Ask if I need to supply more info, but running a small/medium network at work with bout 100 Windows 10 PCs with windows server 2012 r2 etc|
I want the Network manager to add 10 Macs to the network . Each should be able to accept roaming profiles / logins as the PCs do and be able to see selected shared drives. Being able to push updates / disk images to these machines would also be a tremendous benefit.
They say it can't be done, I say they're not trying hard enough! Has anyone had experience with this, is there a solution out there someone can point me to?
Adding Macs to Windows domain
BigOrkWaaagh 8,680 posts
Seen 6 hours ago
Registered 12 years ago
I have done it without the updates and disk images, I really don't think there's a way to do that because you can't boot to network with a Mac to deploy the image - as far as I know anyway. They are super finnicky about the time too, we often find them a few minutes out and they just refuse to log on so you have to log on locally and reset things.
This used to be my specialist subject when I were a lad in working in managed services.
Short answer is (or was) you can hook up your Mac's for single sign on in AD, no problem but you will get no real management function or roaming profiles.
You need a Mac Mini or something running macos server which you can use to create policies, updates and so on, for the Mac's. From within there there's an active directory connector tool which you can use to hook up to an AD domain.
It's been a good few years since I did it and things may have changed, so you may want to read up, but I can't imagine it will have changed that much.
Edited by nickthegun at 19:31:15 04-10-2018
There's an open source tool called Munki that apparently could do the job, but don't know enough about it...yet!
But thanks Big Ork and Nick the gun, I'm gonna take these ideas to them and hopefully a few more if they come in!
There was a bit of software we used when the client wouldn't spring for another server called AdmitMac, but it was as flaky as fuck.
I world definitely go the server route as it will save a lot of pissing about*
*again, old experiences
senso-ji 9,474 posts
Seen 6 hours ago
Registered 11 years ago
Where I work we ad macs to Active Directory, it all works fine except roaming profiles, but roaming profiles are a pain in the arse on windows, so not sure why you want to extend the pain to macs.
However, even though we authenticate using windows server and connect them to windows shared network drives, we use macs to push out software and updates. Look up Munki and Puppet - both free, open source tools that are amazing for managing and updating linux and macs.
Sometimes posts may contain links to online retail stores. If you click on one and make a purchase we may receive a small commission. For more information, go here.