Defining Local Directory Search Policies


Using Directory Access, you can configure a Mac OS X computer's authentication and contacts search policies to use only the computer's local directory domain. A search policy that uses only the local directory limits the access that a computer has to authentication information and other administrative data. If you restrict a computer's authentication search policy to use only the local directory, only users with local accounts can log in.

  1. In Directory Access, click the Authentication or click Contacts.

    Authentication shows the search policy used for authentication and most other administrative data.

    Contacts shows the search policy used for contact information in applications such as Address Book.

  2. If the lock icon is locked, click it and type the name and password of an administrator.
  3. Choose "Local directory" from the Search pop-up menu, then click Apply.