Greetings,

I have a directory I set up for a client that uses OpenLDAP for single sign-on for several web applications and email, but I’m hoping to get it to work for their computer lab as well (All OS X El capitan machines).

It’s unclear to me whether I truly need to add the apple/samba schemas to OpenLDAP to appease OS X,  or whether I can map more standard attributes from the cosine etc schema to whatever OS X is looking for. 

I’ve read many blogs posts and have yet to find documentation that I think covers all the bases, including these:
http://pig.made-it.com/ldap-mac.html
http://vuksan.com/linux/mac-os-x-ldap/openldap-mac-os-x-authentication.html
https://hermanbanken.nl/2011/01/22/openldap-server-mac-osx-clients/
http://www.hawaii.edu/askus/1625

It seems like OS X changes may have rendered some of the existing blogs/documents out there outdated.


We are willing to hire someone to help with getting this set up.



Regards,

Kevin Long