Manualshelf

Specifications

ManualsBrandsApple ManualsComputer equipmentMac OS X Server Command-Line
11121314151617181920
12 Preface About This Guide
For services that don’t accept Kerberos authentication, the integrated Secure
Authentication and Service Layer (SASL) service negotiates the strongest possible
authentication mechanism.
In addition, directory and authentication replication maximizes availability and
scalability. By creating replicas of Open Directory servers, you can easily maintain
failover servers and remote servers for fast client interaction on distributed networks.
What’s in This Guide
This guide includes the following sections:
Chapter  1,Directory Services with Open Directory,” explains what directory domains
are, how they are used, and how they are organized.
Chapter  2,Open Directory Search Policies,” describes search policies with directory
domains, and describes automatic, custom, and local-only search policies.
Chapter  3,Open Directory Authentication,” describes Open Directory authentication,
shadow and crypt passwords, Kerberos, LDAP bind, and single sign-on.
Chapter  4,Open Directory Planning and Management Tools,” helps you assess
directory domain needs, estimate directory and authentication requirements,
identify servers for hosting shared domains, improve performance and redundancy,
deal with replication in a multibuilding campus, and make Open Directory services
secure. This chapter also introduces the tools to manage Open Directory services.
Chapter  5,Setting Up Open Directory Services,” tells you how to set up an Open
Directory server and explains the congurations and roles you can congure. This
chapter also tells you how to set options of the LDAP service of an Open Directory
master or replica and explains how to set up single sign-on Kerberos authentication
on an Open Directory master.
Chapter  6,Managing User Authentication Using Workgroup Manager,” describes
how to set password policies, change a users password type, assign administrator
rights for Open Directory authentication, reset passwords of imported user accounts,
and migrate passwords to Open Directory authentication.
Chapter  7,Managing Directory Clients Using Accounts Preferences,” explains how
to use Directory Utility to congure and manage how Mac OS X computers access
directory services.
Chapter  8,Advanced Directory Client Settings,” explains how to use the Directory
Utility application to enable, disable, and congure service discovery protocols. It
also explains how to congure authentication and contacts search policies and
explains how to congure access to directory domains, including LDAP, Active
Directory, NIS, and BSD conguration les.