I’ve got two 10.3.9 OS X Servers, 1 OD Master and 1 OD Replica. These are serving 15 or so 10.3 & 10.4 desktop machines. Server01 is running DHCP which is configured to provide LDAP info to clients. Server Admin for DHCP >> LDAP is setup as follows:

Server Name: server01.mydomain.com
Search Base: cn=config,dc=mydomain,dc=com

I’ve checked all of the documentation and forum posts I can find on this matter and everything appears to be setup correctly.

– DNS is configured properly, forward and reverse resolution woks for both servers
– hostname command returns proper FQDN
– Config/ldapreplicas contains proper entries for read & write replicas
– Replication is working between server01 & server02
– DHCP is supplying clients with the correct LDAPv3 config for Directory Access

(on client)
— Use DHCP-supplied LDAP Server is checked
— Supplied Configuration Name = 127.0.0.1, Server Name or IP Address = server01.mydomain.com, LDAP Mappings = From Server, Enabled checkbox is checked
– Clients are able to authenticate to the OD

So here’s the problem… For failover purposes, Directory Services on the client machines is supposed to keep track of all OD master and replica servers in a replication group. After connecting to to OD it’s supposed to write this info to /Library/Preferences/DirectoryService/DSLDAPv3PlugInConfig.plist. However none of my client machines are doing that. In fact that file has not been modified in 2+ years on every machine I’ve checked. The DSLDAPv3PlugInConfig.plist file contains:

[code]

LDAP PlugIn Version
DSLDAPv3PlugIn Version 1.5
[/code]

No mention of any servers at all. This has been this way for a long time apparently. It obviously hasn’t been a huge problem since I’m just now looking into it. However I’d like to get this working properly so I have a better understanding of what to be aware of when/if I upgrade these servers.

Chris