Preparing a Read-Only LDAP Directory for Mac OS X


If you want a Mac OS X computer to get administrative data from a read-only LDAP directory, the data must exist in the read-only LDAP directory in the format required by Mac OS X. You may need to add, modify, or reorganize data in the read-only LDAP directory. Mac OS X cannot write data to a read-only LDAP directory, so you must make the necessary modifications by using tools on the server that hosts the read-only LDAP directory.

  1. Go to the server that hosts the read-only LDAP directory and configure it to support LDAP-based authentication and password checking.
  2. Modify the LDAP directory's object classes and attributes as necessary to provide the data needed by Mac OS X.

For detailed specifications of the data required by Mac OS X directory services, refer to "Mac OS X Server Open Directory Administration For Version 10.3 or Later" (available at www.apple.com/server/documentation/).