SV: [unisog] MAC/PC Mixed Mode Envioronment

Patrik Blomqvist Patrik.Blomqvist at lhs.se
Tue Jan 11 08:45:35 GMT 2005


Admitmac and Active Directory is in use here!

/Patrik 


---------------------------------------------
 <(*¿*)> 
Patrik Blomqvist
Systemtekniker Ms/Cx
Konradsbergsgatan 3A
100 26 Stockholm
Tel: 08-737 98 12
Fax: 08-737 98 25
www.lhs.se/~patblo

 
-----Ursprungligt meddelande-----
Från: unisog-bounces at lists.sans.org [mailto:unisog-bounces at lists.sans.org] För Joe Little
Skickat: den 10 januari 2005 17:54
Till: UNIversity Security Operations Group
Ämne: Re: [unisog] MAC/PC Mixed Mode Envioronment

We are using MacOSX Server's Open Directory and Samba services with mixed success, and that is primarily due to the fact that we do not use ActiveDirectory as the backend authentication. I would definitely consider it in your configuration. Our issues mostly stem from the fact that we are more mixed environment, with a lot of Linux/UNIX systems.

There are also further AD-compatible services that can work with your scenario here:

http://www.padl.com/Products/XAD.html

On Jan 8, 2005, at 10:01 AM, Troy Gauthier wrote:

> We, as many other academic institutions, are currently looking into 
> the best practices for supporting a heterogeneous computing 
> environment. We have 75% PCs and 25% MACs. Currently they are al 
> authenticated through our W2K3 Server.
>
>
>
> I know that MAC OSX Panther has some built in features to allow for 
> Windows authentication and file sharing. How ever the access control 
> is not as robust as I would like (giving only options for OWNER, 
> GROUP, and EVERYONE on each object). Although it is my understanding 
> that this is inherited from its UNIX backend.
>
>
>
> I would love to know if anyone has implemented or has a best practices 
> for streamlining such an environment.
>
>
>
> 1.	Which Server solution should be used? Or should it be a combination
> W2K3/OSX Solution (since I'm pretty sure OSX can readily use MS Active
> Directory)
> 2.	Is there a common interface to manage the clients, perhaps a 3rd
> party solution?
> 3.	best practices to sucure and maintain both os's in such an
> environment.
>
>
>
> I know this is nothing new so that is why I am hoping a UNISOG 
> discussion on
> this can perhaps enlighten those of us that may be doing it the 
> complicated
> way.
>
>
>
> Cheers.
>
>
>
>
>
> Troy Gauthier
>
> Manager, Information Technology
> Museum of Anthropology
> University of British Columbia
>
>
>
>
>
>
> <winmail.dat>_______________________________________________
> unisog mailing list
> unisog at lists.sans.org
> http://www.dshield.org/mailman/listinfo/unisog

_______________________________________________
unisog mailing list
unisog at lists.sans.org
http://www.dshield.org/mailman/listinfo/unisog



More information about the unisog mailing list