Solved

Setting up Magic Triangle - integrating Mac Server Open Directory with AD on Server 2012

Posted on 2013-11-06
3
2,622 Views
Last Modified: 2013-11-08
Just built a new server 2012 as Domain Controller for the LAN, which is the first & only server on this LAN. We have 50 Mac's & 50 Windows PC's, about 80% are laptops. I've met with our Apple Business team and get some great advice. The plan is to use AD for user authentication and the Mac server to handle Managed Preferences, similar to how you manage Windows machines with Group Policy.

I've created our internal Windows domain as xxxx.private since .local is used by the Bonjour service for broadcast communications I'm told.

Now the rubber is meeting the road.

My initial questions are:

1) When setting up Open Directory on the Mac OS X Server (Mavericks), do I select to create a new domain or join an existing domain?

2) Do I need DNS service running on the Mac Server too?

Thanks.
0
Comment
Question by:WineGeek
  • 2
3 Comments
 
LVL 32

Accepted Solution

by:
nappy_d earned 500 total points
ID: 39629997
The first domain and only domain you should setup is via AD.

Once you have Active Directory(AD) is setup correctly, you should then add a DNS entry for the Mac OS X Server to your Active Directory domain server.  

The next step would be to Now setup Open Directory(OD) on your Mac server.

After OD is setup, you will need to join your Mac server to AD using the Directory utility.

After this is completed, you have your Golden Triangle and you can access AD for user and group security etc.

Do not use .local for the Macintosh it is not recommended for use within the environment it can cause issues.
0
 

Author Comment

by:WineGeek
ID: 39632170
When I go to setup Open Directory on the Mac server, it asks me to choose one of the following:

( ) Create a new Open Directory domain

( ) Join an existing Open Directory domain as a replica

Which one do I choose? I don't have an existing Open Directory domain, I only have an existing AD domain.

Thanks.
0
 
LVL 32

Expert Comment

by:nappy_d
ID: 39632273
choose a new open directory domain. for all intents and purposes OD and AD are separate domains but are sharing a single DNS infrastructure, that which you have setup with AD.
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Understanding the various editions available is vital when you decide to purchase Windows Server 2012. You need to have a basic understanding of the features and limitations in each edition in order to make a well-informed decision that best suits y…
What to do when Windows Update is not working correctly? What tools can I use to detect the cause of the malfunction problem? What does this numeric error code mean? These and other questions that you have been asking in the past are answered here (…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of installing the necessary services and then configuring a Windows Server 2012 system as an iSCSI target. To install the necessary roles, go to Server Manager, and select Add Roles and Featu…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question