Use external Kerberos server for OD master

Hi all,
is it possible to use an existing external Kerberos server for our OD master Mac server (needs to be OD master for iCal, but we don't want to move the kerberos service to the Mac)?
Can anybody explain the necessary steps?
Thanks a lot for every hint.
Rene

When I asked this same question about a year ago I never got a real good response from the outside contractor we deal with or from Apple... Essentially they believe you should stay all Mac for Auth or all other for Auth... Mixing is kind of frowned apon. Or at least at that time I don't know how people feel about this now.
You should be able to add your non-Mac kerberos source to your server using the Kerberos utility: /System/Library/CoreServices/Kerberos... Edit-> Edit Realms. From there I would hypothesize that if you manually edited your OD records for staff and changed the Passwd entry to point to your other Kerberos server that MAY work... Not sure there.
I always wanted to get User management down to as few of servers as possible. Going into next year we will only be using our Mac OD server for Machine management and using an OpenLDAP server running on Slackware Linux for User information. The OpenLDAP server fully emulates Apple's OD and is even reconized as an "Open Directory" server in Directory Utility without doing any Advanced or Manual steps. I currently have Kerberos on my OD server then bound to the same Kerberos Server that OpenLDAP is using and have also kerberized the AFP, FTP, and iChat services... All of which work fine. With a quick mod to /etc/authorization users authenticating to this source also get kerberos tickets to hold during the login process which can authenticate them to AFP shares without prompt... Um haven't found anything else thats good for yet, but were looking.... I recently had our Apple Account tech out here to ask about the final piece in my puzzle for iChat, but I'm waiting for an answer on that.
Don't know if any of this helps you, but maybe it can spark a thought to get you started:>

Similar Messages

  • Using external LDAP server for  WL JNDI lookups

    I'm trying to find out if it is possible to re-direct JNDI calls to the WL
    server to an external LDAP server. I know you can install an external LDAP
    server for security purposes, but I would like to use an external LDAP
    server to handle all JNDI lookups (like for JNDI EJB name location, etc.).
    Is this possible?

    You typically need to use our JNDI store. We strongly recommend this for
    performance reasons..
    You can use the JNDI To LDAP bridge which is available from the sun web
    site.
    Michael Girdley
    BEA Systems Inc
    "Jack Archer" <[email protected]> wrote in message
    news:[email protected]..
    I'm trying to find out if it is possible to re-direct JNDI calls to the WL
    server to an external LDAP server. I know you can install an external LDAP
    server for security purposes, but I would like to use an external LDAP
    server to handle all JNDI lookups (like for JNDI EJB name location, etc.).
    Is this possible?

  • Using SAP Content Server for SAP E-Recruitment

    Hi SAP Experts,
    We are presently implementing SAP E-Recruitment using BSP services, We are successfully runnig with Whole E-recruitng cycle when we use SAP system DB as storgae for External Candidtes' Documents.
    But, Our Client wants to have SAP Content Server to store all documents uploaded by External/Internal Candidates becuase client is worrying that if SAP system DB holds such huge data base of Resumes, it may slow down the performance of SAP System.
    So, We need inputs from you suggesting whether is it feasible to use SAP Content server for SAP E-Recruitment Implementation. SAP no where suggests to Content server. So, we are in deliema to go for content server or not. If it is feasible to use Content server, pls provide me proper links or documents for reference.
    Please give your valuable inputs,
    Thanks & Regards,
    Sudheer Kumar P

    Hi Sudheer,
    We are considering the same option.  We are concerned about performance after all these documents are uploaded too.  Did you install a content server?  How did it go and was it difficult to set up with e-rec?
    Thanks
    Shane

  • External number range for material master

    Dear sap guru i want to create external number range for msterial master but i am facing problem .i used T.code MMNR but i am not able to tick external number small squar window . can anybody help me and tell me step by step
    regards
    rohit

    Hi
    In tcde MMNR select groups in the application tool bar a pencil like icon click that
    Then go to group in the top menu bar
    In that if you choose insert
    Then a dialogue box will open
    In that give text and
    there will be two lines
    First is for internal no range
    second is for external no range with the check box ticked in grey
    In that you have to choose the second one and give only the range interval
    External tick is already there ready made in the system
    If you are sure that your settings are correct in MMNR
    IMG-L.G-MATERIAL MASTER-BASIC SETTINGS-MATERIAL TYPE---DEFINE ATTRIBUTES OF MATERIAL TYPES
    in this choose your material type and click on its details
    in the general data tab there is a external no assignmentw/o check a check box is there
    Pls tick that and try to do your process by giving external no
    Regards
    raja
    Edited by: ramanathan raja on Dec 4, 2008 2:27 PM

  • I am using a work laptop and have the same problem. When I try to change the "configure proxy", they only available option is "use this proxy server for all protocols". Could it be that my system administrator blocked me from changing it since they don'

    I am using a work laptop and have the same problem. When I try to change the "configure proxy", they only available option is "use this proxy server for all protocols". Could it be that my system administrator blocked me from changing it since they don't want us to use Firefox.
    == User Agent ==
    Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; GTB6.4; FNGP_SYS)

    Start Firefox in [[Safe Mode]] to check if one of your add-ons is causing your problem (switch to the DEFAULT theme: Tools > Add-ons > Themes).
    See [[Troubleshooting extensions and themes]] and [[Troubleshooting plugins]]
    If it does work in Safe-mode then disable all your extensions and then try to find which is causing it by enabling one at a time until the problem reappears.
    You can use "Disable all add-ons" on the ''Safe mode'' start window.
    You have to close and restart Firefox after each change via "File > Exit" (on Mac: "Firefox > Quit")

  • How to use LSMW on CRM for bulk master data creation?

    Hello Experts,
    I need your help to able to use LSMW on CRM for bulk master data creation. Below is described my detailed requirement; -
    We have CRM 2007 integrated with SAP ISU (ECC6.0). As per business process all Business Master Data (BP details, Business Agreement details etc) and Technical Master Data (Connection Object, PoD etc.) is created in CRM and then it is replicated in ISU. We are going to start Assembly Test soon. Now we need to have all master data in place. Tool we want to use is LSMW.
    Now can you help me right from scratch on how to use LSMW for bulk master data creation in CRM?
    Please give me documents / links etc that is relevant.
    Regards,
    Rohit

    Hi,
    I have looked into your query.
    These are some information which might be useful to you.
    What is LSMW?
    Legacy System Migration Workbench or LSMW is SAP standard program that can be used to easily load / change master data or transactions in SAP without any programming at all. It can be used to upload data at cutover, such as: open orders, contracts, materials, vendors, stock on hand. It can also be used in a production system to make changes to existing data. Very limited authorization checks are available on the transaction, so the use of it must be very well controlled.
    One input file can be used to create all the views of the material master. For all the material types. Even if different views and fields are used for the different materials.
    Steps to take
    1. Create text file with data to be loaded
    2. Set up and run LSMW
    The following link will provide good information on LSMW Idoc method:
    [http://help.sap.com/saphelp_nw04/helpdata/en/ad/2d54a41d7011d2b42e006094b944c8/frameset.htm]
    I hope this helps.
    Regards,
    Venkat

  • HT201250 if I used external hard disk for backup time machine, is it possible to use that external hard disk to save another else from diffrent computers?

    If I used external hard disk for back up time machine, is it possible to use that external hard disk to save another else from diffrent computers?

    Welcome to Apple Support Communities
    You can do this, but you should make a new volume on your external disk. Time Machine needs a volume that is only used to store backups, so you can't store other data in the same volume as the one you are using for making backups.
    If you want to create another volume on your external disk, use Disk Utility to do this > http://pondini.org/OSX/DU3.html Anyway, you should get another external disk to store other files, but if you don't want to, you can create another volume in it

  • We are using the Azure server for our web services. Server is generating an error "Unable to connect to the remote server". What is this error means

    We are using the Azure server for our web services. Server is generating an error "Unable to connect to the remote server". What is this error means  

    Hello,
    Did you means that you use the Windows Azure Virtual Machine DNS name as the server name in the Reporting Server Web Services URL?
    For example:
    Report server:http://uebi.cloudapp.net/reportserver
    Report manager:http://uebi.cloudapp.net/reports
    If you want to connect to Report Manager on the virtual machine from a remote computer, you should create a  virtual machine TCP Endpoint and open the port in the virtual machine’s firewall. By default, the report server listens for HTTP requests
    on port 80.
    Reference:http://msdn.microsoft.com/en-us/library/jj992719.aspx#bkmk_ssrs_connect_2_remote_RM
    Regards,
    Fanny Liu
    Fanny Liu
    TechNet Community Support

  • Why does my laptop use a proxy server for mozilla or chrome when i check in internet explorer it sais my system isnt but it is it jumps back to a proxy server in mozille when i tick no proxy ?? help please im not wizzy thanks

    Why does my laptop use a proxy server for mozilla or chrome when i check in internet explorer it sais my system isnt but it is it jumps back to a proxy server in mozille when i tick no proxy ?? help please im not wizzy thanks

    Start Firefox in <u>[[Safe Mode]]</u> to check if one of the extensions or if hardware acceleration is causing the problem (switch to the DEFAULT theme: Firefox (Tools) > Add-ons > Appearance/Themes).
    *Don't make any changes on the Safe mode start window.
    *https://support.mozilla.com/kb/Safe+Mode
    See also:
    *http://kb.mozillazine.org/Preferences_not_saved
    *https://support.mozilla.com/kb/Preferences+are+not+saved

  • Trying to use iCloud sending server for other POP accounts

    I have an iCloud email address, and 2 other non Apple POP email accounts set up in Mail running OSX 10.7.5.  I've forwarded my 2 POP accounts to my iCloud address so mail coming to those email addresses will sync with my iOS devices via iCloud.  On my Mac, if I reply to one of these messages, it wants to use the sending server for the POP account, which means the reply will not end up in my iCloud sent mail, and therefore won't sync with my iOS devices.
    I tried to set up the POP account using the iCloud server with the following settings: 
    Server Name: smtp.mail.me.com
    Default Ports 25, 465, 587
    Use Secure Sockets Layer
    Password Authentication
    User Name:  [email protected]
    Password:  My Apple ID Password
    When I try to use this server when sending from these POP accounts, I get an error that Mail can't send with that server.  I run the connection doctor, and everything checks out OK.
    Is there a way I can accomplish this?
    Thanks,
    Dan

    try logging in to your email account through the web browser and in the web client there should be auto forward setting set it up in the web client and delete the email  account from mail and then all of your email will be forwarded to your icloud account on all youre devices

  • First time using external hard drive for backup of computer....

    First time using external hard drive for backup of computer....it asks "Do do you want to erase disk?" In order to proceed, I have to say "yes" ... is that what I want to do? ...Seems like I'm skipping a step...

    To use Disk Utilities, attach the drive, open Finder > Applications > Utilities > Disk Utilities and then highlight the LaCie drive in the left panel of the DU window.  In the right panel, choose the Partition button top center of the pane.  Then decide how many partitions you want on the drive, one is just fine.
    Then choose the format, the default is Mac OS Extended (Journaled) which is prefered.
    Then name the partition or drive.
    Then choose the partition table, the default is GUID which is prefered.
    Then Apply and you will get to confirm that you want to erase and format the drive.
    Quit DU and you are ready to go.

  • DHCP lease issue for PPPoA sessions when using external DHCP server

    We used to use the Cisco 7206VXR's DHCP server to hand out leases, and when we lost several hundred customers on a link, the router was able to get them up and connected with an IP address within minutes.
    We switched over to using an external DHCP server so we could have more control over some extended DHCP options, as well as to aggregate all our DHCP traffic. Now, if we lose 100 DSL customers all at once, it takes 90 minutes for them to come up again. They come in a few at at time, until all 100 are back.
    We see waves of RADIUS auth's in our RADIUS log (RADIUS has always been handled externally, so nothing changed there), and continuous streams of DHCP requests come in and DHCP offers go out. What seems to be happening is that a whole bunch of modems auth with RADIUS, request IP addresses, but for whatever reason, timeout when they don't all get their lease, drop the connection, and retry the whole process all over again. We purchased a dedicated DHCP server, thinking that was the bottleneck, but performance is about identical.
    Here's our config:
    interface Virtual-Template1
    ip unnumbered Loopback11
    ip helper-address a.b.c.d
    peer default ip address dhcp
    ppp authentication pap
    ppp ipcp dns a.b.c.d e.f.g.h
    ppp ipcp unique-address
    My questions are:
    - is there any performance issue with using an external DHCP server and PPPoA
    - is there anything in our config that would cause such delays
    Frank

    GP:
    No, the DHCP server is not across a WAN link; there is only a 10/100 switch in between the router and the DHCP server. There are no dropped packets on the interface.
    I ended up opening a case with TAC about this issue. While I had the helper address configured in the template, TAC recommeneded that I specify the actual DHCP server with the command "ip dhcp-server x.x.x.x". This eliminates the DHCPBROADCAST (which I've verified). Perhaps the DHCP relay portion of the Cisco router is performed serially, instead of in parallel. By that, I mean, the next DHCPBROADCAST won't go out until there is the response for the first DHCPBROADCAST.
    I'll know in a few days when we test again.
    Frank

  • OTP of ASDM using external radius server ( Not RSA )

    Hello,
    Just seeing if the ASDM will support OTP using an external radius server, and not RSA.  I see there was a feature added to 8.2 that states its possible with RSA, but nothing of any other support.  Just checking to see if someone know for sure.
    Thanks,
    Jason

    I did see in the Release notes for ASDM 6.2, that SDI is support with RSA.  Can anyone confirm or not if it works with Radius too ( OTP ).
    http://www.cisco.com/en/US/docs/security/asdm/6_2/release/notes/asdmrn62.html

  • How many DNS record need to create in Internal & external DNS server for exchange?

    Hi friends,
    I recently installed Exchange Server 2010 in my organization for testing purpose and I've register a pubic ip too for exchange server on godaddy.com. How many
    internal & External DNS records reqired to configure on external & Internal dns server so my all feature like Auto-discover, Activ -sync,& webmail start working perfectly.
    It's my first time configuring exchange for a organization.
    Thanks & Regards,
    Pradeep Chaugule

    Hi,
    Just as what ManU Philip said, you need to create
    Autodiscovery.domaincom and mail.domain.com for external dns server.
    Generally, you configure your Exchange Servers as DNS clients of your internal DNS server.
    Refer from:
    http://technet.microsoft.com/en-us/library/aa996996(v=exchg.65).aspx
    Best Regards.

  • Using External Hard Drive For Time Machine

    Hi. I will be buying a new iMac and plan to use an external hard drive by Lacie for Time Machine backups. I haven't used an external hard drive for this purpose before -- previously I've always used Apple's Time Capsule. So, I don't know if I can leave the Lacie hard drive unejected and powered on even when I've shut the computer down. The Time Capsule never needs ejecting from the desktop and is always on, but I'm not sure if the same can be done with an external hard drive when using it for time machine backups.
    So, I just need to know if, when using an external hard drive such as a Lacie for Time Machine backups, I can 1. leave it unejected even when I shut down the computer? and 2. Can I also leave the hard drive powered on even when I shut the computer down? It would be good if I could do this because then it would just always be on and ready for hourly time machine backups without my having to remember to turn it on and the eject it when it's finished for the day.
    I'd appreciate any advice or information.
    Thanks in advance.
    John

    pulp3au wrote:
    1. leave it unejected even when I shut down the computer?
    What are you referring with "unejected"? You should know that LaCie drives have got three modes: "On" (permanently turned on), "Auto" (when you turn off your computer, your external disk turns off or you unmount it) and "Off". Choose the one you want.
    pulp3au wrote:
    2. Can I also leave the hard drive powered on even when I shut the computer down? It would be good if I could do this because then it would just always be on and ready for hourly time machine backups without my having to remember to turn it on and the eject it when it's finished for the day.
    Of course. You can leave the external disk turned on when your Mac is turned off without any problem. In "Auto" mode you won't have to do anything in order to turn it on again

Maybe you are looking for