Specifications

ManualsBrandsApple ManualsComputer equipmentMac OS X Server Command-Line

294 Index

ports for 72

pseudo-master 66

referrals 153

remote 79, 12 7, 178

removing 12 2

restoring 197, 198

security policy 187

setup 93, 94, 272

subordinate 66

unbinding from 171

See also Open Directory

service access control lists. See SACLs

service attributes 253

service object class 231

setup procedures. See conguration

shadow passwords

authentication methods 50, 11 3

changing to 109

denition 39

disabling 53

features 42

security issues 41

Windows limitations 29, 40

share points 22

shared directory domains

identifying servers 59

introduction 26, 27

NetInfo 29, 109, 118

planning for 55, 56

search policies 32, 33

troubleshooting login 213

user information 80

See also LDAP

short name 185

Simple Authentication and Security Layer. See SASL

single sign-on authentication 11, 43, 45, 70

See also Kerberos

slapcong tool 197, 198, 19 9

slapd daemon 199

slurpd daemon 199

SMB (Server Message Block) service 28, 50

Snow Leopard server. See Mac OS X Server

SSH (secure SHell host) 72, 88, 178

SSL (Secure Sockets Layer) 121, 190

standalone directory service. See local directory

domains

startup, problems with 212

subordinate server 66

T

templates, LDAP mapping 148

ticket-based authentication 45

See also Kerberos

time synchronization 50, 60, 96, 214

timeout, connection 151, 152, 153

time-to-live attribute (TTL) 231

time-to-live object class (TTL) 222

troubleshooting

Active Directory 211

authentication 210, 212, 213, 214, 216

connections 212

replication 210, 211

trusted binding

Active Directory 162

options for 13 6

policies 187

setup 149

stopping 143, 15 0

TTL attribute. See time-to-live attribute

two-level search policies 32

U

UIDs (user IDs) 66, 82, 15 9, 166

UNIX shell attribute 165

UNIX

conguration les 19, 21

crypt passwords 109

group ID mapping 167

RFC 2307 mapping 13 8

security issues 40

upgrading Mac OS X Server 64, 118

URLs (Uniform Resource Locators) 253

user accounts

accessing 15 8

deleting 185

directory domains 56, 80

editing 172

exporting 117

nding 26, 27

importing 117, 186

passwords 54, 212

root 12 4, 12 5, 212

security 40

user names 82

See also group accounts, passwords, users

user attributes 13 4, 231, 253, 273, 280

user IDs. See UIDs

user name 82

user object classes 222

users

access control 158, 177, 178, 212

authentication 38, 42, 43, 98, 100, 11 3, 11 4

cross-domain authorization 66

directory domain uses 22, 26, 27

directory service benets 17

disconnecting 12 2

login 83, 233

mappings 155, 166, 253, 254, 258, 259, 268, 269

migration of 11 8

object classes 222, 231

permissions 15 7

preferences storage 22