Additionally, I set up a DHCP server to serve the LDAP URL. With this setup, a Jaguar client will hook up to the network without any further work on the client required. All the network users, groups and shares are available.
This is a very nice out of the box experience. Getting there on the server side was a little harder, but with OSX Server it should be no pain at all.
Read the rest of the article for a short summary of what was done on the server side to get this working...
Server work:
- install openldap-2.0.25
- install dhcpcd-1.3.20
- set up your openldap server; either start with the stuff from padl.com or use the openldap installation on a Jaguar machine and NetInfo db as backend (haven't tried this) and export the contents as ldif.
- set up dhcpd to provide ldap information; in dhcp.conf:
option ldap-server code 95 = text;
option ldap-server "ldap://myldap.myplace.com/dc=myplace,dc=com"; - set up the mapping between DirectoryService and your LDAP schema. This can be done with Directory Access:
- on just one jaguar client machine add the ldap server manually
- edit the server and go to the mappings. Map to your liking
- now write the mapping to your ldap server
- disable the ldap server, as this was only needed to write the mapping to the ldap server
- on just one jaguar client machine add the ldap server manually
There is an OpenServer schema, which Apple is using under /etc -> openldap -> schema -> apple.schema. I had to modify it and remove all references to authAuthority to get it running. If you start a new ldap server, you might want to use this for a start.

