Solved

Setting up Magic Triangle - integrating Mac Server Open Directory with AD on Server 2012

Posted on 2013-11-06
3
2,559 Views
Last Modified: 2013-11-08
Just built a new server 2012 as Domain Controller for the LAN, which is the first & only server on this LAN. We have 50 Mac's & 50 Windows PC's, about 80% are laptops. I've met with our Apple Business team and get some great advice. The plan is to use AD for user authentication and the Mac server to handle Managed Preferences, similar to how you manage Windows machines with Group Policy.

I've created our internal Windows domain as xxxx.private since .local is used by the Bonjour service for broadcast communications I'm told.

Now the rubber is meeting the road.

My initial questions are:

1) When setting up Open Directory on the Mac OS X Server (Mavericks), do I select to create a new domain or join an existing domain?

2) Do I need DNS service running on the Mac Server too?

Thanks.
0
Comment
Question by:WineGeek
  • 2
3 Comments
 
LVL 32

Accepted Solution

by:
nappy_d earned 500 total points
Comment Utility
The first domain and only domain you should setup is via AD.

Once you have Active Directory(AD) is setup correctly, you should then add a DNS entry for the Mac OS X Server to your Active Directory domain server.  

The next step would be to Now setup Open Directory(OD) on your Mac server.

After OD is setup, you will need to join your Mac server to AD using the Directory utility.

After this is completed, you have your Golden Triangle and you can access AD for user and group security etc.

Do not use .local for the Macintosh it is not recommended for use within the environment it can cause issues.
0
 

Author Comment

by:WineGeek
Comment Utility
When I go to setup Open Directory on the Mac server, it asks me to choose one of the following:

( ) Create a new Open Directory domain

( ) Join an existing Open Directory domain as a replica

Which one do I choose? I don't have an existing Open Directory domain, I only have an existing AD domain.

Thanks.
0
 
LVL 32

Expert Comment

by:nappy_d
Comment Utility
choose a new open directory domain. for all intents and purposes OD and AD are separate domains but are sharing a single DNS infrastructure, that which you have setup with AD.
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Suggested Solutions

In my previous 24 VMware Articles (http://www.experts-exchange.com/ARTH_1864316.html?arthOrderBy=3&arthSort=1#arth), most featured Intermediate VMware Topics. My next series of articles concentrated on topics for the VMware Novice;   If you would…
You might have come across a situation when you have Exchange 2013 server in two different sites (Production and DR). After adding the Database copy in ECP console it displays Database copy status unknown for the DR exchange server. Issue is strange…
In this Micro Tutorial viewers will learn how to use Boot Corrector from Paragon Rescue Kit Free to identify and fix the boot problems of Windows 7/8/2012R2 etc. As an example is used Windows 2012R2 which lost its active partition flag (often happen…
In this Micro Tutorial viewers will learn how to restore their server from Bare Metal Backup image created with Windows Server Backup feature. As an example Windows 2012R2 is used.

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now