Help

Apple AD Join deprecated KB link?

PhillyPhoto
Valued Contributor

Wednesday

My Google-fu is failing me today. Does anyone have a link to the Apple KB (I think?) that talks about how joining Macs to AD should be discontinued?

0 Kudos
Reply
3 REPLIES 3

sdagley
Esteemed Contributor II

Wednesday

@PhillyPhoto The closest I've found is the tip at the end of this article that says AD binding isn't needed for DFS share access: https://support.apple.com/guide/deployment/integrate-mac-computers-with-active-directory-depd1a7cad1...

0 Kudos
Reply

AJPinto
Esteemed Contributor

Wednesday

Unfortunately, no, this crosses into the territory where Apple refuses to announce end of life and end of support for things. They more or less just stop supporting things it without saying anything. For example, have you ever seen a formal end of support date for any macOS release?

 

If you open a case with Apple, the techs will tell you its against recommendation to domain bind execpt in lab situations where FileVault is not used but that is really as close to an offical statment as you will get.

 

Rumor mill is right now Apple may totally remove the open directory function that enables domain binding with macOS 16, but that is just rumors right now.

Reply

cbrewer
Valued Contributor II

Thursday

Until platform SSO is more sorted and Apple provides a way to have multiple MDM enabled user accounts without AD binding, I wouldn't expect AD binding to go anywhere. As antiquated as it may be, for many orgs AD binding is still the most robust way to connect a Mac to an identity provider.

0 Kudos
Reply