Manualshelf

Specifications

ManualsBrandsApple ManualsComputer equipmentMac OS X Server Command-Line
81828384858687888990
Chapter 5 Setting Up Open Directory Services 81
If your server is an Open Directory replica, select “Decommission replica and Â
set up standalone directory,” click Continue, enter the root password for the
Open Directory master, enter the domain administrators login credentials, and
then click Continue.
7 Conrm the conguration setting, then click Continue.
8 If you are sure that users and services no longer need access to the directory
data stored in the shared directory domain that the server has been hosting or is
connected to, click Done.
Setting Up an Open Directory Master
Using Server Admin, you can set up Mac OS X Server to be an Open Directory
master so it can provide directory information and authentication information to
other systems.
Mac OS X Server provides directory information by hosting a shared LDAP directory
domain. In addition, the server authenticates users whose accounts are stored in the
shared LDAP directory domain.
An Open Directory master has an Open Directory password server, which supports
all conventional authentication methods required by Mac OS X Server services. In
addition, an Open Directory master can provide Kerberos authentication for single
sign-on.
If you want the Open Directory master to provide Kerberos authentication for single
sign-on, DNS must be available on the network and must be correctly congured
to resolve the fully qualied DNS name of the Open Directory master server to its
IP address. DNS must also be congured to resolve the IP address to the server’s fully
qualied DNS name.
Important: If you’re changing an Open Directory replica to an Open Directory master,
the procedure you follow depends on whether the replica will replace the master or
become an extra master:
To promote a replica to replace a nonfunctional master, follow the instructions in Â
“Promoting an Open Directory Replica on page 192 instead of the instructions here.
To change a replica to an extra master, decommission the replica as described in Â
“Decommissioning an Open Directory Replica on page 195, then make it a master
by following the steps in this topic.
Note: If Mac OS X Server was connected to a directory system and you make the
server an Open Directory master, it remains connected to the other directory system.
The server searches for user records and other information in its shared LDAP directory
domain before searching in other directory systems it is connected to.