What if you work in an organization that is large enough to use Windows Server and Active Directory, respectively? What if you have a Mac? As you know, ordinary PCs do not know how to use Apple Open Directory, but your Mac can work with Microsoft Active Directory and I’ll tell you how to enter it into the domain now. There is nothing complicated in the sequence of actions, although it must be admitted that an ordinary car on Windows it’s a little easier to enter into AD. A couple of days ago, after dragging my MacBook to work, I decided to enter it into the domain. But I didn’t immediately figure out where to go to see the settings associated with the domain. An attempt to find the required item through the search did not produce results, although everything looked logical: working with domain settings should be in the “Network” category, but it was not there.
At first, it seemed to me that I simply did not see the treasured icons and items. And as it turned out, they weren’t there. But where I found them, I’ll tell you a secret.
First, open the “System Settings” menu. We are interested in the “System” category and in it the “Users and Groups” item.
Here we have the “Login Options” item in store - this is exactly what we need and was not found in the “Network” menu.
We remove the lock by entering the password and select the treasured tab. Do you see the “Network Account Server” item at the very bottom? Yes, that’s exactly what we need to connect with the button of the same name.
In the window that appears, enter all the necessary information: server name (ip is also possible), computer ID and login-password combination to add the machine to the domain. Of course, you must have rights in the domain to do this.
We return to the previous window and pay attention to the “Automatic login” item. If your Mac is used for personal purposes at home, and at work you use an account from Active Directory, then I advise you to set it to “Off.” this parameter. Thus, when the system starts, you will be taken to a form for entering a login with a password, where you can use your domain account data. Also, just in case, check the box next to “Show input menu in the login window.”
You can leave the remaining items, except for VoiceOver prompts, as default.
That's all. You don't even need to reboot (how annoying it is on Windows). We close the lock so that no one can change the settings without authentication.
All that remains is to log in to the system using your data. In the upper right corner, next to the clock, a new menu has appeared with the currently active account. If you decide to log in using a domain account, just click on the user name and select “Login window”. You will see a standard form in which you need to enter data like domainnameuser and password (Don’t forget about the domain name!).
You can switch between accounts at any time by entering your own password for each. Switching happens very quickly, and there is no need to end the session.
That's it, the setup is complete. You can see if our machine has been added in the Acive Directory.
To begin with, I will tell you a short story and if it is familiar to you, then this article is for you. One fine morning you came to work and your boss called you and told you that he had purchased a new laptop that urgently needed to be connected to the network and all network resources. You came to him and realized that the boss would buy a Mac. He wants you to enter his new laptop into the domain to access all network resources without authorization. Or maybe the story is a little different. Your organization has decided to expand and has a new graphic design and marketing department, and all employees in this department will use Macs.
What to do in such a situation? Don't worry, you can join a Mac to a Windows domain and today I will show you how to do it. In this article we will connect Snow Leopard to a Windows Server 2008 domain.
Network and account setup on Mac
A Windows domain is completely dependent on the correct DNS settings, so the first thing you need to do is set the correct DNS server address, which in my case is also the domain controller. To do this, run System Preferences and press Network to open network settings.
By default, your network adapter receives settings via DHCP. Depending on your network settings, you can set the settings manually by selecting the option Manually.
My domain controller has an IP address of 192.168.1.172, so I specify this value in the DNS Server section.
Go back to System Preferences and select Accounts
Click on the lock below to make changes. Then click the button Join next to Network Account Server
Now click the button Open Directory Utility
While in Directory Utility Click the lock at the bottom again, highlight the Active Directory line and click the pencil icon to start editing.
In this section you need to enter information about the domain and computer ID. In this example, my domain name is hq.test.us and computer ID Mac. The computer ID is the name of the Mac computer's account in the Windows domain.
Click the arrow to display more options. This will give you 3 additional configuration options. To simplify things, I leave everything as default except the section Administrative. Click on the button Administrative and enter the IP address or fully qualified domain name of the domain controller in the section Prefer this domain server. Also here you can specify which domain groups will have administrator rights in Mac.
Now click the button Bind and enter the details of a domain user who has the right to enter computers into the domain, then click OK.
You will see the progress of entering the domain, consisting of 5 steps.
As a result, the computer is entered into the domain and the button Bind will be renamed to Unbind.
Click OK and then Apply in the Directory Utility window. Close Directory Utility. You should be returned to the Accounts window. Notice the green dot and domain name in the Network account server.
Login with a domain account on your Mac
Currently, you can already sign in to your Mac using Windows domain accounts. In the account selection window, select Other.
Now enter your details account domain.
Let's try to connect the network share. From Finder click Go and then Connect to Server. To use SMB we use the following syntax: smb://servername/share and then click Connect.
Please note that you do not need to enter login information on the server.
That's all, it wasn't very difficult, was it?
You share the directory by creating a binding between the client and the Open Directory domain on Lion Server. Binding creates a connection between the server and the client, allowing the client to read the LDAP database, send authentication requests, and interact with the Kerberos realm for service tickets.
Regarding authentication, you most often see this interaction from the Mac OS X login window, and much of this interaction is transparent to the user.
Any version newer than Mac OS X 10.2 can bind to the Open Directory running on Lion Server. Your Mac OS X 10.7 client systems should not be locked to versions of Mac OS X Server earlier than 10.7 to best support the latest Mac OS X enhancements.
Bind Mac OS X 10. 6 clients
Select the Apple menu and choose System Preferences, then click the Users and Groups icon in Mac OS X 10.7 (or Accounts in Mac OS X 10.6).Bind Mac OS X 10.5 and earlier clients
In previous versions of Mac OS X, you used the Directory Utility, installed in the Utilities folder in your Applications folder, to bind to a network directory. To link a Mac OS X 10.5.8 or earlier client, open the Directory Utility and do the following actions:
Click the lock icon and enter your administrator name and password.
Click the Add (+) button and select Open Catalog from the pop-up menu.
Select Active Directory to bind to the Active Directory domain.
Enter full name host or IP address of the server hosting the domain and click OK.
What if you work in an organization that is large enough to use Windows Server and Active Directory, respectively? What if you have a Mac? As you know, ordinary PCs do not know how to use Apple Open Directory, but your Mac can work with Microsoft Active Directory and I will now tell you how to enter it into the domain. There is nothing complicated in the sequence of actions, although it must be admitted that a regular Windows machine It’s a little easier to enter into AD. A couple of days ago, after dragging my MacBook to work, I decided to enter it into the domain. But I didn’t immediately figure out where to go to see the settings associated with the domain. An attempt to find the required item through the search did not produce results, although everything looked logical: working with domain settings should be in the “Network” category, but it was not there.
At first, it seemed to me that I simply did not see the treasured icons and items. And as it turned out, they weren’t there. But where I found them, I’ll tell you a secret.
First, open the “System Settings” menu. We are interested in the “System” category and in it the “Users and Groups” item.
Here we have the “Login Options” item in store - this is exactly what we need and was not found in the “Network” menu.
We remove the lock by entering the password and select the treasured tab. Do you see the “Network Account Server” item at the very bottom? Yes, that’s exactly what we need to connect with the button of the same name.
In the window that appears, enter all the necessary information: server name (ip is also possible), computer ID and login-password combination to add the machine to the domain. Of course, you must have rights in the domain to do this.
We return to the previous window and pay attention to the “Automatic login” item. If your Mac is used for personal purposes at home, and at work you use an account from Active Directory, then I advise you to set it to “Off.” this parameter. Thus, when the system starts, you will be taken to a form for entering a login with a password, where you can use your domain account data. Also, just in case, check the box next to “Show input menu in the login window.”
You can leave the remaining items, except for VoiceOver prompts, as default.
That's all. You don't even need to reboot (how annoying it is on Windows). We close the lock so that no one can change the settings without authentication.
All that remains is to log in to the system using your data. In the upper right corner, next to the clock, a new menu has appeared with the currently active account. If you decide to log in using a domain account, just click on the user name and select “Login window”. You will see a standard form in which you need to enter data like domainnameuser and password (Don’t forget about the domain name!).
You can switch between accounts at any time by entering your own password for each. Switching happens very quickly, and there is no need to end the session.
That's it, the setup is complete. You can see if our machine has been added in the Acive Directory.
To begin with, I will tell you a short story and if it is familiar to you, then this article is for you. One fine morning you came to work and your boss called you and told you that he had purchased a new laptop that urgently needed to be connected to the network and all network resources. You came to him and realized that the boss would buy a Mac. He wants you to enter his new laptop into the domain to access all network resources without authorization. Or maybe the story is a little different. Your organization has decided to expand and has a new graphic design and marketing department, and all employees in this department will use Macs.
What to do in such a situation? Don't worry, you can join a Mac to a Windows domain and today I will show you how to do it. In this article we will connect Snow Leopard to a Windows Server 2008 domain.
Network and account setup on Mac
A Windows domain is completely dependent on the correct DNS settings, so the first thing you need to do is set the correct DNS server address, which in my case is also the domain controller. To do this, run System Preferences and press Network to open network settings.
By default, your network adapter receives settings via DHCP. Depending on your network settings, you can set the settings manually by selecting the option Manually.
My domain controller has an IP address of 192.168.1.172, so I specify this value in the DNS Server section.
Go back to System Preferences and select Accounts
Click on the lock below to make changes. Then click the button Join next to Network Account Server
Now click the button Open Directory Utility
While in Directory Utility Click the lock at the bottom again, highlight the Active Directory line and click the pencil icon to start editing.
In this section you need to enter information about the domain and computer ID. In this example, my domain name is hq.test.us and computer ID Mac. The computer ID is the name of the Mac computer's account in the Windows domain.
Click the arrow to display more options. This will give you 3 additional configuration options. To simplify things, I leave everything as default except the section Administrative. Click on the button Administrative and enter the IP address or fully qualified domain name of the domain controller in the section Prefer this domain server. Also here you can specify which domain groups will have administrator rights in Mac.
Now click the button Bind and enter the details of a domain user who has the right to enter computers into the domain, then click OK.
You will see the progress of entering the domain, consisting of 5 steps.
As a result, the computer is entered into the domain and the button Bind will be renamed to Unbind.
Click OK and then Apply in the Directory Utility window. Close Directory Utility. You should be returned to the Accounts window. Notice the green dot and domain name in the Network account server.
Login with a domain account on your Mac
Currently, you can already sign in to your Mac using Windows domain accounts. In the account selection window, select Other.
Now enter your domain account details.
Let's try to connect the network share. From Finder click Go and then Connect to Server. To use SMB, use the following syntax: smb://servername/share and then click Connect.
Please note that you do not need to enter login information on the server.
That's all, it wasn't very difficult, was it?
Useful information
On the eve of the wedding of my close relative, our family also began preparations. We had the difficult task of choosing a toastmaster. We celebrated our wedding in a close circle of relatives outside the city, so we did without it. good friends They recommended Svetlana Svetlaya to us, who conducted their wedding very beautifully and cheerfully. For anyone interested, I am leaving a link to her website -