Manualshelf

Specifications

ManualsBrandsApple ManualsComputer equipmentMac OS X Server Version 10.3 or Later
81828384858687888990
Chapter 7 Managing Directory Access 89
Defining Custom Search Policies
Using Directory Access, you can configure a Mac OS X computers authentication and
contacts search policies to use a custom list of directory domains. A custom list starts
with the computer’s local directory domain and you can also include Open Directory
and other LDAP directory domains, an Active Directory domain, shared NetInfo
domains, BSD configuration files, and an NIS domain.
Note: Make sure the computer has been configured to access the LDAP directories,
Active Directory domain, NetInfo domains, and NIS domain that you want to add to the
search policy. For instructions, see the subsequent sections of this chapter.
To specify a custom list of directory domains for a search policy:
1 In Directory Access, click the Authentication or click Contacts.
Authentication shows the search policy used for authentication and most other
administrative data.
Contacts shows the search policy used for contact information in applications such as
Address Book.
2 If the lock icon is locked, click it and type the name and password of an administrator.
3 Choose “Custom path from the Search pop-up menu.
4 Add directory domains as needed.
Add directory domains by clicking Add, selecting one or more directories, and clicking
Add again.
5 Change the order of the listed directory domains as needed, and remove listed
directory domains that you don’t want in the search policy.
Move a directory domain by dragging it up or down the list.
Remove a listed directory domain by selecting it and clicking Remove.
6 Click Apply.
Defining Local Directory Search Policies
Using Directory Access, you can configure a Mac OS X computers authentication and
contacts search policies to use only the computer’s local directory domain. A search
policy that uses only the local directory limits the access that a computer has to
authentication information and other administrative data. If you restrict a computers
authentication search policy to use only the local directory, only users with local
accounts can log in.
LL2352.Book Page 89 Friday, August 22, 2003 3:12 PM