(Ok, this isn't pretty now and won't be until the Fall semester starts - I'm no web designer and I have alot of other things to make work before I come back to pretty this up.)
Thanks to AJ Wright for his help, without which I could not have gotten this to work - all I'm doing here is documenting his hard work.
Preparations Section
First things first - you need to keep some things in mind - you might even consider them preparations.
This How-To assumes a few things.
1) You're familiar with OS X - and used to working with the guts of it to a certain extent. If you aren't, don't email or call me until well after the start of Fall '03 because I'm not much of an expert and don't have the time to share my miniscule amount of knowledge right now - that's why I'm doing this webpage.
2) You have a "generic user" on your lab machines already that either automatically logs on (like mine) or that you use to log the machines on. Mine is called, in a brilliant bit of originality, "test".
3) You need to know the "uid" of this generic user. Mine is 502. You can find this information by running Netinfo Manager. Ought to be obvious once you run it how to find that information.
4) You probably also want to configure some way to ensure that the home area of the generic user, in my case /Users/test, is restored periodically - like every time a user logs on. Otherwise you will have users changing the Dock, littering up the desktop, etc, and that's a Bad Thing. How to do that is the subject for another How-To, though, so I'm not going to address it here. If you want to know how to do that email me and again, once I have some free time, I will work up some documentation for that. I'm assuming if you're running labs, though, that you either already have done that or you spend a heckuva lot of time rebuilding your machines - so just go with what works for you right now. <g>
The Actual How-To
1. Run Directory Access (/Applications/Utilities/Directory Access)
2. Uncheck everything except LDAPv3 (unless you know for sure you need them)
3. Highlite LDAPv3 and click Configure (you may need to enter your admin password)
4. Uncheck "Use DHCP-supplied LDAP Server"
5. Click Show Options
6. Click New and type in the info listed below, focusing primarily on the Server Name (ldap.utk.edu) and LDAP Mappings - make sure it is custom. Make sure SSL is not selected (for now)
7. Click Edit
8. Fill out the Connection tab as shown below.
9. Under "Record Types and Attributes" click Add
10. Scroll down and select Users and click OK
11. Highlite Users and enter the "Search base" info as follows: ou=People,ou=Knoxville,dc=tennessee,dc=edu
12. With Users highlited click Add under "Record Types and Attributes. Select "Attribute Types" and add the following attribute types (you can cmd-click on these to select them all at once:
RealName
RecordName
UniqueID
PrimaryGroupID
NFSHomeDirectory
13. Select RealName and click Add under "Map to..." and enter "cn"
14. Select RecordName and add a mapping to "uid"
This may be different depending on your system. Refer to the "preparation section" for more info.
15. Select UniqueID and add a mapping to #502 (the number of the test user on your system)
16. Select PrimaryGroupID and add a mapping to #20
This may be different depending on your system. Refer to the "preparation section" for more info.
17. Select NFSHomeDirectory and add a mapping to #/Users/test
18. Click OK, then Click OK again
19. Select the Authentication tab.
20. Change Search to "Custom Path", click Add, and select UTK.
21. Click Apply and restart your Mac (you must do this) and you should be good to go.
