Hi All, I've been the Mac Manager here at the school I work at for a year now, a 95% PC building and school district. In my first year I've implemented AD authentication and it's worked pretty well, and in addition, we purchased a Mac OS X Server (Snow Leopard). I'd like to go a little further this year if I can. I would like to try and use the server a little bit more this year if I can, in order to set up policies and security, as well as folder sharing. My challenges are I do not have administrative rights to the regular domain, I only have Account Operator rights, but I do have Admin to the Mac Server and to all the workstations, and I can't do anything that would drastically affect the network. For now, the server just sits as File Storage, and as a Deploy Studio host, but I know it's capable of doing more. What I'm looking for answers to is: 1) Is there a way I can set up Open Directory to manage security and group policies without affecting Active Directory, or better yet causing an issue down the road? 2) Could I use Group Policies on Active Directory to control everything? I've read online that it's possible, but I don't want to go down that route unless I can do it WITHOUT adding a third-party product. 3) Any books or good reads that have info on how to integrate OD and AD without messing each other up? I'm working with 10.6 server and clients running 10.5, 10.6, and 10.7. Thanks for any tips.