Tag Archives: Active_Directory

MacOS – Add Active Domain group to local mac group

Posted on March 30, 2020 by

In testing, we found that remote connections from windows clients to the built-in macOS VNC server were not encrypted in any way. To resolve this we decided to use RealVNC as the screen sharing server on Macs. Also, since we … Continue reading

Posted in Articles, Labs | Tagged , , | Comments Off on MacOS – Add Active Domain group to local mac group

Mac – NoMAD – AD functionality to macs without binding

Posted on May 24, 2017 by

You can add AD functionality to a Mac without having to “Bind” it to the domain … See: See: https://www.nomad.menu/

Posted in Labs, Software | Tagged , | Comments Off on Mac – NoMAD – AD functionality to macs without binding

Mac – Active Directory Debugging and Logs

Posted on March 24, 2017 by

To debug an Active Directory binding issues First set the directory error logging to “debug” with: sudo odutil set log debug then try the join … set the error logging back to “error” with: sudo odutil set log default You’ll … Continue reading

Posted in Labs | Tagged , | Comments Off on Mac – Active Directory Debugging and Logs

Mac – Set NTP time server from command line

Posted on February 19, 2014 by

Active Directory login, Keyserver access, SafeConnect, etc all require the connecting client to have a time setting that is within 5 minutes or so of the server’s time setting.  It is therefore useful to use a “network time protocol” server … Continue reading

Posted in Labs | Tagged , , , | Comments Off on Mac – Set NTP time server from command line

Mac – AD – Computer Check-In Interval

Posted on May 10, 2012 by

You’ll want to look at ‘dsconfigad -passinterval’ There’s no description for it in the manpage other than the usage syntax. By default it’s set for 14 days. You can see the setting by running ‘dsconfig -show’. -Eric On 5/10/12 8:54 … Continue reading

Posted in Labs | Tagged , | Comments Off on Mac – AD – Computer Check-In Interval

Mac – AD Authentication to non-primary domain controllers details

Posted on November 3, 2011 by

Here are some details on how to make sure your non-primary AD authentication servers are available to macs running snow leopard … This comes from the MACENTERPRISE list which always provides a wealth of information for people who support Macs … Continue reading

Posted in Labs | Tagged , | Comments Off on Mac – AD Authentication to non-primary domain controllers details

Windows – AD Management with PowerShell

Posted on November 1, 2011 by

Apparently, it is now possible to manage the AD with PowerShell. Since the GUI for active domain users and computers can typically only make changes one account at a time, this powershell access could be handy when you have to … Continue reading

Posted in Labs | Tagged , | Comments Off on Windows – AD Management with PowerShell

Windows – Firewall Settings with GPO

Posted on September 17, 2011 by

Firewall settings can be controlled from with group policy … (more on doing this for specific applications like LabStats in a bit … ) See: http://www.grouppolicy.biz/2010/07/how-to-manage-windows-firewall-settings-using-group-policy/

Posted in Labs | Tagged , , | Comments Off on Windows – Firewall Settings with GPO

Mac – DeployStudio and AD join

Posted on September 16, 2011 by

Deploying a Mac OS image and adding the computer to the AD can all be accomplished using DeployStudio. I suggest that you set up your AD environment to use “OUs” (organizational units) for your computers rather than have them all … Continue reading

Posted in Labs | Tagged , , | Comments Off on Mac – DeployStudio and AD join

Windos 7 – GPO – Printing

Posted on August 11, 2011 by

Previously, printer mappings for multiple users on a single windows computer was a bit difficult. In order to make the print queues available to multiple users you would have to use some arcane “RUNDLL’ command lines. Now a set of … Continue reading

Posted in Labs | Tagged , , | Comments Off on Windos 7 – GPO – Printing