PDA

View Full Version : how to get users to authenticate with my mac os x server?




rolandah
Jun 11, 2009, 12:45 PM
Hello all,

i'm a newbie when it comes to being a MAC admin so hope you could help out..

i've just finished installing the latest version of mac os x server.

i have three specific goals i need to achieve.

1 - i need users in my network to login to their IMAc's with a user i provide on my server.
2- any user could use any IMAC within my network to login to his own account. that means his whole profile should b on the server and not on a specific imac he might be using.
3- setting up ichat for users to be able to chat with eachother localy without using the internet. and of course with the capability of sending files to eachother.

any help with these points would be greatly appreciated..

thanks and best regards,

Roland



yellow
Jun 11, 2009, 12:48 PM
Open Directory.

You have a lot of RTFM ahead of you, I'm afraid.

Search Apple's support site for Mac OS X Server docs in your flavor.

pro547
Jun 11, 2009, 04:22 PM
iChat can work with local network chat with Bonjour. Now only forcing them to use Bonjour and not allowing them to setup other accounts with say AIM,GTALK,etc might be a bit harder. You might look at restricting that at the firewall level.

Azgar
Jun 17, 2009, 10:20 AM
Depending on how newbie you are when you say newbie, maybe this will help and maybe not. ;) If not, I'd suggest something like lynda.com. They've got a nice Leopard Server Essentials course. This is how I would go about accomplishing #s 1 and 2:

*Add Open Directory to your list of services
Promote it to an Open Directory Master
Add users through Workgroup Manager (WM)
Create a Computer Group in WM
Bind your clients to the server's LDAPv3 service through Directory Utility
Add those computers to the previously created Computer Group in WM
Optionally configure the Login and Mobility managed preferences for that Computer Group in WM so that only a name and password field are shown for login, mobile accounts are created when a network use logs in, etc.

rolandah
Jul 1, 2009, 02:42 PM
Hello,

thanks for the advice..
i've followed your advice and checked a few how tos online...
i've binded a test client to the server through directory utility
i can login with "diradmin" though not with other users...

if i login with any other user i've created in workgroup manager i get the error saying that it cannot login due to an error that occured..
i'm 100 % sure i'm reaching the server as if i set any other pass for the relevant user i dont get this error..
my logical reasoning points towards nfs/afp permissions though i double checked them and they both seem ok!
i've auto mounted a shared afp directory for users to get their home folder to be created in..
as well as added a home path in each of their respective profiles...

Depending on how newbie you are when you say newbie, maybe this will help and maybe not. ;) If not, I'd suggest something like lynda.com. They've got a nice Leopard Server Essentials course. This is how I would go about accomplishing #s 1 and 2:

*Add Open Directory to your list of services
Promote it to an Open Directory Master
Add users through Workgroup Manager (WM)
Create a Computer Group in WM
Bind your clients to the server's LDAPv3 service through Directory Utility
Add those computers to the previously created Computer Group in WM
Optionally configure the Login and Mobility managed preferences for that Computer Group in WM so that only a name and password field are shown for login, mobile accounts are created when a network use logs in, etc.