Adding Macs to Windows domain

  • gammonbanter 4 Oct 2018 19:06:27 1,772 posts
    Seen 1 day ago
    Registered 12 years ago
    Ask if I need to supply more info, but running a small/medium network at work with bout 100 Windows 10 PCs with windows server 2012 r2 etc

    I want the Network manager to add 10 Macs to the network . Each should be able to accept roaming profiles / logins as the PCs do and be able to see selected shared drives. Being able to push updates / disk images to these machines would also be a tremendous benefit.

    They say it can't be done, I say they're not trying hard enough! Has anyone had experience with this, is there a solution out there someone can point me to?
  • BigOrkWaaagh 4 Oct 2018 19:12:21 8,680 posts
    Seen 6 hours ago
    Registered 12 years ago
    I have done it without the updates and disk images, I really don't think there's a way to do that because you can't boot to network with a Mac to deploy the image - as far as I know anyway. They are super finnicky about the time too, we often find them a few minutes out and they just refuse to log on so you have to log on locally and reset things.
  • nickthegun 4 Oct 2018 19:29:01 77,851 posts
    Seen 7 hours ago
    Registered 14 years ago
    This used to be my specialist subject when I were a lad in working in managed services.

    Short answer is (or was) you can hook up your Mac's for single sign on in AD, no problem but you will get no real management function or roaming profiles.

    You need a Mac Mini or something running macos server which you can use to create policies, updates and so on, for the Mac's. From within there there's an active directory connector tool which you can use to hook up to an AD domain.

    It's been a good few years since I did it and things may have changed, so you may want to read up, but I can't imagine it will have changed that much.

    Edited by nickthegun at 19:31:15 04-10-2018
  • gammonbanter 4 Oct 2018 19:53:42 1,772 posts
    Seen 1 day ago
    Registered 12 years ago
    There's an open source tool called Munki that apparently could do the job, but don't know enough about it...yet!
  • gammonbanter 4 Oct 2018 19:55:57 1,772 posts
    Seen 1 day ago
    Registered 12 years ago
    But thanks Big Ork and Nick the gun, I'm gonna take these ideas to them and hopefully a few more if they come in!
  • nickthegun 4 Oct 2018 20:00:59 77,851 posts
    Seen 7 hours ago
    Registered 14 years ago
    There was a bit of software we used when the client wouldn't spring for another server called AdmitMac, but it was as flaky as fuck.

    I world definitely go the server route as it will save a lot of pissing about*

    *again, old experiences
  • senso-ji 4 Oct 2018 21:54:44 9,474 posts
    Seen 6 hours ago
    Registered 11 years ago
    Where I work we ad macs to Active Directory, it all works fine except roaming profiles, but roaming profiles are a pain in the arse on windows, so not sure why you want to extend the pain to macs.

    However, even though we authenticate using windows server and connect them to windows shared network drives, we use macs to push out software and updates. Look up Munki and Puppet - both free, open source tools that are amazing for managing and updating linux and macs.
Log in or register to reply

Sometimes posts may contain links to online retail stores. If you click on one and make a purchase we may receive a small commission. For more information, go here.