Manualshelf

Specifications

ManualsBrandsApple ManualsComputer equipmentMac OS X Server Command-Line
161162163164165166167168169170
Chapter 8 Advanced Directory Client Settings 163
Setting Up Mobile User Accounts in Active Directory
You can enable or disable mobile Active Directory user accounts on a computer that
is congured to use Directory Utility’s Active Directory connector. Users with mobile
accounts can log in using their Active Directory credentials when the computer is not
connected to the Active Directory server.
The Active Directory connector caches credentials for a user’s mobile account when
the user logs in while the computer is connected to the Active Directory domain. This
credential caching does not require changing the Active Directory schema.
If the Active Directory schema has been extended to include Mac OS X managed client
attributes, those mobile account settings are used instead of the Active Directory
connector mobile account setting.
You can have mobile accounts created automatically or you can require that Active
Directory users conrm creation of a mobile account.
To enable or disable mobile accounts in an Active Directory domain:
1 Open System Preferences and click Accounts.
2 If the lock icon is locked, unlock it by clicking it and entering the name and password
of an administrator.
3 Click Login Options, then click Join or Edit.
4 Click Open Directory Utility.
5 If the lock icon is locked, unlock it by clicking it and entering the name and password
of an administrator.
6 Click Services.
7 In the list of services, select Active Directory and click the Edit (/) button.
8 If the advanced options are hidden, click Show Advanced Options.
9 Click User Experience, then click “Create mobile account at login,” and optionally click
“Require conrmation before creating a mobile account.”
If both options are selected, each user decides whether to create a mobile account Â
during login. When a user logs in to Mac OS X using an Active Directory user
account, or when logging in as a network user, the user sees a dialog with controls
for creating a mobile account immediately.
If the rst option is selected and the second option is unselected, mobile accounts Â
are created when users log in.
If the rst option is not selected, the second option is disabled. Â
10 Click OK.