Uses of Directory Data
Open Directory makes it possible to consolidate and maintain network information
easily in a directory domain, but this information has value only if application and
system software processes running on network computers access the information.
Here are some ways in which Mac OS X system and application software use
directory data:
 Login: Workgroup Manager can create user records in a directory domain, and these
records can be used to authenticate users who log in to Mac OS X computers and
Windows computers. When a user species a name and a password in the Mac OS X
login window, the login process asks Open Directory to authenticate the name
and password. Open Directory uses the name to nd the user’s account record in a
directory domain and uses other data in the user record to validate the password.
 Folder and le access: After logging in, a user can access les and folders. Mac OS X
uses other data from the user record to determine the user’s access privileges for
each le or folder.
 Home folders: Each user record in a directory domain stores the location of
the user’s home folder. This is where the user keeps personal les, folders, and
preferences. A user’s home folder can be located on a computer the user always
uses or it can be located on a network le server.
 Automount share points: Share points can be congured to automount (appear
automatically) in the /Network folder (the Network globe) in the Finder windows
of client computers. Information about these automount share points is stored in a
directory domain. Share points are folders, disks, or disk partitions you have made
accessible over the network.
 Mail account settings: Each user’s record in a directory domain species whether
the user has mail service, which mail protocols to use, how to present incoming
mail, whether to alert the user when mail arrives, and so forth.
 Resource usage: Disk, print, and mail quotas can be stored in each user record of
a directory domain.
 Managed client information: The administrator can manage the Mac OS X
environment of users whose account records are stored in a directory domain. The
administrator makes mandatory preference settings that are stored in the directory
domain and override users’ personal preferences.
 Group management: In addition to user records, a directory domain also stores
group records. Each group record aects all users who are in the group. Information
in group records species preference settings for group members. Group records
also determine access to les, folders, and computers.
22 Chapter 1 Directory Services with Open Directory
Comments to this Manuals