Manualshelf

Specifications

ManualsBrandsApple ManualsComputer equipmentMac OS X Server Version 10.3 or Later
71727374757677787980
Chapter 6 Managing User Authentication 77
To specify that a user account authenticate using Open Directory:
1 Make sure the users account resides in a directory domain that supports Open
Directory authentication.
Directory domains on Mac OS X Server version 10.3 support Open Directory
authentication, as do directory domains on Mac OS X Server version 10.2 that are
configured to use a Password Server.
2 In Workgroup Manager, open the account you want to work with if it is not already
open.
To open an account, click the Accounts button, then click the Users button. Click the
small globe icon above the list of users and choose from the pop-up menu to open the
directory domain where the user’s account resides. Click the lock and authenticate as a
directory domain administrator whose password type is Open Directory. Then select
the user in the list.
3 Click Advanced, then choose Open Directory from the User Password Type pop-up
menu.
4 If you changed the users password type, you will be prompted to enter and verify a
new password.
If you are working with a new user, enter the password on the Basic pane in the
Password field, then reenter it in the Verify field.
The password must contain no more than 512 bytes (up to 512 characters, although the
network authentication protocol can impose different limits; for example, 128
characters for SMB-NT and 14 for SMB-LAN Manager. The user management guide
provides guidelines for choosing passwords).
5 On the Advanced pane, click Options to set up the users password policy, and click OK
when you have finished specifying options
If you select the “Disable login as of option, enter a date in MM/DD/YYYY format; for
example, 02/22/2004.
If you use a policy that requires user password changing, remember that not all
protocols support changing passwords. For example, users can’t change their
passwords when authenticating for IMAP mail service.
The password ID is a unique 128-bit number assigned when the password is created in
the Open Directory Password Server database. It might be helpful in troubleshooting,
since it appears in the Password Server log when a problem occurs. View this Open
Directory log in Server Admin.
6 Click Save.
LL2352.Book Page 77 Friday, August 22, 2003 3:12 PM