+3Hello,
Just wanted to get some clarification on some of the fields in the Directory Bindings setup since I am using MS Active Directory:
Under mappings, are these to be mapped to attributes in Active Directory? What is the use case?
Under administrative, is the "Allow administration by" field use to add these groups as admins on the computers or just to connect it to the domain?
Thanks!
Shawn
Best answer by JPDyson
Mappings: Totally optional; you could have an attribute on your AD user objects where you specify UID, for example - you'd know it if you needed it, I think.
Administrative: Your first guess. You can add users and groups to this field to automatically have them added to the admin group of a Mac when it is bound. Handy if you have an AD group for your techs.
+13Mappings: Totally optional; you could have an attribute on your AD user objects where you specify UID, for example - you'd know it if you needed it, I think.
Administrative: Your first guess. You can add users and groups to this field to automatically have them added to the admin group of a Mac when it is bound. Handy if you have an AD group for your techs.
+3Wonderful. Thank you for the info!
I forgot to mention I am a Windows System Engineer trying to find my way around JAMF. :)
Another question for you about the Administrative: Would I add the groups as domaingroup1 or just group1?
Shawn
+3Sorry for another post but I have another question:
For the "Prefer this domain server" field: If I leave this blank, will it just use any Domain Controller?
Thanks for your help!
Shawn
+4@sdonovan, If you leave DC field blank, it will try any DC.
You can add the groups without the domain prefix. That works for me.
+13One reason you might prefer specific domain servers is if you had regions (geographically) that you wanted to communicate with specific (regional) DCs. Then, you would have something like a "New York" AD binding and a "Seattle" AD binding, and so on.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.