Specifications

ManualsBrandsApple ManualsComputer equipmentMac OS X Server Command-Line

292 Index

replica management 58, 61, 63, 64, 81, 192, 19 5

restoring 197

security policy 187

setup 81, 83

status checking 180

troubleshooting 210, 211

upgrading 64

Open Directory Password Server

archiving 197

authentication 29, 38, 50

database 52, 54

deleting slots 184

password policy 43

replication of 60

security 72

setup 81

troubleshooting 213

Open Directory replica

access control 87

attributes 253

authentication 60

BDC 30

changing to relay 192

decommissioning of 195

failover 91

hosting 87

introduction 12, 24

master's management of 58, 61, 63, 64, 192, 195

NAT 64

passwords 60, 106

promotion of 81, 192

replica sets 61

setup 87, 89

troubleshooting 210, 211

updating 71

open source modules 11

See also Kerberos, Open Directory

open/close timeout, LDAP connection 151

OpenLDAP 199, 219

See also LDAP

option 95, DHCP 35, 187

P

PAC (Privilege Attribute Certicate) 66

packets, data 15 9

Password Server. See Open Directory Password

Server

passwords

administrator 43, 111, 11 2, 11 6, 212, 217

attributes 253

best practices 40, 105

changing 105, 107

creating 105, 11 7

exporting 117

hash 39, 52, 53

importing 117

LDAP 155

migration of 11 7

oine attacks 40

Open Directory 38, 40, 41, 42, 50, 91, 106, 107, 11 4

policies 37, 42, 110, 11 2, 238

replicas 60

resetting 52, 106, 217

root account 12 5

troubleshooting 212, 213, 216

types 37, 38, 39, 107, 109

user accounts 212

vs. single sign-on 43

Windows domain 29, 40, 41, 42

See also crypt passwords, Open Directory

Password Server, shadow passwords

PDC (primary domain controller)

failover 30

Open Directory as 28

server setup 93

setup 84

People record type 265

permissions

access 179

administrator 73

user 15 7

picture, user login 233

plug-ins 11, 15 8

portable computers, search policies 35, 36

See also mobile accounts

ports

directory domain server 72

replication 195

service attribute 253

preset computer group object class 231

preset computer list object class 231

preset computer object class 231

preset group object class 231

preset user attribute 253

preset user object class 231

PresetComputerLists record type 266, 267

PresetGroups record type 267, 268

PresetUsers record type 268, 269

primary domain controller. See PDC

principals, Kerberos 48, 206

printer attributes 233, 253

printer object class 231

Printers record type 270, 271

private network 50, 64

Privilege Attribute Certicate. See PAC

privileges, administrator 73

See also permissions

problems. See troubleshooting

property list les 211

protocols

NTP 214

SMB 28, 50