Open migration to Active Directory directory Windows vs Mac
OK, so I help my old school to their IT needs, because they do not have a person hired for this role.
Currently, they have a center where the staff use computers based on Windows 10 10 (systems of Core 2 Duo, especially assembled; all about 3 years) connected to a Windows 2008 Server (from Dell; about a year). As the institution wishes to expand the computers available to their staff (from 90), my suggestion was to move to Mac (probably 11 '' MBAs), with a MacBook Pro 15 "is the duty of the server.
This migration can be done in one shot and would happen progressively (probably MBAs purchased each year for the next four years, 20-25).
The current configuration is that there is a local + Admin user configured on each of the 10 Windows PC - based, with all personnel having access to the user not local administrator.
In order to facilitate the management, I would like to move to the logons on the network, as we begin our migration to a Mac OS environment.
Should we configure AD on Windows Server and bind it as MBAs, and when to buy us, with the final being the MBP 15 "for server-buying functions, or is it possible we can get the MBP 15" now and use Open Directory and binding the existing 10 10 Windows-PC with the macOS Server?
NOTE: The school operates Google Apps, and all employees have a Google Apps account with a custom domain name.
You can't link PCs to Open Directory without using 3rd - Party (page). In addition, depending on the operating system will not work reliable? You'd have to trial it first. Beyond bond and provide a home folder there will be nothing else. No management, no policies etc Open Directory to your PC.
Support way to achieve this is to use Active Directory and complete with OD to manage your estate of mac only. Again, you can apply GPOS for Mac without 3rd - Party help which can be very expensive.
Not that it's something that you would consider - although you could do? It may be preferable to go ' all the mac "If your intention is to switch to Mac OS. If your PC using the software that is available only for PCs consider using virtual machines on your Mac to keep this aspect of the school.
My 2 p
Tags: Servers and Enterprise Software
Similar Questions
-
Hello experts,
I wonder if it's possible/supported to join the vCenter Server Appliance for a small business 2011 Active Directory Windows Server (basically a Microsoft Windows Server 2008 R2 Active Directory).
Any help will be greatly appreciated.
Thank you and best regards,
Massimiliano
You can... However, it would be, at least in what we saw, more easy to reach the device in the announcement via the CLI
-
Connection error Active Directory Windows Server R2 2012
Hello
That's my problem, I have two servers both running Windows Server R2 Datacenter 2012 I installed AD - DS on one of them and allow the installation to configure the DNS settings, this server is also a DHCP server. On the server I want to connect to AD, I address DNS pointing to my AD server which is 192.168.1.60 and it's also getting an IP address from the DHCP server. But it connects to Active Directory, when I try the ping command on the domain name which is yewman.email he's trying pings an external IP address (which is my public ip address because I also have the yewman.email of real estate) how to fix this? It's the mistake of connection AD:
Note: This information is intended for a network administrator. If you do not have your network administrator, notify the administrator that you have received this information, which has been recorded in the C:\Windows\debug\dcdiag.txt file.
The following error occurred when DNS was questioned about the resource record (SRV) service location used to locate an Active Directory (AD DC) domain controller for the domain "yewman.email":
The error was: "the DNS name does not exist."
(0x0000232B RCODE_NAME_ERROR error code)The query was for the SRV record for _ldap._tcp.dc._msdcs.yewman.email
Common causes of this error are:
-The DNS SRV records to locate an AD DC for the domain are not registered in DNS. These records are automatically saved with a DNS server when an AD domain controller is added to a domain. They are updated by the AD DC at set intervals. This computer is configured to use DNS servers with the following IP addresses:
192.168.1.60
-One or more of the following areas do not include delegation to its child zone:
yewman.email
E-mail
. (the root zone)This issue is beyond the scope of this site (for consumers) and to be sure, you get the best (and fastest) reply, we have to ask either on Technet (for IT Pro) or MSDN (for developers)* -
Replication Active Directory Windows or not
Hi guys
Any recommendation when replicating Active Directory of Windows?
Do you recommend using Vmware replication for this?
or is it better to deploy a second ad in the secondary instead of going through all the work site when you restore a replica a VM AD in this case?
If the replication is the way to go do you recommend Guest OS standby (VSS)? or normal replication no VSS does support?
Thank you very much
someone knows when to use VSS or not in general?
Thank you very much
Hello
Here is the statement of the document Vmware VMware vCenter Site Recovery Manager 5.1 Documentation Library link
Protection and recovery of Active Directory domain controllers
Do not use SRM to protect Active Directory domain controllers. Active Directory provides its own mode of technology and the restoration of the replication. Use the Active Directory replication technology and restore mode technology to manage situations of recovery after a disaster.
Concerning
Mohammed Emaad
-
Active directory 2003 migrate to active directory 2008
Hello, I have an AD2003 field to many problems. We also have Exchange 2007. We want to create a new forest area AD 2008 in the same IP subnet and install Exchange 2010. Can I create a new forest of domain in the same IP subnet? What is the best way to create this new domain, and then migrate the workstation to the new domain and install all the other cool applications from scratch?
Hello
Your Windows question is better suited in the TechNet forums. Please post your question in the TechNet forums. You can follow the link to your question:
http://social.technet.Microsoft.com/forums/en/winserverDS/threads -
I'm going to migrate users and groups through ADMT.
BONES of the server in the source and target domains are Windows server 2012 R2.
The source operating system language setting is Japanese, on the other hand that of target domain is English.
Do I need to install the language pack for the Japanese in the target domain to avoid encoding (mojibake) probrem?Thank you
Kazuo Ieiri
This issue is beyond the scope of this site (for consumers) and to be sure, you get the best (and fastest) reply, we have to ask either on Technet (for IT Pro) or MSDN (for developers) -
Active Directory Windows Server replication?
Hi all
I'm currently experimenting at home with a second server for a company that has their computers on our part. What I want is the second domain controller to be able to continue to operate the field, (all users can access their profile and documents), if the first domain controller fails. I installed windows on my second domain controller and run dcpromo.exe. I have it set up as a second domain controller. Some how I don't think that this will continue to run correctly the field to cause where the profiles are stored (on server1)I have to install the DFS replication from Server Manager and replicate profiles more on server2? So should I redirect the path of documents to \\domainname.local\UsersDoc?Any help in this matter would be appreciated!Hello
Your question of Windows 7 is more complex than what is generally answered in the Microsoft Answers forums. It is better suited for the public on the TechNet site. Please post your question in the following link for assistance:
http://social.technet.Microsoft.com/forums/en-us/winservergen/threads
-
Lightroom gray, open in the dock, but no window. Mac Yosemite
I jump on the start and then disappears
Go to the Support/Adobe app.
Looking for two SLCache & SLStore folder.
Trash folder
Try again the Lightroom.
If the above steps not useful, go to the Application folder and uninstall/Trash the Lightroom
Restart the Machine
Re-install.
Kind regards
~ Mohit
-
Active directory Migration from Windows Server 2003 to Windows server 2012
Hi all
Currently, I use the windows Server 2003 R2 Enterprise SP2 with AD, DNS and DHCP server. I want migration of these services to new fresh Windows Server 2012 R2 Standard machine. I migrate to active directory after this statement: http://social.technet.microsoft.com/wiki/contents/articles/22249.migrate-active-directory-from-windows-server-2003-r2-to-windows-server-2012-r2.aspx, he gets with success, but the IP configuration on the source server not migrated to the destination server. So, all of you know that why the source server IP configuration cannot migrate to the destination server?
Help please give me an advice.
Thank you
Hello
Post your question in the TechNet Server Forums, as your question kindly is beyond the scope of these Forums.
http://social.technet.Microsoft.com/forums/WindowsServer/en-us/home?category=WindowsServer
TechNet forums:
https://social.technet.Microsoft.com/forums/en-us/home
MSDN forums:
https://social.msdn.Microsoft.com/forums/en-us/home
See you soon.
-
Can I use Radius AAA on an ASA 5505 to block outbound access by user name of users in a group? Thank you
Hello
I think you might be interested on the verification of the new feature of 8,4 ASA: Firewall identity
Identity of firewall
Generally, a firewall is not aware of the identity of the user and, therefore, impossible to implement identity-based security policies.
The identity of the ASA firewall provides more granular control of access based on the identity of users. You can configure access rules and security policies based on the user and groups rather than name names by source IP addresses. The ASA applies security policies based on an association of IP addresses to the Windows Active Directory connection information and reports on the events based on the names of mapped instead of IP addresses of network users.
Identity firewall integrates with the Active Directory window in conjunction with an external Agent of Active Directory (AD) that provides the mapping of the real identity. The ASA uses Windows Active Directory as a source to retrieve the identity information of the current user for specific IP addresses.
In a company, some users log on the network using other authentication mechanisms, such as authentication with a web portal (passage of proxy) or by using a VPN. You can configure the firewall of identity to allow these types of identity-based authentication under access policies.
We introduced or modified the following commands: user-identity enable user-default-domain identity, user-identity domain, logout-probe user-identity, user-identity inactive-user-timer, user-identity poll-import-user-group-timer, user-identity netbios-response-fail action, user-identity user-not-found, user-identity ad-agent-down action, user-identity action mac-address-mismatch, user-identity domain-controller-down action, user-identity ad-agent active-user-database, user-identity ad-agent hello-timer, user-identity ad-aaa-server agent, user-identity update user import-, user-identity static user, ad-agent-mode, dns domain-lookup, dns poll-timer , dns expire-entry-timer, user of the object-group, show the identity of the user, see the dns, Configure clear - user identity, clear dns, debug the identity of the user agent test ad-aaa-Server.
Please find the Configuration Guide Chapter referring to the firewall attached identity.
Hope that does you in the right direction.
Kind regards.
-
Setting of Windows Active Directory LDAP in OBI
Hello
I wonder if someone has an experience of connection authentication active directory windows in BI of Oracle 11 g 11.1.1... Release. I have set up the LDAP with Microsoft AD (2003 Server) Protocol but I can connect with the main single user (who is a member of the ad group), but I can't connect through any other user in this group.
I appreciate any advice/help in this regard.Hello
Not this one.please check it you LDAP team and get thegood user and details of group objects. If you have permission you are LDAp server you find the user and group
and then just right click and select object tab here you could see * (look at the canonical name of the object) * this path of the particular user structure... also you can generate the file LDIF.txt and find you're object.
Thank you
Deva
-
MMC.exe APPCRASH
When I try to open Active Directory users and computers in Windows Server 2008 Standard, I get the error message below. Kindly help
Problem event name: APPCRASH
Application name: mmc.exe
Application version: 6.0.6001.18000
Application timestamp: 47918d 09
Fault Module name: KseAdm.dll
Fault Module Version: 6.0.1262.1064
Timestamp of Module error: 49426cbb
Exception code: c0000005
Exception offset: 0004 849 d
OS version: 6.0.6001.2.1.0.272.7
Locale ID: 1033
Additional information 1: fd00
More information 2: ea6f5fe8924aaa756324d57f87834160
Additional information 3: fd00
Additional information 4: ea6f5fe8924aaa756324d57f87834160
Hello
The question you posted would be better suited in the TechNet Forums. I would recommend posting your query in the TechNet Forums:
http://social.technet.Microsoft.com/forums/en-us/category/WindowsServer
-
Migration of the domain controller Active Directory of windows 2000 server to a Server 2008.
I have an old machine that is running Windows 2000 server and it's our only one domain controller in a mixed 2000/2003/2008 server environment. I would like to move to one of the servers 2008 Active Directory and make the PDC and withdraw from the old box of 2000.
I saw a sea of documentation about the updated/move ActiveDirectory, but no clear examples of what I need to accomplish.
Can I do a dcpromo on a 2003 server, synchronization of the 2000 box, retire the 2000 Server, then dcpromo th 2008 Server 2003 Server? I know this may seem simplistic to a complicated procedure, but I have not really found anything to support...
A simple link to a procedure taken care of step by step would be great.
Thanks for all the ideas in advance.
MikeThe Forum Windows Server would be the appropriate forum for your inquiry.
-
After about 3 weeks working with Dell Inspiron 14 R and print with HP laserjet 1020, without problem, now I have a problem: when I try to "find the printer (in MS Word, MS PowerPoint, MS Excel for example) I get the message: Active Directory Domain Services is currently unavailable.
I am running Windows 7 Home premium; and I'm the user.
I try to remove and reinstall hp laser jet 1020 once again, but the problem still exist.
After I opened the menu devices and printers, and then click the Hp Laser Jet 1020, the category of this printer icon: 'unknown '.
How can I make the available ADDS?
Try this weird cure:
Just open Notepad, go get a printer and add the printer from here.
I can now print all programs.
He worked for others; like I said, weird!
-
Active Directory users & computers does not open in MS Server 2003 Enterprise 64-bit?
Hello
Active Directory users & computers does not open in MS Server 2003 Enterprise 64-bit?
Hello
Post your question in the TechNet Server Forums, as your question kindly is beyond the scope of these Forums.
http://social.technet.Microsoft.com/forums/WindowsServer/en-us/home?category=WindowsServer
See you soon.
Maybe you are looking for
-
I can't enter my mozilla account
I want to put my mozilla bar, as I have in my desktop computer thank you
-
Drop in severe performance on extended usage - Satellite A200-1AX
Hello worldI have problems with my Satellite A200 about long (3-4 + hrs) periods of use. After this period, the machine knows performance progressive, starting from piercing screams while playing sounds to complete unable to play videos or music, run
-
Which of your desk tops less expensive model would come with power point?
-
How can I activate my wifi on the use of cmd card?
How can I activate my wifi on the use of cmd card?
-
A single PDF can extract information from PDF one another?
I'm considering the purchase of Acrobat Pro XI. Before I do, I just check on a particular ability (obscure).For each person in my organization, I have a PDF document with a lot of information (including their name and title). All these PDF files are