Specifications

ManualsBrandsApple ManualsComputer equipmentMac OS X Server Command-Line

131

132

133

134

135

136

137

138

139

140

Changing a Conguration for Accessing an LDAP Directory

You can use Directory Utility to change the settings of an LDAP directory

conguration. The conguration settings specify how Open Directory accesses an

LDAPv3 or LDAPv2 directory.

If the LDAP conguration was provided by DHCP, it can’t be changed, so this type of

conguration is dimmed in the LDAP congurations list.

To edit a conguration for accessing an LDAP directory:

1 Open System Preferences and click Accounts.

2 If the lock icon is locked, unlock it by clicking it and entering the name and password

of an administrator.

3 Click Login Options, then click Edit.

4 Click Open Directory Utility.

5 If the lock icon is locked, unlock it by clicking it and entering the name and password

of an administrator.

6 Click Services.

7 In the list of services, select LDAPv3 and click the Edit (/) button.

8 If the list of server congurations is hidden, click Show Options.

9 Make changes as needed to the following settings:

Â Enable: Click a checkbox to enable or disable access to an LDAP directory server.

Â Conguration Name: Double-click a conguration name to edit it.

Â Server Name or IP Address: Double-click a server name or IP address to change it.

Â LDAP Mapping: From the pop-up menu, choose a template, enter the search base

sux for the LDAP directory, and click OK.

If you chose a template, you must enter a search base sux or the computer

can’t nd information in the LDAP directory. Typically, the search base sux is

derived from the server’s DNS name. For example, for a server whose DNS name is

ods.example.com the search base sux is “dc=ods,dc=example,dc=com.”

If you choose From Server instead of a template, a search base sux is not needed.

In this case, Open Directory assumes the search base sux is the rst level of the

LDAP directory.

If you choose Custom, you must set up mappings between the Mac OS X record

types and attributes and the classes and attributes of the LDAP directory you’re

connecting to. For more information, see “Conguring LDAP Searches and

Mappings” on page 14 6.

Â SSL: Click the checkbox to enable or disable encrypted communications using

the SSL protocol. Before you select the SSL checkbox, ask your Open Directory

administrator if SSL is needed.

140 Chapter 8 Advanced Directory Client Settings