Directory Integration and Authentication
With Mac OS X integrated into Active Directory, everyone can easily log in to the internal network [and the West Coast network] no matter what platform they’re on, what office they’re at, or what story they are covering. Greg Priglmeier, systems engineer, IT Server Group, Star Tribune
The Mac. A fit for your heterogeneous world.
In short, Mac clients blend smoothly into Active Directory-only environments. So, whether you have Mac or PC systems on your network, you can set up and manage a single directory; you don’t need to maintain a separate directory or separate user records for each platform.
One directory. Multiple platforms.
Built into Mac OS X Leopard Server is Open Directory, an easy-to-deploy directory and network authentication server that lets organizations benefit from centralized information. Open Directory uses open standard protocols such as LDAP, Kerberos, and SASL and can even plug into environments that use proprietary services, such as Microsoft’s Active Directory and Novell’s eDirectory.
Open Directory uses LDAP to provide directory services for mixed-platform environments. Whether you have Mac or PC systems on your network, you can set up and manage a single directory; you don’t need maintain a separate directory or separate user records for each platform. This also streamlines the user experience, because users can move effortlessly between Mac and Windows computers—all with the same user account.
If you want to integrate Macs into an environment that primarily uses Windows, Mac OS X Server builds in support for Microsoft’s Active Directory services: Microsoft Kerberos authentication, Active Directory authentication policies, and Active Directory replication and failover. This means the Mac works with Active Directory in much the same way Windows clients do. The Mac can use existing Active Directory networks and mail servers, VPN servers, and applications.
Multiple services. Single sign-on.
Having just one directory streamlines the user experience as well, because users can move effortlessly between Mac and Windows computers with the same user account. It is also a plus for IT, because the integrated authentication authority in Open Directory provides secure, single sign-on to network resources using Kerberos. With single sign-on, users only need to authenticate once—with a single user name and password—to obtain access to a broad range of network services.
Simplified administration.
Open Directory delivers robust directory and authentication services by combining powerful open standards such as LDAP and Kerberos with Apple’s industry-leading administration tools. You can readily use the tools available in Mac OS X Server to manage Mac clients on networks that rely exclusively on Active Directory. This requires some minimal additional configuration of the Active Directory schema to include the necessary records and attributes. Administrators who prefer to use scripts can easily automate the process using the command-line tools included in Mac OS X Leopard.
Scalability. Lower costs.
Replication and automatic load balancing of directory and authentication services in Mac OS X Server help ensure availability and extended scalability. And, because there are no per-user or per-seat fees, Open Directory can grow along with the needs of your organization—without draining your IT budget.
Rich services for end users.
Directory services in Mac OS X Server also benefit your end users. Any accounts you’ve created in Open Directory can be fleshed out with full contact information, and made available to organization users from the Directory application. While Address Book can already plug into Directory Services to find contact information, Directory is designed specifically to browse users and groups within an organization.
The Directory application also provides a listing of company-defined locations or resources, such as meeting rooms or video projectors. These integrate with iCal to allow users to look up availability and schedule reservations. Users and Locations can even be plotted on an organizational map. Your end users will appreciate the rich functionality of the Directory application in Mac OS X, and your organization will appreciate its ease and efficiency for managing resources and schedules.
IT Resources
White papers, Technical Overviews, Guides, and links to resources for the IT professional. Learn more
Snow Leopard Server Evaluation
If you think it takes a dedicated IT department to deploy and use a server, think again. Register to receive your free, fully functional evaluation copy. Learn more
Third-Party Products
Looking for additional products that complement your Apple solution? Here are just a few of the many solutions designed for the Mac from third-party developers.
