Specifications
Shared Data in Existing Directory Domains
Some organizations—such as universities and worldwide corporations—maintain user
information and other administrative data in directory domains on UNIX or Windows
servers. Open Directory can search these non-Apple domains and shared Open
Directory domains of Mac OS X Server systems, as shown in the illustration below.
Mac OS X user
Mac OS X user
Windows user
Mac OS X Server Windows server
Active
Directory
domain
Shared
directory
domain
Local
directory
domain
Local
directory
domain
The order in which Mac OS X searches directory domains is congurable. A search
policy determines the order in which Mac OS X searches directory domains. Search
policies are explained in Chapter 2, “Open Directory Search Policies.”
SMB Services and Open Directory
You can congure your Mac OS X Server with Open Directory and SMB services
to serve Windows-based workstations. Using these to services together, you can
congure your Mac OS X Server to be a primary domain controller (PDC) or a backup
domain controller (BDC).
Open Directory as a Primary Domain Controller (PDC)
Mac OS X Server can be congured to serve as a Windows primary domain controller
(PDC), which enables users of Windows NT-compatible workstations to log in using
domain accounts. A PDC gives each Windows user one user name and password for
logging in from any Windows NT 4.x, Windows 2000, Windows XP, or Windows Vista
workstation on the network.
Then, instead of logging in with a user name and password that are dened locally on a
workstation, each user can log in with the user name and password dened on the PDC.
28 Chapter 1 Directory Services with Open Directory