Displaying all posts for Directory Services

View Open Directory ComputerGroup Membership with Applescript

by November 27, 2010 » Add more comments.

The following Applescript will show a selectable, scrollable list of machine accounts in OD, then show which ComputerGroup(s) that computer belongs to. This is a quick way to confirm membership without having to open WorkGroup Manager, and especially handy to allow your techs to verify without being a directory admin in OD.

 

Bind to OD Script & Add to Computer Group

by April 6, 2010 » Add more comments.

The following script is what I use to bind machines to Open Directory and it solves the following challenges: If bound to another OD domain, it removes that binding. If you’re not moving from another domain, you can ignore that part, it won’t hurt that it’s in there.

 

Add directory services data to LANDesk inventory

by March 27, 2010 » Add the first comment.

I posted over at the LANDesk community site on how I add AD and OD data to inventory, most of which LANDesk does not collect on it’s own. Much of this I did because we were moving from one OD domain to another and needed a way to see which machines remained on the old […]

 

Can Open Directory be used enterprise wide?

by January 15, 2010 » Add the second comment.

A few years ago, before I started at my employer, a project was started for an enterprise-wide Open Directory setup. Each business unit within the university has a decent number of Macs that were mostly unmanaged. The project passed governance and a budget was set aside to fund the implementation. This was back in the […]

 

Migrate Local User to Domain Account

by January 14, 2010 » Add more comments.

If you are migrating your machines to authenticate via Active Directory, you may need to convert your local user accounts and their home folders to an AD user account and retain the home folder. I had a script posted here but that version was Tiger only because it used NI* commands.

 

slapd error in system.log every 10 seconds

by January 6, 2009 » Add more comments.

I had 2 Leopard servers (one with 10.5.5, one with 10.5.6), both displaying the following messages in the system.log every 10 seconds. com.apple.launchd[1] (org.openldap.slapd[283]): Exited with exit code: 1 com.apple.launchd[1] (org.openldap.slapd): Throttling respawn: Will start in 10 seconds

 

Browser Market Shifting to Open Source?

by January 4, 2009 » Add the first comment.

News is spreading about the NetApplications report showing IE has dropped below 70% market share with Firefox taking just over 20% and Safari at over 7%. I must not have been paying attention because I was assuming IE still had 80-85%. Looks like we’re well on our way to having Open Source dominate browser usage

 

Bind to AD using Apple Remote Desktop

by September 2, 2007 » Add more comments.

Need to bind a handful of Macs to Active Directory remotely? There are a couple scripts online already, including one from MacEnterprise and from Bombich. But I’ve never been able to get those to work when using with ARD. Either the AD plugin wasn’t activated or AD wasn’t added to the authentication path, etc. There’s […]

 

How to add an AD user as a local admin

by July 3, 2007 » Add more comments.

We all know the obvious way to allow a given group(s) to be an admin of a Mac bound to Active Directory (see image below). Although the “Allow administration by group” setting in Directory Access allows users in that group to installsoftware and perform certain other admin functions, there is a bug (or feature?) in […]