using Open Directory to authenticate with NO home folders?

Discussion in 'Mac OS X Server, Xserve, and Networking' started by beemerkid, Jan 21, 2010.

  1. beemerkid macrumors newbie

    Jan 30, 2009
    We are looking to set up an Open Directory on a Snow Leopard server in our medium sized company - we would like to use it for Single Sign On authentication but do not want to create home folders on the server. All we want OD to do is authenticate

    We have been able to authenticate using OD bound and unbound but both need home folders. Is there a way to have no home holder and still authenticate?

  2. Alrescha macrumors 68020

    Jan 1, 2008
    I have several users on Snow Leopard Server which have a home directory of /dev/null and they seem to work fine. I didn't do anything special (actually, no home directory is the default for users added in Workgroup Manager).

  3. beemerkid thread starter macrumors newbie

    Jan 30, 2009
    thanks - i will try that.

    yes - the default is no home folder - but for some reason i need a home folder set to us the authentication on the client machines. If there is no home folder set i get the 'ol shaky sign on rejection

    i will let you know how it goes

  4. Alrescha macrumors 68020

    Jan 1, 2008
    Sorry, I'm using these users for everything except desktop login.

  5. calderone macrumors 68040


    Aug 28, 2009
    You need to specify a local home folder, so /Users or wherever you want them in the Full Path field.

    If you have a pre-existing local home on the machine, you should remove it, or change permissions so that the owner matches and the existing profile can be used.
  6. FlavioB macrumors newbie

    May 16, 2009
    Hello Calderone.

    I'm setting up a "Mac-only" LAN and got my Mac Mini Server with SL 10.6.5.
    I configured/enabled OpenDirectory, created my users and created *one single* "guest computer".
    I also had the trouble with login window shaking when trying to log in with OD-users.
    I thus created the Home Directories for each single user and now it seems ok: users can login on client iMacs.

    My question is: are there any drawbacks with this kind of setup (I mean, having no local profile at all)?
    And a last one: could this kind of setup be compared to what Microsoft calls "roaming profiles"?

    Kind regards, TIA.

Share This Page