Joining Win2K3 Server/AD to a Mac OS X Server OD Master

Has anyone tried this setup?
Basically, we'd like to set up Mac OS X Server 10.5 Leopard to be an Open Directory Master, iCal Server, and LDAP server to some services such as subversion authentication.
We also have a need to have a Windows 2003 Server running Active Directory for Sharepoint Server. I'm having problems trying to bind a Windows Server to an Open Directory Master (My DNS is set up along with the appropriate SRV records as documented by:
http://www.microsoft.com/technet/archive/interopmigration/linux/mvc/cfgbind.mspx ?mfr=true
I configured BIND manually because the OS X DNS Admin app doesn't seem to be able to set up SRV records properly nor have a way to enable secure dynamic updates".
Whenever I try to bind the Win2K3 Server to the Open Directory, it always fails. Does anyone know if it's possible to join a Win2K3 server to the Open Directory Master in a way that fools the Windows server into thinking the Mac is an AD server? One important note: I have NOT enabled Windows PDC on the Mac. which is based on NT and not AD.

Hello,
I'm sorry I don't have an answer to your post, but I just wanted to say I am trying to setup exactly the same thing.
If I manage to get it working, I'll post and let you know.
The one thing I can add is that when I was setting up a W2K3 server to use a linux based DNS server, I had to add "check-names warn;" to the Bind config file.
The problem is that the DNS names Microsoft try to register break certain naming standards, and I set it to give a warning instead of a fatal error.
I have no idea if that is relevant to your setup, but I know I needed to do it to get my Bind working with W2K3.

Similar Messages

  • Hosting VPN Server on machine with Mac OS X Server.

    I recently installed Mac OS X Server 10.6 on my machine.  I would like to have this machine host a VPN network so I may have my iPhone and iPad connect to it.  I need some help setting up my machine as the server.  Any help would be appreciated.

    Here you can find all the Snow Leopard Server manuals
    http://support.apple.com/manuals/#macosxserver

  • Upgrading Mac OS X Server 10.6 to Mac OS X Server 10.6 to fix issues

    I have a new XServe that was migrated from a G5 10.5 Server. Mac OS X 10.6.2 appears to have caused some issues which I did not realize until I attempted the 10.6.3 upgrade which utterly failed. It appears that 10.6.2 is not running many cli tools and in 10.6.3 I have found the entire var dir at least is incorrect. Tools in 10.6.2 that are not working include locate, ln, and man if not more.
    I would like to reinstall. This server is bound to a AD server and I have read that you can upgrade 10.6 server to 10.6 server so I wanted to verify this as it would be the simplest way for me to do this.

    I made a clone of the server boot drive and ran some test to see what was possible. This can be easily done by erasing a drive and then installing a fresh Mac OS X Server 10.6. Upon reboot supply the serial number and then it will ask to migrate the data and you can choose the existing install (in my case I had one clone with 10.6.2 and one with 10.6.3). After this I tested to see that the OS was in good shape unlike the 10.6.2 which was missing key unix functionality (man, ln, and others). I then updated with the Combo updater to 10.6.3 v1.1 and all was well.

  • Can I install OS X Server for Leopard on Macs running non-server Tiger?

    I need to install OS X Server on a small business network of 5 Macs and 2 pc's. I need to run Mac software on the pc's using Aqua and need to use the pc's to run software that won't run on the Macs.
    All my Macs run 10.4.11 (non-server), so what I need to know is will I be able to buy and install OS X Server (Leopard)? Or do I need to buy OS X Server (Tiger)?
    And if I can use the Leopard Server version, can I also install it on my Macs at home that don't connect to the work network?
    Thanks, Ted

    I'm a little confused here.
    I need to run Mac software on the pc's using Aqua
    Running Mac OS X Server on the Macs won't help here. You can't run Mac software on a PC. The best you can do is screen-share (so the PC can run software that lets it see and control the Mac's screen), but you don't need Mac OS X Server for that.
    All my Macs run 10.4.11 (non-server), so what I need to know is will I be able to buy and install OS X Server (Leopard)? Or do I need to buy OS X Server (Tiger)?
    You can't but Mac OS X Server 10.4 at all now. It's been EOL for a year or more (I forget when Leopard was released now). Your only option is to buy Leopard Server.
    As to whether you can install Leopard Server, that depends on the hardware you're running. If it meets (or exceeds) the minimum specifications for Mac OS X Server then yes, you can install it. Whether it will solve your goals depends on quite what those goals are.
    And if I can use the Leopard Server version, can I also install it on my Macs at home that don't connect to the work network?
    You can install it on any system you're licensed for. Since each copy of Mac OS X Server is licensed for a single system only, you'll need to buy additional licenses for your machine(s) at home.

  • Photoshop CS6 can't save to server after upgrading to Mac OS Yosemite Server from Mac Lion Server

    We recently upgraded our server from a Mac Pro 2008 with OS X Lion Server to a Mac Mini 2014 with LaCie 20TB 5Big Thunderbolt 2 RAID drive. Everything is working fine with the exception of Photoshop. It does it intermittently but once it happens it will continue to do so. We get message like "Can't save to disk because of disk error" and "Can't save file because of program error" . Sometime we are able to do a "save as" and save over it. Most of the time we have to "save as" with a different file name and then rename and recopy the file. We have check permission on all the file as well as the server HD has ignore ownership checked. Again only three things changed. 1) Sever hardware change from Mac Pro to Mac Mini. 2) Server software upgraded from 10.7 Lion to 10.10 Yosemite(both have the latest update). 3) Drive when from internal on Mac Pro to External Thunderbolt 2 LaCie drive. We have no problem with Illustrator or Indesign. Only Photoshop. Anyone with any suggestion is greatly appreciated.

    Unfortunately you seem to be using Photoshop in a way that Adobe discourages, so you may not be getting a lot of helpful advice.
    Networks, removable media | Photoshop | CS4 and later

  • Can I install Snow leopard server on the new Mac Mini Lion server?

    Hi guys, I purchased a Lion Server and I am wondering if its possible to install Snow Leopard server on it.
    I have the Snow Leopard Server install discs and everything , just wondering if there is any thing I should take note of, I personally prefer SLS over Lion.
    What do you guys think?

    There's a huge thread on this (client, not server, but same concept) which you can find here.
    https://discussions.apple.com/thread/3209335?tstart=30

  • Photo Gallery Software for Mac OS X Server

    I'm porting my Linux server infrastructure over to Mac OS X Server. I've successfully moved over my DNS, Mail and most of my web sites to Mac without a problem. However, the last website is causing me a bit of pain. In Linux I was using Gallery 2 (http://gallery.menalto.com/), but I'm not sure how to get this to work on Mac OS X. In particular there are a bunch of dependencies that I'm not sure exist in Mac (ffmpeg, etc.)
    * Is there an alternative photo gallery software that people use which may install/work better on the Mac? We have wiki and blog services in the Web Server Admin pane, but I don't see a photo gallery service.
    * Has anybody had success in using gallery2 over to the Mac? What dependencies were needed and how did you find them?
    Thanks,
    Scott

    Hi
    For me it has to be RumpusFTP Server:
    http://www.maxum.com/Rumpus/
    It has a secure web interface - no need to open ports 20, 21. No need for dedicated FTP client software for uploading and downloading. Supports the most commonly used browsers. Multi-platform support and can be installed on a standard client OS.
    Tony

  • Update InDesign Server Version on Mac OS X Server

    Hi folks,
    quick question - quick answer:
    How can I update an InDesign Server running on an Mac OS X Server 10.5.8?
    Tried to use the installed Extends Script Toolkit, but the menu item under Help->Updates was disabled!
    Cheers Tino

    Hi folks,
    quick question - quick answer:
    How can I update an InDesign Server running on an Mac OS X Server 10.5.8?
    Tried to use the installed Extends Script Toolkit, but the menu item under Help->Updates was disabled!
    Cheers Tino

  • Xsan Mac OS X Server

    Does my Xsan server must to have Mac OS X Server installed? or just the Mac OS X is enough?

    OSX is enough.
    OSX server will give you more options as far as management, control, and monitoring.

  • Join an Ubuntu client to a mac server

    I have a server with SL server and many client, some are macs and some others are pc with Ubuntu 10.10.
    Is there a way to make those ubuntu clients join the directory service on the Mac server?
    Via samba, open directory or active directory or else?
    Any hint?
    Thank you.

    Sorry, but have you tried the Mail Service Administration pdf at http://www.apple.com/server/documentation/ ? It explains lots of details there.

  • Mobile account login about 10 mins on mac os x server

    Hi there!
    I successfully created mobile user accounts. When I log-in from my power book the mobile user is created and synched. If I try to log-in on my G5 workstation where mac os x server is installed the log-in procedure takes about 10 mins. Logging in with local accounts is as fast as one would expect.
    A look into system.log shows that there are problems to mount the users mount point. Please see:
    Oct 8 22:40:25 sebastian kernel[0]: AFP_VFS afpfs_mount: /Volumes/Users, pid 1540
    Oct 8 22:41:28 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: doing reconnect on /Volumes/Users
    Oct 8 22:41:28 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: connect to the server /Volumes/Users
    Oct 8 22:41:28 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Opening session /Volumes/Users
    Oct 8 22:41:28 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Logging in with uam 10 /Volumes/Users
    Oct 8 22:42:28 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Log in failed 32 /Volumes/Users
    Oct 8 22:42:34 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: posting to KEA retry for /Volumes/Users delayCnt 6
    Oct 8 22:42:34 sebastian KernelEventAgent[37]: tid 00000000 received VQ_NOTRESP event (1)
    Oct 8 22:42:34 sebastian KernelEventAgent[37]: tid 00000000 type 'afpfs', mounted on '/Volumes/Users', from 'afp_005AoG3asllS001Eic06SdO0-1.2c00000b', not responding
    Oct 8 22:42:34 sebastian KernelEventAgent[37]: tid 00000000 found 1 filesystem(s) with problem(s)
    Oct 8 22:42:38 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: connect to the server /Volumes/Users
    Oct 8 22:42:38 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Opening session /Volumes/Users
    Oct 8 22:42:38 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Logging in with uam 10 /Volumes/Users
    Oct 8 22:43:38 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Log in failed 32 /Volumes/Users
    Oct 8 22:43:48 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: connect to the server /Volumes/Users
    Oct 8 22:43:48 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Opening session /Volumes/Users
    Oct 8 22:43:48 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Logging in with uam 10 /Volumes/Users
    Oct 8 22:44:49 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Log in failed 32 /Volumes/Users
    Oct 8 22:44:59 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: connect to the server /Volumes/Users
    Oct 8 22:44:59 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Opening session /Volumes/Users
    Oct 8 22:44:59 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Logging in with uam 10 /Volumes/Users
    Oct 8 22:45:59 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Log in failed 32 /Volumes/Users
    Oct 8 22:46:09 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: connect to the server /Volumes/Users
    Oct 8 22:46:09 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Opening session /Volumes/Users
    Oct 8 22:46:09 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Logging in with uam 10 /Volumes/Users
    Oct 8 22:47:09 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Log in failed 32 /Volumes/Users
    Oct 8 22:47:19 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: connect to the server /Volumes/Users
    Oct 8 22:47:19 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Opening session /Volumes/Users
    Oct 8 22:47:19 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Logging in with uam 10 /Volumes/Users
    Oct 8 22:48:20 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Log in failed 32 /Volumes/Users
    Oct 8 22:48:30 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: connect to the server /Volumes/Users
    Oct 8 22:48:30 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Opening session /Volumes/Users
    Oct 8 22:48:30 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Logging in with uam 10 /Volumes/Users
    Oct 8 22:49:30 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Log in failed 32 /Volumes/Users
    Oct 8 22:49:40 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: connect to the server /Volumes/Users
    Oct 8 22:49:40 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Opening session /Volumes/Users
    Oct 8 22:49:40 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Logging in with uam 10 /Volumes/Users
    Oct 8 22:50:40 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Log in failed 32 /Volumes/Users
    Oct 8 22:50:50 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: connect to the server /Volumes/Users
    Oct 8 22:50:50 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Opening session /Volumes/Users
    Oct 8 22:50:50 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Logging in with uam 10 /Volumes/Users
    Oct 8 22:51:50 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Log in failed 32 /Volumes/Users
    Oct 8 22:51:50 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: max reconnect time reached 622 > 600 /Volumes/Users
    Oct 8 22:51:50 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: posting to KEA to unmount /Volumes/Users
    Oct 8 22:51:50 sebastian KernelEventAgent[37]: tid 00000000 received VQ_DEAD event (32)
    Oct 8 22:51:50 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: doing reconnect on /Volumes/Users
    Oct 8 22:51:50 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: connect to the server /Volumes/Users
    Oct 8 22:51:50 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Opening session /Volumes/Users
    Oct 8 22:51:50 sebastian KernelEventAgent[37]: tid 00000000 type 'afpfs', mounted on '/Volumes/Users', from 'afp_005AoG3asllS001Eic06SdO0-1.2c00000b', dead
    Oct 8 22:51:50 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Logging in with uam 10 /Volumes/Users
    Oct 8 22:51:50 sebastian KernelEventAgent[37]: tid 00000000 found 1 filesystem(s) with problem(s)
    Oct 8 22:52:51 sebastian kernel[0]: AFP_VFS afpfs_Reconnect: Log in failed 32 /Volumes/Users
    Oct 8 22:52:51 sebastian kernel[0]: AFP_VFS afpfs_unmount: /Volumes/Users, flags 524288, pid 37
    Did I miss something? Why can't I log-in my mobile user on the server machine?
    Thanx in advance
    Gerhard

    Looks like Apple has decided that access to the root user is not a needed thing for most users.  I called Apple and asked about this issue as I had just had it occur - and I was logged into terminal BEFORE update to 10.6.8 as root - after I was unable to do so -
    Apple walked me thought this -
    System prefs ---->Accounts -----> unlock ------>
    Click on Network Account Server "Join"  ----->
    Choose "Open Directory Utility"  ------->  This opens directory utility window ----->  Unlock lock at bottom.
    Go to "Edit" Menu and choose "Enable Root user" ------>  it will ask for password.  ( only 1st time after 10.6.8 update)
    Now you can log into the root user in your terminal.
    You can disable the root user - this will prevent you from logging in as root in terminal.
    I am not sure - but is there a security RISK here?  The option to re-set the root password via the above method ( as an admin user) - but with out re-booting the machine and using the install DVD?
    My 2 cents.

  • Use Open Directory on Mac OS X Server for Airport authentication?

    Is it possible to set up an Airport Extreme network so that only people with user names and passwords in the Open Directory on my Mac OS X Server can access it?
    I'm picturing a scenario where users would be prompted for the same user name and password they use for other network services when they attempt to join the wireless network.
    Our Airport Extreme access point is connected to the second Ethernet port on an original-model XServe that's running Mac OS X Server 10.3.9 (soon to be upgraded to 10.4.x).

    Is it possible to set up an Airport Extreme network
    so that only people with user names and passwords in
    the Open Directory on my Mac OS X Server can access
    it?
    I'm picturing a scenario where users would be
    prompted for the same user name and password they use
    for other network services when they attempt to join
    the wireless network.
    Our Airport Extreme access point is connected to the
    second Ethernet port on an original-model XServe
    that's running Mac OS X Server 10.3.9 (soon to be
    upgraded to 10.4.x).
    What you seem to be describing, is WPA2/Enterprise level security. This would require you to run some type of Radius Server on your XServe, and you would simply duplicate the name & password they use on the XServe on the Radius Server. BTW, this is considered one of the most secure methods of running a wireless network in the corporate world.
    You will however, have to research Radius & it's requirements, as I have not yet implemented that on my own system. HTH.
    Regards,
    Albert
    G4 QuickSilver01 OWC 1.47Ghz CPU 1.5GB RAM 740GB HDD   Mac OS X (10.4.3)   17" Aluminum PowerBook G4 1.33Ghz CPU 1.5GB RAM 80GB HD

  • Mac OS X Server on Windows Domain with Server 2003 DC

    Hello,
    I work for a school based in Leicester and we have a full windows environment (server 2003) running about 300 XP machines and 22 macs connected to Active directory using a piece od software called Admit Mac.
    Recently I went over to another school and to see there mac setup and how easy it is to image machines, subsequently we purchased a mac mini and installed MAC OS X Server on it. I want to be about to use this sever with Apple remote for the 20 macs we have by joining it to are domain and pulling the machines through using AD for Imaging etc.
    Can this be done easily and what's your experience on the best way to go about doing it?
    Any help would be fantastic partially if someone out there has done it!!

    Hi
    +. . . pulling the machines through using AD for Imaging etc.+
    Not sure what you mean by this? Creating images similar to RIS files (on the mac platform they're called nbis) can only be done using the System Image Utility. You can use the application itself if you want or an admin mac with the Server Admin Tools installed. AFAIK the application can only be run on the mac platform.
    I doubt if nbis can be 'served' by your DC either if this is what you meant?
    You might get a clearer idea if you read the documentation:
    http://images.apple.com/server/macosx/docs/SystemImaging_and_SW_Update_Adminv10.5.pdf
    These links provide further information:
    http://www.howtomac.co.uk/
    http://www.edugeek.net/forums/mac/15175-how-image-os-x-netrestore.html
    http://www.edugeek.net/forums/mac/28828-mac-os-x-creating-image-boot-drive.html
    Apple provide further documentation here:
    http://www.apple.com/server/macosx/resources/
    Tony

  • Problems with Mac OS X Server and webperfcache...

    I'm running Mac OS X server 10.4.11 and I'm trying to get mod_rewrite to work (thus far unsuccessfully). As part of my debugging strategy I want to turn everything around apache off and start pulling things apart to see if I can get them to make sense. When I turn the web performance cache off on all my sites using the site administration utility, apache gets a bus error when it attempts to restart. When I turn web performance caching back on, apache continues to get a bus error. Reboots, et al. don't clear up the problem and all I can do is go back to my system backup and bring up the previous day's version, which I can currently live with.
    Has anybody seen this before? Alternatively, has anybody had problems getting mod_rewrite to work and can give some advice. I'm doing pretty much everything that works on other U*x based systems and has worked before, but the lack of control over the ports used by the web sites on my system is problematic and I would, at the very least, like to be able to turn off webperfcache.
    Thanks in advance,
    Dick Munroe

    I am actually going to be doing almost exactly the same thing in the next 1-2 weeks. My plan is to make the OS X server a BDC on the domain, then promote it to PDC and retire the Windows Server 2k3 PDC.
    I have 1 Win2k3 PDC and 1 Win2k3 (64-bit) Terminal Server. My main worry is whether the PDC is handling the licence CALs for the TS.... if it is, that will interfere with the plan.
    Email me and let's discuss this off-line.
    Thanks,

  • Mac OS X server 10.5.7 users cannot logon

    Any help. I just installed Mac OS X Server and add added my users with logon details. I joined my MacBook Pro to the server using Directory Utilities and the Server is running well. I even have the users name displaying on the logon window. However, when I try to login the users, the window shakes indicating incorrect password. I have tried going over adding users, providing access rights etc. but with no success. I was successful in joining my daughter's Mac Mini to the server, but was not able to login using other users' details. Can anyone help.

    My bet's on an incorrect home folder location.
    First things first. Make sure that the Sharepoint for the home folders is set up correctly.
    You can double check this as follows:
    In server admin: Select the server name right below where it says "Available servers"
    Click the file sharing tab at the top.
    Click the SharePoints button and the Browse button
    Click on your desired home folder location in the file browser.
    Below the file browser, click on the share point tab.
    Make sure "Enable Automount" is checked.
    Click the edit button.
    Make sure the directory is /LDAPv3/127.0.0.1
    Make sure the protocol is AFP
    Make sure that Use for "User home folders" is selected.
    Click okay and save your changes.
    Now to workgroup manager.
    Select your user and click the "Home" button
    Make sure that there's a home folder location selected. (ie the line is highlighted)
    Click the edit button. (it looks like a pencil)
    It's get a bit tricky here...
    Mac OS X Server/Share Point URL:
    It should look like this: afp://server.example.com/Users (assuming you're using the users folder)
    Path to Home Folder:
    You should ONLY have the shortname of your user here.
    Full path:
    It has to look like this: /Network/Servers/server.example.com/Users/shortname
    Note that I've put server.example.com where you should have the domain name of your server, and shortname where you should have the actual shortname for your user.
    Clear as mud?
    Hope it helps.
    -Graham

Maybe you are looking for