Can somebody explain the correct way of running a system where mac users can login using AD accounts, but we can manage the AD groups mac preffs.
We are running 10.4.2 server and clients.
What I have done so far is this:
Setup the server as a OD Master and created a usergroup called TestGroup. Server is NOT bound to AD.
The clients are then bound to AD and OD.
The plan then was to use one client and install the admin tools, login using AD, use WM and connect to 127.0.0.1, dragging AD users into my test OD group.
I have come up with 2 big problems though. First the clients will only log into whatever is at the top of the authentication list in Directory Access. I have AD at the top at the mo0ment, and cant login using OD, as soon as I change them round, I can with OD, not AD.
So I made AD the top, and I can log in fine using AD. The next problem is that when I try to browse the LDAP in WM to drag AD users into my OD group, it comes up with an error message.
Anybody else got this to work. I am getting verry worried now as we dont have much time to get this running.