- Jamf Nation Community
- Products
- Jamf Pro
- Re: Directory Bindings settings in Computer Manage...
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 01-17-2014 05:47 AM
Hello,
Just wanted to get some clarification on some of the fields in the Directory Bindings setup since I am using MS Active Directory:
Under mappings, are these to be mapped to attributes in Active Directory? What is the use case?
Under administrative, is the "Allow administration by" field use to add these groups as admins on the computers or just to connect it to the domain?
Thanks!
Shawn
Solved! Go to Solution.
2 ACCEPTED SOLUTIONS
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 01-17-2014 05:56 AM
Mappings: Totally optional; you could have an attribute on your AD user objects where you specify UID, for example - you'd know it if you needed it, I think.
Administrative: Your first guess. You can add users and groups to this field to automatically have them added to the admin group of a Mac when it is bound. Handy if you have an AD group for your techs.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 01-17-2014 06:25 AM
@sdonovan, If you leave DC field blank, it will try any DC.
You can add the groups without the domain prefix. That works for me.
5 REPLIES 5
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 01-17-2014 05:56 AM
Mappings: Totally optional; you could have an attribute on your AD user objects where you specify UID, for example - you'd know it if you needed it, I think.
Administrative: Your first guess. You can add users and groups to this field to automatically have them added to the admin group of a Mac when it is bound. Handy if you have an AD group for your techs.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 01-17-2014 06:13 AM
Wonderful. Thank you for the info!
I forgot to mention I am a Windows System Engineer trying to find my way around JAMF. :)
Another question for you about the Administrative: Would I add the groups as domaingroup1 or just group1?
Shawn
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 01-17-2014 06:18 AM
Sorry for another post but I have another question:
For the "Prefer this domain server" field: If I leave this blank, will it just use any Domain Controller?
Thanks for your help!
Shawn
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 01-17-2014 06:25 AM
@sdonovan, If you leave DC field blank, it will try any DC.
You can add the groups without the domain prefix. That works for me.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 01-17-2014 09:57 AM
One reason you might prefer specific domain servers is if you had regions (geographically) that you wanted to communicate with specific (regional) DCs. Then, you would have something like a "New York" AD binding and a "Seattle" AD binding, and so on.
