now introducing their first server into the environment. It's running Windows Server 2012 & is a Domain Controller. It will replace the NAS for the central data store along with providing authentication for the computers & users.

I've been researching how to manage the user accounts on the Mac's. So far it seems the Magic Triangle or Golden Triangle approach might be too old school and not too management-friendly. We're definitely going to need Mobile accounts so the users can log on when out of the office. But I'm not finding a best approach yet on how to migrate these existing local user accounts to a network account without doing some hacking on the Mac.

We're looking for authentication for the domain for the Mac's as well as the ability to lock down settings on the Mac's like you can with Group Policy for Windows PC's. I'm aware of Centrify and another one like it too.

I'm just wondering what you all are doing out there who have these environments. Thanks.
0
Comment
Question by:WineGeek
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 32

Accepted Solution

by:
nappy_d earned 500 total points
ID: 39593587
Unfortunately, you will have to migrate the data of their accounts from the local to network accounts.

As you have been discovering, Active Directory and a solution such as Centrify would be the go to choice for a single point of management.

If budget for your company is tough maybe just use AD to bind the Macs for authentication.  The users will not be given administrative privileges.
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Have you considered what group policies are backwards and forwards compatible? Windows Active Directory servers and clients use group policy templates to deploy sets of policies within your domain. But, there is a catch to deploying policies. The…
Set up iPhone and iPad email signatures to always send in high-quality HTML with this step-by step guide.
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question