Help Join MAC to AD

I repeat: the best bet is to try to use ldap on NS to authenticate MAC

Good Lord.

Well, thereā€™s always the option to fire up Zentyal 4 in a vm. lol!

http://vuksan.com/linux/mac-os-x-ldap/openldap-mac-os-x-authentication.html

again, you missed the pointā€¦
youā€™ve to start to think in an enterprise perspectiveā€¦

in an enterprise, all clients are joined to an authentication serverā€¦ auth is needed to give to all users access rights to network services (shares, internet access and so on)

OP wants mac being auth on NSā€¦ teorically speaking, even if mac is his boss one, every user created on NS can authenticate and use it.

For me , an AD ( active Directory ) is an implementation on a LDAP Lightweight Directory Access Protocol :confused:

And Active Directory uses Lightweight Directory Access Protocol (LDAP) versions 2 and 3, Microsoftā€™s version of Kerberos, and DNS. ( source wikipedia )

But I canā€™t tell more, effectively, Iā€™n not a specialist in this domain :grin:

So @Paulo_Rodrigues, try this :smiley:

I tried Jim but didnā€™t work, I have access to everything except users.
The truth is Iā€™m not a expert on mac and linux :weary:

does not exist any specialist nethserver can help in this situation?

What are the services you can access? The ressources are granted by ldap?
Look in the logs of the server, pehaps you can see a little footprint somewhere.

Finally, another link that coul helpā€¦
http://clc.its.psu.edu/UnivServices/itadmins/mac/kerbldaplogins

And tell us more about the NethServer

I already tried that link, Iā€™m using the nethserver as ā€œAD/DCā€ to join in the company that I work all the microsoft pc, and till now itā€™s ok they have (users, file shares, vpns, ftp) the only problem is the mac of my boss lol

Because heā€™s the boss, and you canā€™t pull out easilyā€¦

Suggest to install a Windows in a VM :worried:

Or with Parallele, Like this he will have a desktop for Work and a desktop for Homeuse.

Are you kidding?
The boss has a nac and you wnat him tovuse a Windows vm?
ROTFL

hheehhe yes Jim I think itā€™s not a good idea, Zamboni is right if I put a VM I think he kills me.

We donā€™t know anything about the NS AD configuration.
We donā€™t know anything about ā€œI have access to everything except usersā€

We know that a Windows station work properly.
Even, you @zamboni , you affirm thatā€™s not possibleā€¦

Itā€™s time to think in other way to make the boss happy, isnā€™t it? :joy:

1 Like

lol I suppose :cold_sweat:

Itā€™s the only Mac in the place, and you donā€™t know.

2 ways:

  • You suggest to the boss this alternative way, with a well balanced argumentation.
  • You suggest to the boss to buy a Mac for you to find a solution.

Without this, itā€™s a waste of time, for you, for himā€¦ And in busness, a waste of time is never good ! :smirk:

Jim, seriouslyā€¦

Mac OSX can join an AD domain, but NS canā€™t act as an AD DC.

The only way to use NS as an auth server for OSX is LDAPā€¦

youā€™d really start to think in a enterprise perspectiveā€¦ i.e. an environment where people use pc to work with, not to enjoyā€¦

@Jim Jim: you have a macā€¦ start testing, thank you
@Paulo_Rodrigues: forget about AD, go for LDAPā€¦
@all: if anyone has an OSX, please start testing, thank you

"@Paulo_Rodrigues: forget about AD, go for LDAPā€¦ "

It is already with LDAP, and with that everything is fine, except the users, and the users were the main reason.

I know (read all the messages in this 3ad)ā€¦

OSX can auth against a LDAP server, so, this is the way