Well, I can tell you that it is possible, but what I've come up with is messy so far. Currently, I am in the process of converting our student enrollment from an "imaging" type enrollment to one that is now user initiated. We do NOT bind our machines to AD, nor do we use any type of LDAP account. What I am trying to finish is the process of converting the students existing personal (local) accounts to ones using their AD credentials, locally. I'm working this through a workflow involving SplashBuddy, Enterprise Connect and a script that I've put together from various resources (smart people) here on jamfnation.
Long story short, swapping the account is easy. Basing it on AD credentials is... interesting. So far, I can have our users log into Enterprise Connect and then use those credentials (by methods that are not very secure, FYI) to create and move their account using the new info. It's messy, but hey. I've got about 10 days to get it into production so... As I progress and get things a little more stable I'd be happy to share... unless anyone here wants to help me pick through when I'm trying ;-)
