How to Bind to an Existing Directory Using Lion’s Server Admin - dummies

How to Bind to an Existing Directory Using Lion’s Server Admin

By John Rizzo

Instead of hosting Open Directory on your server, you can have Lion Server join an existing directory domain that exists on another server. This is called binding the server to the directory domain. In addition to using the Server app to join the server to the domain, you can use Server Admin to properly configure your server and join the Kerberos realm, if you don’t have an Open Directory master set up.

Follow these steps to bind a server to an Open Directory domain:

  1. In Server Admin, click the triangle next to your server and click Open Directory in the expanded list of services.

  2. Click the Settings icon and then click the Change button next to the current role to launch Open Directory Assistant.

    The Choose Directory Role screen appears.

  3. Select Connect to Another Directory, click Continue, and then click Continue again to confirm your choice.

    Open Directory Assistant informs you that the server will be able to connect to the directory.


  4. Click the Open Directory Utility button from Open Directory Assistant.

  5. Click the lock icon and authenticate as the local administrator.

  6. Select LDAPv3 from the Services tab and then click the pencil icon.


  7. Click the New button and enter the fully qualified hostname of the Open Directory master in the Server Name or IP Address field.

    By default, Secure Sockets Layer (SSL) is disabled.

  8. Click Edit.

  9. Make your desired changes in the dialog that appears.

    If desired, you can use the Security tab to enter the directory administrator username and password to create an authenticated bind. Otherwise, leave those fields blank for an anonymous binding.

  10. Click the Bind button and then click OK.

  11. Review the configuration, click OK, and then close Directory Utility.

After you bind a server to an Open Directory shared domain, you can configure services on the server that are available as options in Workgroup Manager. For example, if file sharing is configured on the connected server, you can now create a share point for home or group folders.