AXISHK
asked on
Open Directory in Window Domain
We are planning to setup a OpenDirectory in Window environment and put its IP as one of the DNS leasing in DHCP service.
1. Can any window and mac workstation use it for DNS resolution
2. Can window and mac workstation be login to the window domain in case it contact the DNS service in OpenDirectory ? OpenDirectory shouldn't be able to authenticate to Window domain so I suppose it should at least able to forward this request to my DC records.
Thanks
1. Can any window and mac workstation use it for DNS resolution
2. Can window and mac workstation be login to the window domain in case it contact the DNS service in OpenDirectory ? OpenDirectory shouldn't be able to authenticate to Window domain so I suppose it should at least able to forward this request to my DC records.
Thanks
Cris Hanna
Are you having an active Directory as well as attempting Open Directory?
ASKER
Yes, just wonder whether I can use the DNS in Open Directory to offline the DNS offered by DC ? Can I include OSX Server as DNS record in DHCP and lease to both Window and MAC workstation ?
Tks
Tks
Windows doesn't like two DCHP servers on the same subnet. Are you just trying to shoot for redundancy incase the Windows Server goes down? Having both AD and Open Directory will be a nightmare in my opinion, unless you're just doing this for learning purposes, but I would never advise this in a production environment. Are you trying to fix an issue?
ASKER
no. I have one dhcp server but can I add server osx in DNS record for dhcp leasing,
can window or mac book can use it , similar to AD DNS?
can window or mac book can use it , similar to AD DNS?
According to Wikipedia:
When connected to a directory system, a Mac OS X client or Server can authenticate users, lookup contacts, perform service discovery and name resolution with the following types of directories:[6]
Authentication and contacts
Microsoft Active Directory
LDAPv3, including an Open Directory domain or RFC 2307-compliant system
Apple/NeXT NetInfo domains
BSD flat files and NIS
What I don't get is what you think the benefit would be. Do you have several Mac computers in your network?
When connected to a directory system, a Mac OS X client or Server can authenticate users, lookup contacts, perform service discovery and name resolution with the following types of directories:[6]
Authentication and contacts
Microsoft Active Directory
LDAPv3, including an Open Directory domain or RFC 2307-compliant system
Apple/NeXT NetInfo domains
BSD flat files and NIS
What I don't get is what you think the benefit would be. Do you have several Mac computers in your network?
OD only needs DNS for for the server, per se. when in a Golden triangle. That being said here is how it should be setup and will work:
I do not recommend using two distinct DNS servers on your network and the same for DHCP. A single point of management and implementation is the best way to go with what you ask.
1.
Since you already have AD and DNS in place, Keep it and let AD DNS manage your network2.
Create a DNS entry on your AD DNS server for your Mac3.
Make sure that your Mac is now configured with the static IP you entered into your AD DNS4.
Configure your Mac's DNS to point your AD DNS server and no other5.
Join your Mac to AD6.
You should now be able to configure ODI do not recommend using two distinct DNS servers on your network and the same for DHCP. A single point of management and implementation is the best way to go with what you ask.
ASKER
Tks
Do you mean that only two Window DNS servers should be leased by DHCP. I shouldn't include the OSX server in my DNS (which also hosted the A records in my network) ?
Each MAC book will join the Window Domain and OSX server, correct ?
Do you mean that only two Window DNS servers should be leased by DHCP. I shouldn't include the OSX server in my DNS (which also hosted the A records in my network) ?
Each MAC book will join the Window Domain and OSX server, correct ?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.