Server Admin 10.4 Help
Setting Up a Server as an Active Directory Domain Member
Using Server Admin and Directory Access, you can set up Mac OS X Server to join an Active Directory domain hosted by a Windows 2000 or 2003 server. A server that joins an Active Directory domain can provide file, print, and other services to users with accounts in the Active Directory domain. The domain member server gets authentication services from Active Directory. The domain member server does not provide authentication services to other domain member servers.
- Configure the server to access the Active Directory domain.
Open Directory Access, select Active Directory in the Services pane, then click Configure. Enter the DNS name of the Active Directory domain, edit the computer ID, and optionally set the advanced options. Then click Bind and authenticate as an Active Directory domain administrator. For detailed instructions, see the directory access section of Open Directory Overview.
- Join the server to the Active Directory Kerberos realm.
Open Server Admin and select Open Directory for the server. In the Settings pane, click General, then click Join Kerberos. Choose the Active Directory Kerberos realm from the Realm pop-up menu and enter credentials for a local administrator on the server.
- In Server Admin, select Windows for the server, click Settings, then click General.
- Verify that the server is now a member of the Active Directory domain.
You can change the server's optional description, which appears in the Network Places window on Windows computers.
After setting up an Active Directory domain member, you may want to change access restrictions, logging detail level, code page, domain browsing, or WINS registration. Then if Windows services aren't already running, you can start them. For instructions, click a topic below: