• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2782
  • Last Modified:

Setting up Magic Triangle - integrating Mac Server Open Directory with AD on Server 2012

Just built a new server 2012 as Domain Controller for the LAN, which is the first & only server on this LAN. We have 50 Mac's & 50 Windows PC's, about 80% are laptops. I've met with our Apple Business team and get some great advice. The plan is to use AD for user authentication and the Mac server to handle Managed Preferences, similar to how you manage Windows machines with Group Policy.

I've created our internal Windows domain as xxxx.private since .local is used by the Bonjour service for broadcast communications I'm told.

Now the rubber is meeting the road.

My initial questions are:

1) When setting up Open Directory on the Mac OS X Server (Mavericks), do I select to create a new domain or join an existing domain?

2) Do I need DNS service running on the Mac Server too?

Thanks.
0
WineGeek
Asked:
WineGeek
  • 2
1 Solution
 
nappy_dThere are a 1000 ways to skin the technology cat.Commented:
The first domain and only domain you should setup is via AD.

Once you have Active Directory(AD) is setup correctly, you should then add a DNS entry for the Mac OS X Server to your Active Directory domain server.  

The next step would be to Now setup Open Directory(OD) on your Mac server.

After OD is setup, you will need to join your Mac server to AD using the Directory utility.

After this is completed, you have your Golden Triangle and you can access AD for user and group security etc.

Do not use .local for the Macintosh it is not recommended for use within the environment it can cause issues.
0
 
WineGeekAuthor Commented:
When I go to setup Open Directory on the Mac server, it asks me to choose one of the following:

( ) Create a new Open Directory domain

( ) Join an existing Open Directory domain as a replica

Which one do I choose? I don't have an existing Open Directory domain, I only have an existing AD domain.

Thanks.
0
 
nappy_dThere are a 1000 ways to skin the technology cat.Commented:
choose a new open directory domain. for all intents and purposes OD and AD are separate domains but are sharing a single DNS infrastructure, that which you have setup with AD.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now