Specifications
Local and Shared Directory Domains
Where you store your server’s user information and other administrative data is
determined by whether the data must be shared. This information can be stored in
the server’s local directory domain or in a shared directory domain.
About the Local Directory Domain
Every Mac OS X computer has a local directory domain. A local directory domain’s
administrative data is visible only to applications and system software running on the
computer where the domain resides. It is the rst domain consulted when a user logs
in or performs any operation that requires data stored in a directory domain.
When the user logs in to a Mac OS X computer, Open Directory searches the
computer’s local directory domain for the user’s record. If the local directory domain
contains the user’s record (and if the user entered the correct password), the login
process proceeds and the user gets access to the computer.
After login, the user could choose “Connect to Server” from the Go menu and connect
to Mac OS X Server for le service. In this case, Open Directory on the server searches
for the user’s record in the server’s local directory domain.
If the server’s local directory domain has a record for the user (and if the user
enters the correct password), the server grants the user access to le services, as
shown below:
Local directory
domain
Local directory
domain
Log in to
Mac OS X
Connect to Mac OS X
Server for file service
When you set up a Mac OS X computer, its local directory domain is created and
populated with records. For example, a user record is created for the user who
performed the installation. It contains the user name and password entered during
setup and other information, such as a unique ID for the user and the location of
the user’s home folder.
26 Chapter 1 Directory Services with Open Directory