PDA

View Full Version : using Open Directory to authenticate with NO home folders?




beemerkid
Jan 21, 2010, 10:15 AM
We are looking to set up an Open Directory on a Snow Leopard server in our medium sized company - we would like to use it for Single Sign On authentication but do not want to create home folders on the server. All we want OD to do is authenticate

We have been able to authenticate using OD bound and unbound but both need home folders. Is there a way to have no home holder and still authenticate?

thanks



Alrescha
Jan 21, 2010, 11:59 AM
Is there a way to have no home holder and still authenticate?

I have several users on Snow Leopard Server which have a home directory of /dev/null and they seem to work fine. I didn't do anything special (actually, no home directory is the default for users added in Workgroup Manager).

A.

beemerkid
Jan 21, 2010, 01:04 PM
thanks - i will try that.

yes - the default is no home folder - but for some reason i need a home folder set to us the authentication on the client machines. If there is no home folder set i get the 'ol shaky sign on rejection

i will let you know how it goes

thanks

Alrescha
Jan 21, 2010, 01:21 PM
If there is no home folder set i get the 'ol shaky sign on rejection

Sorry, I'm using these users for everything except desktop login.

A.

calderone
Jan 21, 2010, 02:11 PM
You need to specify a local home folder, so /Users or wherever you want them in the Full Path field.

If you have a pre-existing local home on the machine, you should remove it, or change permissions so that the owner matches and the existing profile can be used.

FlavioB
Dec 29, 2010, 02:53 AM
You need to specify a local home folder, so /Users or wherever you want them in the Full Path field.

If you have a pre-existing local home on the machine, you should remove it, or change permissions so that the owner matches and the existing profile can be used.

Hello Calderone.

I'm setting up a "Mac-only" LAN and got my Mac Mini Server with SL 10.6.5.
I configured/enabled OpenDirectory, created my users and created *one single* "guest computer".
I also had the trouble with login window shaking when trying to log in with OD-users.
I thus created the Home Directories for each single user and now it seems ok: users can login on client iMacs.

My question is: are there any drawbacks with this kind of setup (I mean, having no local profile at all)?
And a last one: could this kind of setup be compared to what Microsoft calls "roaming profiles"?

Kind regards, TIA.
F.