We've released a refresh of the AD integration technical document here: http://training.apple.com/pdf/wp_integrating_active_directory_yosemite.pdf.
Question
Best Practices for Integrating OS X with Active Directory - Yosemite
+24
+14Hi Jared,
Thanks for that. Do you or anyone else know why it says "To properly support Kerberos, both forward and reverse Domain Name System (DNS) records should be accurate for Kerberized servers".
What is it about reverse DNS that is important? If you don't have it, what will break/not work?
Regards,
David London
+8@jarednichols
I know this is an old topic.
But perhaps you or someone else has made a best practice for El Capitan?
The link provided for Yosemite is not working anymore.
Regards,
Ronald
+18Are you running into a particular issue with El Capitan?
+8No, I am currently working on a script (bash) to read out the expiry date and sent a notification to the user.
+5The latest whitepaper is for 10.10: on this page
direct: link
Ronald: for password expire dates I can recommend this ADPassMon tool, and similar KerbMinder.
+8Thanks for the link.
As far as Password Expiry Notifications I have seen ADPassMon. But I have create a bash script which will tell the user via CacaoDialog there password is expiring..
Still finetuning the script but a preview can be found here: link
I do have an update on this script but not fully tested it. In the new script I read out the Exact date for Password Expiry. (Just like ADPassMon does)
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.