Specifications
Importing Records of Any Type
Workgroup Manager can import all types of records into the LDAP directory of an
Open Directory master. This includes users, groups, computer groups, computers, and
all other standard Mac OS X record types.
Important: If you import user or group records from a le exported by Mac OS X
Server v10.3 or earlier, each imported record is assigned a globally unique ID (GUID).
To make sure that GUIDs and their relationships to specic users and groups remain
the same (if you need to reimport the same users and groups), create an export le
using Workgroup Manager in Mac OS X Server v10.6. Use the v10.6 export le instead
of the export le created using the earlier server version.
For a list of record types and attributes that can be imported, see the following le:
/System/Library/Frameworks/OpenDirectory.framework/Frameworks/CFOpenDirectory.
framework/Headers/CFOpenDirectoryConstants.h
For information about well-known record types and attributes, see “Standard Open
Directory Record Types and Attributes” on page 273.
For more information about exporting users and groups using Workgroup Manager and
on importing records of any type, see Workgroup Manager Help or User Management.
Setting Options for an Open Directory Server
You can set binding, security, and password policies for an Open Directory master and
its replicas. You can also can set several LDAP options for an Open Directory master or
replica. For more information, see the following:
“ Â Setting a Binding Policy for an Open Directory Server” on page 187
“ Â Setting a Security Policy for an Open Directory Server” on page 187
“ Â Changing the Global Password Policy” on page 110
“ Â To manage principals:” on page 206
“ Â Limiting Search Results for LDAP Service” on page 189
“ Â Setting the Search Timeout Interval for LDAP Service” on page 189
“ Â Setting Up SSL for LDAP Service” on page 190
“ Â Creating a Custom SSL Conguration for LDAP” on page 190
186 Chapter 9 Maintaining Open Directory Services