Creating Home Directories for Windows and Macintosh Computers



Similar documents
Configuring Active Directory Binding for OS X (10.4.x) within Miami Dade Schools

6) Click the lock in the lower left corner of the Directory Utility Window and authenticate with the local administrator account s credentials.

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

Configuring the Active Directory Plug-in

Mac OS X Secure Wireless Setup Guide

Integrating Mac OS X 10.6 with Active Directory. 1 April 2010

Wazza s QuickStart 17. Leopard Server - Blogs & Wikis

Sentral servers provide a wide range of services to school networks.

BusinessObjects Enterprise XI Release 2

Binding an OS X computer to Active Directory at NEIU (Existing User)

Microsoft Entourage 2008 / Microsoft Exchange Server Installation and Configuration Instructions

Windows Clients and GoPrint Print Queues


Automating client deployment

IIS, FTP Server and Windows

Centralized Mac Home Directories On Windows Servers: Using Windows To Serve The Mac

How To Set Up A Macintosh With A Cds And Cds On A Pc Or Macbook With A Domain Name On A Macbook (For A Pc) For A Domain Account (For An Ipad) For Free

QUANTIFY INSTALLATION GUIDE

Instructions for Adding a MacOS 10.4.x Server to ASURITE for File Sharing. Installation Section

Wazza s QuickStart 13. Leopard Server - Windows Domain

Other documents in this series are available at: servernotes.wazmac.com

Cloud Tools Reference Guide. Version: GA

MAPPING THE WEBDRIVE REFERENCE GUIDE

Install SQL Server 2014 Express Edition

Instructions for Adding a MacOS 10.4.x Client to ASURITE

How to install and use the File Sharing Outlook Plugin

SINGLE SIGN-ON FOR MTWEB

Basic Exchange Setup Guide

NetSpective Logon Agent Guide for NetAuditor

Setting Up Scan to SMB on TaskALFA series MFP s.

Installing Client GPO Software

Installation Guide. (You can get these files from

Enabling Backups for Windows and MAC OS X

Active Directory Authentication Integration

Setting up Sharp MX-Color Imagers for Inbound Fax Routing to or Network Folder

Active Directory Integration Guide

Team Foundation Server 2012 Installation Guide

1. Data Domain Pre-requisites. 2. Enabling OST

Outlook 2011 Setup For ITS Exchange 2010 Server Using A SOM Domain Login

Basic Exchange Setup Guide

The ECU Wireless system uses a captive portal authentication system. There are three steps to configure your computer for wireless access:

NetBeat NAC Version 9.2 Build 4 Release Notes

TSM for Windows Installation Instructions: Download the latest TSM Client Using the following link:

Video Administration Backup and Restore Procedures

Active Directory integration with CloudByte ElastiStor

Wazza s QuickStart 10. Leopard Server - Managing Preferences

Setting up Hyper-V for 2X VirtualDesktopServer Manual

i>clicker v7 Gradebook Integration: Blackboard Learn Instructor Guide

User Guide Trust Safety Accounting Upload PC Law and SFTP Software Release: Final Date

MassTransit 6.0 Enterprise Web Configuration for Macintosh OS 10.5 Server

Security Guidelines for MapInfo Discovery 1.1

Open Directory. Contents. Before You Start 2. Configuring Rumpus 3. Testing Accessible Directory Service Access 4. Specifying Home Folders 4

SSL VPN Setup for Windows

Integrating LANGuardian with Active Directory

DocuPrint C3290 FS Features Setup Guide

Web+Center Version 7.x Windows Quick Install Guide 2 Tech Free Version Rev March 7, 2012

Installation Logon Recording Basis. By AD Logon Name AD Logon Name(recommended) By Windows Logon Name IP Address

XStream Remote Control: Configuring DCOM Connectivity

Upgrade Guide BES12. Version 12.1

ACTIVE DIRECTORY DEPLOYMENT

CA /BrightStor ARCserve9 Backup Software

Apple Mail Setup Guide (POP3)

FTP, IIS, and Firewall Reference and Troubleshooting

SafeWord Domain Login Agent Step-by-Step Guide

owncloud Configuration and Usage Guide

Moving the TRITON Reporting Databases

Installation Guide v3.0

NTP Software File Auditor for Windows Edition

Upgrading User-ID. Tech Note PAN-OS , Palo Alto Networks, Inc.

Installation Guide. . All right reserved. For more information about Specops Deploy and other Specops products, visit

Secure Messaging Server Console... 2

Computer Science and Engineering MacOS Cisco VPN Client Installation and Setup Guide

E-Notebook SQL13.0 Desktop Migration and Upgrade Guide

Migrating MSDE to Microsoft SQL 2008 R2 Express

Instructions to connect to GRCC Remote Access using a Macintosh computer

CHARTER BUSINESS custom hosting faqs 2010 INTERNET. Q. How do I access my ? Q. How do I change or reset a password for an account?

Macintosh Printer Management using Centrify DirectControl Group Policies

Training module 2 Installing VMware View

Installing Microsoft Outlook on a Macintosh. This document explains how to download, install and configure Microsoft Outlook on a Macintosh.

File Management Utility User Guide

Lotus Notes 6.x Client Installation Guide for Windows. Information Technology Services. CSULB

SonicWALL CDP 5.0 Microsoft Exchange User Mailbox Backup and Restore

Mac OS VPN Set Up Guide

NetIQ Advanced Authentication Framework - MacOS Client

Installing GFI MailArchiver

Windows Firewall Configuration with Group Policy for SyAM System Client Installation

Installing the Android SDK

2. Using Notepad, create a file called c:\demote.txt containing the following information:

GO!NotifyLink. Database Maintenance. GO!NotifyLink Database Maintenance 1

Discovery Guide. Secret Server. Table of Contents

Centralized Mac Home Directories with ExtremeZ-IP

Compiled By: Chris Presland v th September. Revision History Phil Underwood v1.1

Apple Mac VPN Service Setting up Remote Desktop

Managing Users, Computers, & Groups

Installing Oracle 12c Enterprise on Windows 7 64-Bit

Wazza s QuickStart 1. Leopard Server - Install & Configure DNS

Reference and Troubleshooting: FTP, IIS, and Firewall Information

Transcription:

ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 1 Active Directory Integrated Home Directories Overview This document explains how to configure home directories in Active Directory and how to configure the Mac OS X client to use use them. The instructions are divided into the following areas. Setting up the folder hierarchy on the Windows server with appropriate permissions. Configuring ExtremeZ-IP to host home directories. Adding the home directory path to the users profiles. Binding the client computer to the domain using the Directory Setup application. For best results you should be using the latest version of ExtremeZ-IP. A link to the latest version of ExtremeZ-IP can be obtained from Group Logic support or found on the Latest Releases page of the Group Logic website. In addition to using the latest version of ExtremeZ-IP, it is important that you upgrade to at least the latest version of Mac OS X Tiger (10.4.11 as of this writing). The screenshots and steps below describe the process for configuring Mac OS X Tiger. The configuration for Max OS X Leopard are similar, though some of the names and GUIs of the utilities have changed. Apple has provided many fixes in each successive version of Mac OS X, that make the mounting of network home directories much more reliable. Creating Home Directories for Windows and Macintosh Computers 1. On the server where the home directories will be stored, create a folder to store your users home directories, for example, "H:/Home". 2. Right-click the folder and select Sharing and Security. ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 1

ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 2 3. Grant the LOCAL administrators group (usually displayed as SERVERNAME\Administrators)"FULL CONTROL" (and thus the Domain Admins because they're automatically made a member of the LOCAL Administrators group when the server was joined to the domain). 4. Grant "Authenticated Users" the following permissions: Read & Execute, List Folder Contents and Read. 5. Click Advanced. 6. Apply permissions for Authenticated Users " to "This folder only". 7. Uncheck "Allow inheritable permissions from parent to propagate to this object and all child objects. Include these with entries explicitly defined here." 8. Choose to copy the existing permissions. 9. Click Apply. 10.Close all of the Security Settings windows. 11.Share your home directory under both Windows sharing (SMB) and ExtremeZ-IP (AFP) and give "Everyone" full control permissions for Windows files sharing (permissions will be enforced through NTFS). It is very important that the paths for the SMB and AFP shares be identical. ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 2

ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 3 ExtremeZ-IP Home Directory Configuration Overview This section describes the process for enabling the ExtremeZ-IP home directory support feature. This feature allows volumes to be designated as home directory volumes, presenting the user with a filtered view of the volume that shows only their assigned home directory folder. When a volume is designated as a home directory volume, a user will only be given the option to mount the volume if it contains their individual home directory. When browsing that volume, the user will only see their home directory folder. All other folders on the volume will be hidden. Client Macs that are configured to use an ExtremeZ-IP network based home directory will continue to function properly, regardless of whether the ExtremeZ-IP server s home directory support is enabled or disabled. If the server s home directory feature is disabled, the user will simply be presented with the entire contents of the volume rather than a filtered view. Home Directory Support Setup To enable the home directory feature on your ExtremeZ-IP File Server, check the Enable Home Directory Support option, found in the Settings dialog of the ExtremeZ-IP Administrator. You will configure specific volumes on the server as home directory volumes in the next step. Additionally, you must choose the type of home directory support you would like: Use Profile Home Directory This option assigns a user s home directory based on the Home folder path specified in their Active Directory account profile. The profile home directory option will use the path specified in the Connect option of the Home folder configuration, shown below. The drive letter assigned in the profile does not apply to Mac home directories. Use User Name as Home Directory If the volume being mounted is a home directory volume and contains a directory with a name matching the user s user name, that directory will be assigned as their home directory. To configure an individual volume as a home directory, simply create a new volume or select an existing volume in the Volumes dialog of ExtremeZ-IP ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 3

ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 4 Administrator and choose Modify. On the Volume Properties dialog, check the Use volume as home directory option. After completing these steps, home directory support will be active on your server. ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 4

ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 5 Assigning User Home Directories The following step will create the home directory for the user. Because of the permissions set above users will have Full control over the newly created folder, and the Local Administrators group will have "Full control" through the inherited permissions. You then have a home directory that a user can do whatever they want with and local administrators can access/backup/restore copy files to. 1. Open the Active Directory Users and Computers on the Domain Controller. 2. Add a user or select an existing user. 3. Go to the users PROFILE tab, click connect under the home folder, select a drive letter (H: is the most common) and type \\servername\home \username in the To: field. ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 5

ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 6 Binding your Mac to Active Directory Now that you have set up the home directory profile on the server you will now need to bind the Mac OS X clients to Active Directory. The steps below are for configuring Mac OS X Tiger. 1. Launch the Directory configuration tool, which you can find in /SystemLibrary/CoreServices/. 2. Authenticate to unlock Directory Utility, if needed. 3. Check the Active Directory checkbox and click Configure. ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 6

ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 7 4. Enter your domain name in the Active Directory Domain field. 5. Enter the computer name in the Computer ID field. 6. Click the disclosure triangle to Show Advanced Options. 7. Verify that that Network protocol to be used is set to afp:. 8. Click the Bind button. 9. Provide a Domain user name and password. The pre-populated Computer OU settings should work, in most cases. ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 7

ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 8 10.Click the OK button (if necessary Click OK to agree to Join existing account). 11.Click the OK button, Apply and close Directory Access configuration tool. 12.Restart the Macintosh client and login to it with an AD account. Your Windows home directory should be now mounted automatically as a network drive. Verifying the Configuration To verify that the configuration is correct, restart the client computer and login using an Active Directory account. If everything is configured correctly, the user's home directory will be mounted over the network, and the Mac will have copied the default set of Mac OS X user folders (Library, Documents, etc.) to the server. If you navigate up to the parent directory, you should only see the folder for the logged in user. Because configuration is required on both the client and the server, there are many potential pitfalls in setting up Active Directory integrated home directories. The key is to verify that each individual component is working properly. If the parts work correctly they will work when correctly when combined. To test that you can properly see the users' home folder from the Mac, you can manually connect to the file server and mount the HOME directory. To verify that the computer is properly bound to the Active Directory domain, you can use the 'dsconfigad -show' command. In Tiger (Mac OS X 10.4), you can check that the ActiveDirectory plug-in is properly getting the home directory from the user's profile with 'lookupd -q user -a name username' (replace username with the name of the user). In Leopard and above (Mac OS X 10.5), the 'lookupd' command has been replaced with 'dscacheutil', but the syntax is the same (dscacheutil -q user -a name username).' ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 8

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information