Creating Mac Domain + joining to AD
Ok ladies and gents, I've spent now the best part of 3 hours reading just about everything I can stand by apple and multiple other forums about how to setup what I want, and the majority is either out of date, unhelpful, or just so full of waffle that it was of no use.
I'm hoping someone here can assist, and in which case I'll help in writing up a new guide on what to do/how to do it in one place without, as one place put:
"If you don't know what this is, then your probably out of your depth anyway."
(yeah, a guide actually told me that.....)
-Windows 2003 Domain (1x 2k3 server + 1x 2k8r2) both running in 2003 mode, forest domain = 2003 mode.
-NAS raid box (Buffalo Terrastation) connected via iSCSI to the 2k3 box, hosting all shares including user and data shares.
-Cisco networking gear: Cisco switches and wireless controller (vlans for server, curriculum pc's, and wireless. Also an admin vlan, hoping to decom that soon)
-Windows workstations (mixes of XP, Vista and Windows 7. Considering/hoping to roll up to windows 7 on all machines within the next 18 months.)
-Brand new Mac Mini server running Lion OS X + Server App
-16x Macbook Pro's running Lion OS X
-20 Ipad 2's running iOS 5
-30+ Ipad 1's running iOS 5
What I want:
-For users of the windows domain to be able to logon to any machine, windows or mac alike.
-File shares on the NAS to be accessible by both mac's and windows machines alike.
-Network based User home directories/profiles.
-Shared printing (might have some compatibility issues with the large network copier/printer monstrocity and the apple gear, don't know yet)
-Management of Mac images + Ipad layouts and Apps for both devices centrally from the Mac server.
-(optional) considering using the mac server for handling a new email, calendar and ideally collaboration/web file access system, but not sure how the hell it works, never used it before, no idea what it does frankly. This would need to be completely open to multiple platforms and devices.
My initial thought, was to run the apple's in their own domain, and simply setup a trust between them for sharing login's/printing/file shares. This isn't as straight forward as I had hoped, as there seems to be 8,000 different ways of connecting open directory to AD and the configuration of user profiles to go with it.
From what I can tell, this is basically the magic triangle layout, which I have no idea if it's still valid; everything I can find on this setup seems to refer to OSX 10.4/10.5/10.6, and have not yet found anything that actually says how to do it in 10.7, or if 10.6 works the same way, what are the differences etc etc.
I've also read about issues with the '.local' domain extension, which I've currently got setup on my windows domain.
I'm pretty good with MS side of things, I know my way around AD pretty well (I've done the MCTS on it, and found it a little boring in the most part having done a lot of it just from working with AD for 6+ years). I can even get around linux if I keep a guide handy on a few of the commands (too many years of using dos commands, I get mixed up).
But I'm afraid I'm a complete novice at Apple, no idea really what it or I can do and cannot at the server/config side, though I have used MAC's as an end abuser a few times.
If you have some guides that would help here, please link them.
So far I've found these that help to varying degree's:
http://manuals.info.apple.com/en_US/...dmin_v10.6.pdf (ok but waffles a lot, it's more like a thesis on server admin than a guide on how to use it.)
http://manuals.info.apple.com/en_US/...dmin_v10.6.pdf (similar to above, a bit waffly, but some good info here if you are technical enough. You pretty much have to read it all, you can't really skip to later points as I kept being referenced to earlier bits)
http://help.apple.com/advancedserveradmin/mac/10.7/# (similar to the above stuff, but less waffly, still not quite a guide, but shows examples and takes you through the layouts and the different services clearly)
Apple Magic Triangle Setup with Windows File Server backed Portable Home Directories. | Copious Communications (magic triangle setup. Assumes higher than normal technical knowledge, and frankly unhelpful on a few places where it skips over stages that can cause confusion)
http://manuals.info.apple.com/en_US/...mage_v10.6.pdf (not read this through yet, but suspect it’s similar to above with a lot of waffle to tell not a lot)
If you can assist with any of this, tips, tricks, suggestions etc please do.
I am heavily documenting everything I do here, so will write up anything I do and hopefully produce a proper guide at the end.