We have 50 Mac Book Air laptops that will soon be added to our new Windows Server 2012 Active Directory domain. I'm also building a Mac OS X Server (Mavericks) to handle the GPO-type control for the Mac's. In the Magic Triangle, the Mac client authenticates against AD as well as Open Directory on the Mac Server, that's my understanding.
I'm figuring out how best to handle the existing user accounts on the laptops. I see 4 options:
1) Keep local Home Directories on the laptops (not ideal for data backup purposes)
2) Convert the account to a Mobile account (but disable file syncing according to this article:
3) Convert it to a Network account
4) Create a new user account with a unique account name that doesn't match the existing user accounts. But not sure if this really buys me any benefits over other choices.
So far it seems we'll have to have Mobile accounts so people can log onto their laptops when out of the office. Anyone gone through this sort of integration yet & can share your suggestions for what might work best with how to handle these existing user accounts?