Apple MAC OS X SERVER 10.6 Getting Started

4 (1)

Mac OS X Server

Getting Started

Version 10.6 Snow Leopard

KKApple Inc.

© 2009 Apple Inc. All rights reserved.

The owner or authorized user of a valid copy of

Mac OS X Server software may reproduce this publication for the purpose of learning to use such software. No part of this publication may be reproduced or transmitted

for commercial purposes, such as selling copies of this publication or for providing paid-for support services.

Every effort has been made to ensure that the information in this manual is accurate. Apple Inc. is not responsible for printing or clerical errors.

Because Apple periodically releases new versions and updates to its software, images shown in this book may be different from what you see on your screen.

Apple

1 Infinite Loop

Cupertino, CA 95014 408-996-1010 www.apple.com

The Apple logo is a trademark of Apple Inc., registered in the U.S. and other countries. Use of the “keyboard” Apple logo (Option-Shift-K) for commercial purposes without the prior written consent of Apple may constitute trademark infringement and unfair competition in violation of federal and state laws.

Apple, the Apple logo, AirPort, AirPort Express, AirPort Extreme, Apple TV, Bonjour, FireWire, iCal, iChat, iPod, iSight, iTunes, Keychain, Keynote, Leopard, Mac, Mac OS,

Macintosh, Panther, Power Mac, QuickTime, Safari, Tiger, Time Capsule, Time Machine, Xcode, Xgrid, Xsan, and Xserve are trademarks of Apple Inc., registered in the U.S. and other countries. Apple Remote Desktop, Finder, iPhone, Snow Leopard, and Spotlight are trademarks of

Apple Inc.

Adobe and PostScript are trademarks or registered trademarks of Adobe Systems incorporated in the U.S. and/or other countries.

Intel, Intel Core, and Xeon are trademarks of Intel Corp. in the U.S. and other countries.

PowerPC™ and the PowerPC logo™ are trademarks of International Business Machines Corporation, used under license therefrom.

UNIX® is a registered trademark of The Open Group.

Other company and product names mentioned herein are trademarks of their respective companies. Mention of third-party products is for informational purposes only and constitutes neither an endorsement nor a recommendation. Apple assumes no responsibility with regard to the performance or use of these products.

034-4940-A/2009-08-01

Contents

7Chapter 1:  Introducing Mac OS X Server

8What’s New in Snow Leopard Server

18 Snow Leopard Server in Small Business

24 Snow Leopard Server in a Workgroup

26Basic Applications and Utilities

27Advanced Tools and Applications

29Chapter 2:  Getting Ready for Mac OS X Server

30What You Need to Install Snow Leopard Server

31Preparing Your Network and Internet Connection

39 Deciding How to Manage Users and Groups

42 Deciding Which Basic Services to Provide

46 Providing More Services

49 Preparing Disks for Mac OS X Server

51 Preparing an Administrator Computer

53 Chapter 3:  Installing Mac OS X Server

55 Installing Locally

57 Installing Remotely

3

63 Chapter 4:  Setting Up Mac OS X Server

63 Setting Up a Server Locally

65 Setting Up a Server Remotely

69 After Setting Up a Server

73Chapter 5:  Managing Your Server

74Using Server Preferences

75Using the Server Status Widget

77Connecting Server Preferences to a Remote Server

78Backing Up and Restoring the Server

79Keeping Snow Leopard Server Up to Date

81Chapter 6:  Managing Users

82About User Accounts

84 About Administrator Accounts

88Setting Up Users and Groups Management

89Adding a User Account

91 Importing Users

93 Importing Groups of Users Automatically

95Deleting a User Account

96Changing a User’s Account Settings

97Changing a User’s Contact Information

98Controlling a User’s Access to Services

99Changing a User’s Group Membership

4 Contents

100Customizing the Welcome Email

101Customizing the Server Invitation Email

102Customizing the Group Invitation Email

105 Chapter 7:  Managing Users’ Computers

105 Setting Up Users’ Macs Automatically

113 Setting Up Users’ Computers Manually

119Chapter 8:  Managing Groups

120Creating a New Group

122Adding or Removing Members of a Group

123Adding or Removing External Members of a Group

125 Chapter 9:  Customizing Services

125 Managing Address Book Service

127 Managing File Sharing Service

130 Managing iCal Service

132 Managing iChat Service

134 Managing Mail Service

138 Managing Web Services

145 Managing VPN Service

152Customizing Services Using Advanced Applications

153Chapter 10:  Managing Server Information

154Managing Server Information

Contents 5

158 Using an SSL Certificate

162Managing Users’ Backup Storage

163Changing Security Settings

167 Checking Server Logs

169 Monitoring Server Graphs

171Chapter 11:  Learning More

171Using Onscreen Help

172Getting Documentation Updates

173Getting Additional Information

175 Appendix:  Services and Ports

179 Index

6 Contents

Introducing Mac OS X Server

1

 

 

 

Mac OS X Server has everything you need to provide standards-based workgroup and Internet services, making it ideal for education, small businesses, and large enterprises.

Mac OS X Server version 10.6 Snow Leopard combines intuitively simple Macintosh ease of use with a mature, stable UNIX foundation. It provides an extensive array of services that support Macintosh, Windows, and UNIX client computers over a network.

With Snow Leopard Server, small organizations and workgroups without an IT department can take full advantage of the benefits of a server. Even a nontechnical user can set up and manage Snow Leopard Server for a group. Other users in the group can automatically configure their Macs to get services from Snow Leopard Server. Snow Leopard Server has advanced configuration options and management tools for

IT professionals as well.

7

What’s New in Snow Leopard Server

Mac OS X Server v10.6 Snow Leopard offers major enhancements in several key areas:

ÂÂ 64-bit computing

ÂÂ OpenCL

ÂÂ Podcast Producer 2 ÂÂ Wiki Server

ÂÂ iCal Server 2

ÂÂ Address Book Server ÂÂ Mail Server

ÂÂ Mobile Access Server

64-Bit Operating System

To accommodate the enormous amounts of memory being added to today’s servers,

Snow Leopard Server has a 64-bit operating system to support up to a theoretical

16 TB of RAM. With more RAM, server applications can use more physical memory and consequently run faster. In addition, the 64-bit operating system dramatically improves the total number of simultaneous system processes, threads, and network connections that the server can use.

Snow Leopard Server supports the latest 64-bit technology on today’s Xserve and

Mac Pro systems while maintaining 32-bit support for other systems. On all systems, Mac OS X Server can run 64-bit and 32-bit applications concurrently, address large amounts of RAM, and access 64-bit file systems and math and image libraries.

8

Chapter 1 Introducing Mac OS X Server

 

 

OpenCL

OpenCL (Open Computing Language), allows developers to efficiently tap the vast gigaflops of computing power in the graphics processing unit (GPU).With GPUs approaching processing speeds of a trillion operations a second, they’re capable of considerably more than just drawing pictures. Unlike other server operating systems,

Mac OS X Server is specifically designed to use the GPU for graphics rendering, podcast effects and transitions, and drawing the user interface for Mac OS X Server itself. OpenCL lets developers apply GPU power in high-performance computing applications like genomics, video encoding, signal processing, and simulations of physical and financial models.

Podcast Producer 2

Podcast Producer 2 simplifies the process of recording content, encoding, and publishing high-quality podcasts for playback in iTunes and on iPod, iPhone, and Apple TV. Users control recording of lectures, training, presentations, or any other audio and video projects. Podcast Producer then automatically encodes and publishes the recording based on your workflow.With Snow Leopard and Snow Leopard Server, Podcast Producer 2 gains an easy-to-use graphical workflow editor, dual video recording, Podcast Library, a web-based application to control recording, and optional failover configuration for high availability.

Chapter 1 Introducing Mac OS X Server

9

 

 

10

Chapter 1 Introducing Mac OS X Server

 

 

The graphical workflow editor, Podcast Composer, leads you through the steps of defining video-based Podcast Producer workflows.You graphically choose the intro, title, and exit videos; specify different transitions and effects between videos; and view real-time titles and effects.You can add watermarks and overlays to your Podcast content.Your workflow also specifies encoding formats and targets distribution via wiki, iTunes U, or Podcast Library for your finished podcast.

Podcast Producer 2 lets users record dual video sources using the Podcast Capture application on a Mac or the new Podcast Capture web application on a Mac, iPhone, or Windows computer. Apple provides several picture-in-picture templates, or you can create your own.

Podcast Library lets your server store podcasts and deliver them to viewers through

RSS and Atom feeds. For example, your podcasts can feed directly from your server through iTunes U. Atom feeds simplify distributing multiple podcast versions, such as iPod, Apple TV, and audio only, because each Atom feed can contain multiple versions and the viewer’s playback device automatically picks the best version.

Podcast Producer 2 and the services it relies on, including Xgrid, can be configured for high availability by setting up failover servers and using an Xsan file system.

Wiki Server 2

Mac OS X Server includes web services that make it easy for users to create and distribute information through shared wiki websites. Users can easily view, search, and edit wiki content in their web browsers. They can add, delete, edit, and format wiki content naturally—without knowing markup codes or special syntax. With a few clicks, they can attach files and images, publish to podcasts, assign keywords, and link to other wiki pages or other websites.

Chapter 1 Introducing Mac OS X Server

11

 

 

Snow Leopard Server provides each wiki user with a convenient wiki portal, called

My Page, for viewing and creating wikis and blogs, using web calendars, tracking wiki updates, and accessing webmail.

Mac OS X Server’s single sign-on authentication means a user only needs to enter a name and password once to access all private wikis. Users don’t need administrator passwords to create public and private wikis, and the creator of a private wiki controls access to it.

12

Chapter 1 Introducing Mac OS X Server

 

 

Apple MAC OS X SERVER 10.6 Getting Started

Users can search across multiple wikis.They can also see Quick Look previews of wiki attachments in the browser window, even if they don’t have applications that open the attachments.

Chapter 1 Introducing Mac OS X Server

13

 

 

Snow Leopard Server also has new wiki and blog templates optimized for iPhone.

Besides being better able to view wiki and blog pages, iPhone users can now track wiki page changes and add comments and tags.

When users create events in personal and group web calendars, Snow Leopard Server lets them invite other users and assists by looking up invitees and showing their availability. Snow Leopard Server also allows multiple calendars per user and per group.

14

Chapter 1 Introducing Mac OS X Server

 

 

iCal Server 2

iCal Server makes it easy to share calendars, schedule meetings, and coordinate events within a workgroup, a small business, or a large organization. Colleagues can check each other’s availability, propose and accept meetings, book conference rooms, reserve projectors, and more. iCal Server sends meeting invitations with agendas or to-do lists, and tabulates replies.

Chapter 1 Introducing Mac OS X Server

15

 

 

Snow Leopard Server adds push notifications, the ability to email event invitations to non–iCal Server users, integration with Calendar on iPhone, and a web application that lets users access their calendars from any computer with a web browser. iCal Server also integrates with the iCal application in Mac OS X and third-party calendar applications that support the standard CalDAV protocol.

Address Book Server

Snow Leopard Server introduces Address Book Server, which allows users to find contact information in an address book across multiple computers without the schema limitations and security issues associated with LDAP.

16

Chapter 1 Introducing Mac OS X Server

 

 

Users can view and add contact information in a server-based address book by using the Address Book application on any Mac with Snow Leopard. Address Book Server can also allow Snow Leopard users to find public contact information in directory servers that your server is connected to. Users of other computers can access address books on your server using third-party applications that are compatible with the CardDAV open standard.

Mail Server

Snow Leopard Server boosts its Mail Server performance, reliability, and scalability with a new, open standards–based engine designed to handle thousands of simultaneous connections. In addition, Mail Server is enhanced to include push email, server-side email rules, and vacation messages.

Mobile Access Server

Snow Leopard Server has a Mobile Access Server that can give mobile users secure access to your private services without inconvenient VPN connections. You specify whether users can access private mail, web, iCal, and address book services. Users connect to the reverse proxy Mobile Access Server on the Internet, and it makes secure connections on their behalf to services that Mac OS X Server provides on your private network.

Chapter 1 Introducing Mac OS X Server

17

 

 

Snow Leopard Server in Small Business

A single server with Mac OS X Server can provide all the services needed by computer users in a small business. The server and users’ computers are all connected to a private local network that shares a DSL or cable Internet connection.The Internet connection can be shared through an AirPort Extreme Base Station (802.11n) or a Time Capsule, through a router from the Internet service provider (ISP) or computer retailer, or through the server.The next few pages illustrate and describe these configurations.

Single Server with AirPort Extreme

The following illustration shows Mac OS X Server and users’ computers and iPhones sharing an Internet connection through an AirPort Extreme Base Station (802.11n).

The base station connects to the Internet through a DSL modem or cable modem and connects to the local network to share the Internet connection with the server and users’ computers. The server and some of the users’ computers have wired connections to the local network, and other users’ computers connect to the local network wirelessly through the base station. The server and users’ computers get their network addresses from the base station’s DHCP server. They get DNS name service from the ISP.

The base station also protects the server and all users’ computers against malicious attacks from the Internet by blocking communications that originate outside the local network. However, the base station is configured to allow incoming communications for some services. For example, the base station allows the server’s mail service to receive email from outside the local network.

All the wired and wireless computers on the local network get services from Mac OS X Server.

18

Chapter 1 Introducing Mac OS X Server

 

 

The server provides user and group accounts, shared folders, server-based address books, shared calendars, instant messaging, and wikis with user portals, web calendars, and blogs. The ISP doesn’t provide enough email addresses for everyone in the organization, so the server provides email addresses and mail service.

DSL

ISP

The Internet

or cable

modem

 

 

AirPort

 

 

Extreme

 

 

Local network

 

 

Mac OS X

Server

Mac OS X computers

iPhone

Chapter 1 Introducing Mac OS X Server

19

 

 

Users with Mac OS X Snow Leopard or Leopard use Time Machine to back up their

Macs to an external hard drive (not shown) attached to the server.

Some users have their portable computers and home computers set up to connect to the server’s VPN via the Internet. This gives them secure remote access, while traveling or working at home, to all the services that the server provides on the local network. iPhone users check wikis and blogs while they’re roaming.

Single Server with a Network Router

The next illustration shows Mac OS X Server and users’ computers and iPhones sharing an Internet connection through a wireless router from the ISP.

The wireless router in this configuration takes the place of the AirPort Extreme Base Station in the previous configuration.The wireless router has a built-in DSL or cable modem that connects to the Internet. The router has wired and wireless connections to the local network to provide Internet access to the server and users’ computers and iPhones. The router includes a DHCP server that provides network addresses to the server and to the users’ computers and iPhones.

In this configuration, the server’s firewall blocks malicious attacks originating outside the local network.The firewall is configured to allow some services to receive incoming communications. For example, iChat service can receive instant messaging invitations from Google Talk users via the Internet.

20

Chapter 1 Introducing Mac OS X Server

 

 

Mac OS X Server provides services to all the wired and wireless computers on the local network. The server provides user and group accounts, shared folders, server-based address books, shared calendars, instant messaging, mail, and wikis with user portals, web calendars, and blogs. Users with Mac OS X Snow Leopard or Leopard use storage space on the server for Time Machine backups.

ISP

The Internet

Wi-Fi

 

router

 

Local network

 

Mac OS X

Server

Mac OS X computers

iPhone

 

Chapter 1

Introducing Mac OS X Server

 

21

 

 

 

While away from the local network, users with mobile devices can check email, web calendars, wikis, and blogs via Wi-Fi hotspots in libraries, cafes, and airports.

Single Server as an Internet gateway

The next illustration shows Mac OS X Server configured as an Internet gateway to provide Internet access to computers and mobile devices on the local network.

The server’s primary Ethernet port connects through a DSL or cable modem to the

Internet, and its other Ethernet port connects to the local network. The server’s DHCP service provides network addresses to users’ computers and mobile devices. Thus the server in this configuration does the job of the AirPort Extreme Base Station or generic router in the previous two configurations.

The server’s firewall is configured to block malicious attacks from the Internet, but does allow incoming email and iChat invitations that originate outside the local network. Besides mail and iChat, the server also provides user and group accounts, shared folders, server-based address books, shared calendars, and wikis with user portals,

web calendars, and blogs.

22

Chapter 1 Introducing Mac OS X Server

 

 

Users with Mac OS X Snow Leopard or Leopard use storage space on the server for

Time Machine backups.

DSL

ISP

The Internet

or cable

modem

 

 

 

AirPort

 

 

Extreme

 

Mac OS X

Server

Local network

Mac OS X computers

iPhone

Chapter 1 Introducing Mac OS X Server

23

 

 

Snow Leopard Server in a Workgroup

The next illustration shows a configuration of Mac OS X Server that serves a department in a large organization. This organization has an IT department that provides DHCP service for assigning network addresses, DNS name service, mail service, Internet access, and a VPN.

Everyone in the department already has a user account provided by the organization’s

Open Directory server, so these user accounts have been imported to the department’s server. This means everyone simply uses the user name and password they already know to authenticate for services provided by the department’s server. Those services were set up to use the Kerberos authentication of the Open Directory server, allowing users to log in once per session for all departmental services.

The department’s server provides address book, calendar, and instant messaging services that work with the users’ Mac OS X Address Book, iCal, and iChat applications. The department’s server also provides shared folders and private wikis for groups and projects within the department. Some projects include participants from outside the department. Outside participants use their existing user accounts to authenticate for wiki or shared folder access.

The organization’s servers provide storage for backup, but most users have Mac OS X

Snow Leopard and prefer to use Time Machine with the external hard drive (not shown) attached to the department’s server.

The department has some Windows users, who use Internet Explorer, Safari, and FireFox to access wikis, web calendars, and blogs. Shared folders appear as mapped drives in their Network Places. They have also set up their PCs to use the department server’s Jabber instant messaging.

24

Chapter 1 Introducing Mac OS X Server

 

 

 

The Internet

ISP

Organization

address book,

 

 

File sharing,

 

 

iCal, mail,

Firewall, VPN,

 

push, and

 

Open Directory,

 

mobile access

 

and web

 

 

 

Local network

 

 

AirPort

 

 

Extreme

 

Department

Mac OS X

 

Server

 

 

 

Windows computers

Mac OS X

Mac OS X computers

iPhones

 

administrator computer

 

 

Chapter 1 Introducing Mac OS X Server

25

 

 

Basic Applications and Utilities

After setting up Snow Leopard Server, you can manage users and groups, change essential service settings, and perform other basic server administration tasks using the applications and utilities described below. For information about using them, see the other chapters in this book.

Important: If you have versions of these applications and utilities from Mac OS X Server v10.5 Leopard or earlier, do not use them with Snow Leopard Server.

Applications and utilities for server administrators

iCal Server Utility (in /Applications/Server/)

Create, edit, and delete the locations and resources that users can reserve when they schedule meetings in shared calendars hosted by iCal Server.

Server Assistant

Set up Mac OS X Server for the first time. Install Mac OS X Server on a remote computer.

Server Preferences (in /Applications/Server/)

Manage users and groups, customize services and system information, and monitor server activity.

Server Status widget for Dashboard

Monitor server activity from any Mac with Snow Leopard.

System Preferences (in /Applications/)

Connect your server to a directory server in your organization. Configure Time Machine backup of the server. Configure sharing for a directly connected USB or FireWire printer.

26

Chapter 1 Introducing Mac OS X Server

 

 

Advanced Tools and Applications

Besides Server Preferences and the other basic administration applications, Snow

Leopard Server includes the advanced administration applications and tools described in the following table. For more information about these tools and applications, open Server Admin and then use the Help menu, or see the Mac OS X Server Resources website at www.apple.com/server/macosx/resources/.

Important: If you have administration applications and tools from Mac OS X Server v10.5 Leopard or earlier, do not use them with Snow Leopard Server.

Advanced applications and tools for server administrators

Directory Utility

Configure advanced connections to directory servers. Open Directory Utility by clicking Edit (or Join) in the Login Options section of the Accounts pane of System Preferences.

Podcast Capture (in /Applications/Utilities/)

Record high-quality audio and video from a local or remote camera, capture screen activity, or upload QuickTime files into Podcast Producer for encoding and distribution.

Podcast Composer (in /Applications/Server/)

Follow a structured, graphical process to create workflows that control how Podcast Producer generates and distributes podcasts.

QuickTime Broadcaster (in /Applications/)

Capture live audio and video that works seamlessly with QuickTime Streaming Server for highquality network broadcasting.

RAID Admin (in /Applications/Server/)

Set up and monitor Xserve RAID hardware.

Chapter 1 Introducing Mac OS X Server

27

 

 

Advanced applications and tools for server administrators

Server Admin (in /Applications/Server/)

Change advanced service settings, configure advanced services, and manage file share points.

Monitor server activity and view detailed service logs.

Server Assistant

Set up multiple servers automatically, using saved auto setup profiles. Open Server Assistant by using the Server menu in Server Admin.

Server Monitor (in /Applications/Server/)

Remotely monitor and manage one or more Xserve systems.

System Image Utility (in /Applications/Server/)

Create NetBoot and NetInstall images for Mac OS X and Mac OS X Server computers.

System Preferences (in /Applications/)

Connect the server to a directory server in your organization.

Workgroup Manager (in /Applications/Server/)

Manage users, groups, computers, and computer groups in advanced server deployments. Manage preferences for Mac OS X users.

Xgrid Admin (in /Applications/Server/)

Remotely manage clusters, monitor controller and agent activity, and check job status on the grid.

Command-line tools

Use UNIX tools to install and set up server software, administer services, manage users, and more.

28

Chapter 1 Introducing Mac OS X Server

 

 

Getting Ready for Mac OS X Server 2

Check the server hardware, set up your network, decide how to manage users and groups, decide which services to provide, and prepare server disks.

Before you install and set up Mac OS X Server, you need to:

ÂÂ Make sure the computer you want to use as a server meets system requirements (page 30)

ÂÂ Make sure your Internet connection and local network are ready for your server (page 31)

ÂÂ Understand the ways you can manage users and groups, and decide which way is right for your circumstances (page 39)

ÂÂ Learn about the services Mac OS X Server can provide, and decide which basic services you want to set up initially (page 42)

ÂÂ Prepare disks for installing Mac OS X Server (page 49)

ÂÂ If your server won’t have a display, or won’t be accessible, you can set up an administrator computer (page 51)

29

What You Need to Install Snow Leopard Server

To install Snow Leopard Server, you need a Macintosh desktop computer or server with:

ÂÂ An Intel processor

ÂÂ At least 2 gigabytes (GB) of random access memory (RAM) ÂÂ At least 10 gigabytes (GB) of disk space available

Your server needs significantly more disk space—such as a high capacity external hard drive—if you want to allow Snow Leopard and Leopard users to back up their

Macs on the server. A server needs even more disk space if you want to back up the server using Time Machine.

ÂÂ An active connection to a secure network

If you’re an experienced system administrator, you can install and initially set up

Snow Leopard Server without a network connection if, during setup, you select the option to configure manually and you don’t create an Open Directory master or connect to an existing directory server during initial setup. The server will need a network connection when you set up its directory services.

Some Podcast encoding operations require a compatible graphics card.

Some features have additional system requirements or require additional purchases. For details, see the Mac OS X Server website at www.apple.com/server/macosx/.

Unless you have a site license, you need a unique serial number for each server.

You must use a Mac OS X Server v10.6 Snow Leopard serial number, which begins with XSVR-106.

30

Chapter 2 Getting Ready for Mac OS X Server

 

 

Loading...
+ 154 hidden pages