Specifications

ManualsBrandsApple ManualsComputer equipmentMac OS X Server Command-Line

288 Index

client computers 120, 121

command-line tools 15 9

connection 92, 93, 94

cross-domain authorization 66

directory domain integration 65, 66, 67, 68

directory domain overview 56

directory services 12 6, 12 7

failover 91

Kerberos 47, 96, 97, 98, 102

LDAP 13 4, 135, 137, 140, 141, 143, 199, 209

local directory domain 80

Open Directory master 81, 83

Open Directory Password Server 81

Open Directory replica 87, 89

overview 77, 78

planning for 57

replica sets 61

server 93, 94, 272

trusted binding 149

UNIX les 19, 21, 23

Windows domain 84, 85, 86

conguration object classes 231

contact information attributes 238

contacts, search policies 36, 127

container object class 222

controllers, BDC 30, 90

See also PDC

CRAM-MD5 authentication 50

credential-based authentication 38, 45

See also Kerberos

cross-domain authorization 66

crypt passwords

changing to 109

denition 39

encryption 41, 42

security issues 41

user account migration 11 7

Windows limitations 29, 40

D

databases

Berkeley DB 11, 58

Open Directory Password Server 52, 54

delay rebinding options, LDAP 15 2, 200

denial of service attack. See DoS attack

DHCP (Dynamic Host Conguration Protocol)

service

LDAP 35, 89

mobile accounts 131

option 95 35, 187

security 131

DHX authentication 39, 50

Digest-MD5 authentication 50

directories. See directory services, domains, folders

directory servers, managing connections 12 2, 12 3

directory services

access 132, 133

administrators for 17

advanced settings 12 6, 13 2

attributes 148

benets of 17

connection problems 212

dscl tool 208

dseditgroup tool 208

Kerberos readiness 97

mapping of 148, 15 5

organization of 18

planning of 34

setup 12 6, 127

See also Active Directory, domains, Open

Directory

Directory Utility 75, 12 6, 127

distinguished name (DN) 25, 137

DNS (Domain Name System) service

attributes 253

directory domain integration 66

Kerberos 96, 98

Open Directory setup 81, 98

troubleshooting 210

Windows users 84

documentation 14, 15

Domain Name System. See DNS

domains, directory

authentication 22, 59

binding of 187

identifying servers 59

integrating 65, 66, 67, 68, 69

NetInfo 29, 109, 118

NIS 23, 174

non-Apple 28

operating 208

organization of 18, 22, 23

planning of 34, 55, 58, 78

ports 72

replication 57

schemas 24, 69, 158, 220, 221, 222

search policies 12 7, 12 8, 12 9, 13 0, 131

storage capacity of 58

See also LDAP, local directory domains, Open

Directory, Windows domain

DoS attack (denial of service) 43, 189

dscl tool 208

dscongad tool 207, 209

dscongad tool 15 9

dscongldap tool 209

dseditgroup tool 208

Dynamic Host Conguration Protocol. See DHCP

E

encryption 41, 42, 51, 159

entries, object class 24, 25

Ethernet ID 216