Link to home
Start Free TrialLog in
Avatar of David Williamson
David WilliamsonFlag for United States of America

asked on

Automatically make Open Directory admin part of the local admin group on all network Macs?

I'm fairly new to Mac server and Open Directory, but have used and managed MS Active Directory for almost 20 years.  I recently took over IT for an all-Mac business.  How can I make a network account belong to the local admin group on every Mac that I've added to Open Directory?  Ideally, I'd like to do this remotely or with some kind of login script; the office is in another state from me.  I have remote access to the mac server.  If this were MS Active Directory, it would be a snap, but it seems like "joining" a Mac to Open Directory results in far less control over that Mac.  

I've spend some good time searching, but there also appears to be far less information online about administering a Mac/OD network than with Active Directory; It's been a lot harder to find information.  I have no idea where to start...can someone give me the solution and the steps to implement remotely?
ASKER CERTIFIED SOLUTION
Avatar of Matt Minor
Matt Minor
Flag of Canada image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of David Williamson
David Williamson
Flag of United States of America image

ASKER

thanks!  Is there a way I can run that script on each machine remotely?  I don't necessarily have local admin credentials for each Mac, though each has been joined to the open directory domain.  I was hoping that it was like AD where a domain account automatically has all local admin rights to joined computers...
SOLUTION
Avatar of serialband
serialband
Flag of Ukraine image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of serialband
serialband
Flag of Ukraine image
I haven't used OD in a while, but have you tried using the OD diradmin account?
Avatar of David Williamson
David Williamson
Flag of United States of America image

ASKER

Wow, lots of great info, thanks!  I'm only familiar with Linux on the surface, so some of this I'll ahve to work through and become familiar, it looks like.

serialband, I haven't actually tried the diradmin account, I'll do that.  Otherwise, will I have to go to each Mac and enable Remote Login?
Avatar of David Williamson
David Williamson
Flag of United States of America image

ASKER

I just tried to do a screen sharing session with the diradmin account and I was denied.
Avatar of Kyle Santos
Kyle Santos
Flag of United States of America image
I've requested that this question be deleted for the following reason:

Not enough information to confirm an answer.
Avatar of David Williamson
David Williamson
Flag of United States of America image

ASKER

I will confirm the answer right now...
Avatar of David Williamson
David Williamson
Flag of United States of America image

ASKER

I need to accept some comments as answers, how can I do that?
Avatar of David Williamson
David Williamson
Flag of United States of America image

ASKER

Thank you for the great info!