Apple MAC OS X SERVER 10.6 Getting Started
Mac OS X Server
Getting Started
Version 10.6 Snow Leopard
Apple Inc. K
© 2009 Apple Inc. All rights reserved.
The owner or authorized user of a valid copy of
Mac OS X Server software may reproduce this publication
for the purpose of learning to use such software. No part
of this publication may be reproduced or transmitted
for commercial purposes, such as selling copies of this
publication or for providing paid-for support services.
Every eort has been made to ensure that the information
in this manual is accurate. Apple Inc. is not responsible for
printing or clerical errors.
Because Apple periodically releases new versions and
updates to its software, images shown in this book may
be dierent from what you see on your screen.
Apple
1 Innite Loop
Cupertino, CA 95014
408-996-1010
www.apple.com
The Apple logo is a trademark of Apple Inc., registered in
the U.S. and other countries. Use of the “keyboard” Apple
logo (Option-Shift-K) for commercial purposes without the
prior written consent of Apple may constitute trademark
infringement and unfair competition in violation of federal
and state laws.
Apple, the Apple logo, AirPort, AirPort Express, AirPort
Extreme, Apple TV, Bonjour, FireWire, iCal, iChat, iPod,
iSight, iTunes, Keychain, Keynote, Leopard, Mac, Mac OS,
Macintosh, Panther, Power Mac, QuickTime, Safari, Tiger,
Time Capsule, Time Machine, Xcode, Xgrid, Xsan, and
Xserve are trademarks of Apple Inc., registered in the
U.S. and other countries. Apple Remote Desktop, Finder,
iPhone, Snow Leopard, and Spotlight are trademarks of
Apple Inc.
Adobe and PostScript are trademarks or registered
trademarks of Adobe Systems incorporated in the U.S.
and/or other countries.
Intel, Intel Core, and Xeon are trademarks of Intel Corp. in
the U.S. and other countries.
PowerPC™ and the PowerPC logo™ are trademarks of
International Business Machines Corporation, used under
license therefrom.
UNIX® is a registered trademark of The Open Group.
Other company and product names mentioned herein
are trademarks of their respective companies. Mention
of third-party products is for informational purposes
only and constitutes neither an endorsement nor a
recommendation. Apple assumes no responsibility with
regard to the performance or use of these products.
034-4940-A/2009-08-01
Contents
7 Chapter 1: Introducing Mac OS X Server
8 What’s New in Snow Leopard Server
18 Snow Leopard Server in Small Business
24 Snow Leopard Server in a Workgroup
26 Basic Applications and Utilities
27 Advanced Tools and Applications
29 Chapter 2: Getting Ready for Mac OS X Server
30 What You Need to Install Snow Leopard Server
31 Preparing Your Network and Internet Connection
39 Deciding How to Manage Users and Groups
42 Deciding Which Basic Services to Provide
46 Providing More Services
49 Preparing Disks for Mac OS X Server
51 Preparing an Administrator Computer
53 Chapter 3: Installing Mac OS X Server
55 Installing Locally
57 Installing Remotely
3
63 Chapter 4: Setting Up Mac OS X Server
63 Setting Up a Server Locally
65 Setting Up a Server Remotely
69 After Setting Up a Server
73 Chapter 5: Managing Your Server
74 Using Server Preferences
75 Using the Server Status Widget
77 Connecting Server Preferences to a Remote Server
78 Backing Up and Restoring the Server
79 Keeping Snow Leopard Server Up to Date
81 Chapter 6: Managing Users
82 About User Accounts
84 About Administrator Accounts
88 Setting Up Users and Groups Management
89 Adding a User Account
91 Importing Users
93 Importing Groups of Users Automatically
95 Deleting a User Account
96 Changing a User’s Account Settings
97 Changing a User’s Contact Information
98 Controlling a User’s Access to Services
99 Changing a User’s Group Membership
4 Contents
100 Customizing the Welcome Email
101 Customizing the Server Invitation Email
102 Customizing the Group Invitation Email
105 Chapter 7: Managing Users’ Computers
105 Setting Up Users’ Macs Automatically
113 Setting Up Users’ Computers Manually
119 Chapter 8: Managing Groups
120 Creating a New Group
12 2 Adding or Removing Members of a Group
12 3 Adding or Removing External Members of a Group
125 Chapter 9: Customizing Services
125 Managing Address Book Service
12 7 Managing File Sharing Service
130 Managing iCal Service
13 2 Managing iChat Service
134 Managing Mail Service
13 8 Managing Web Services
145 Managing VPN Service
152 Customizing Services Using Advanced Applications
153 Chapter 10: Managing Server Information
154 Managing Server Information
5Contents
15 8 Using an SSL Certicate
162 Managing Users’ Backup Storage
163 Changing Security Settings
167 Checking Server Logs
169 Monitoring Server Graphs
171 Chapter 11: Learning More
171 Using Onscreen Help
17 2 Getting Documentation Updates
173 Getting Additional Information
175 Appendix: Services and Ports
17 9 Index
6 Contents
Introducing Mac OS X Server
1
Mac OS X Server has everything you need to provide
standards-based workgroup and Internet services,
making it ideal for education, small businesses, and large
enterprises.
Mac OS X Server version 10.6 Snow Leopard combines intuitively simple Macintosh
ease of use with a mature, stable UNIX foundation. It provides an extensive array of
services that support Macintosh, Windows, and UNIX client computers over a network.
With Snow Leopard Server, small organizations and workgroups without an IT
department can take full advantage of the benets of a server. Even a nontechnical
user can set up and manage Snow Leopard Server for a group. Other users in the group
can automatically congure their Macs to get services from Snow Leopard Server.
Snow Leopard Server has advanced conguration options and management tools for
IT professionals as well.
7
What’s New in Snow Leopard Server
Mac OS X Server v10.6 Snow Leopard oers major enhancements in several key areas:
64-bit computing Â
OpenCL Â
Podcast Producer 2 Â
Wiki Server Â
iCal Server 2 Â
Address Book Server Â
Mail Server Â
Mobile Access Server Â
64-Bit Operating System
To accommodate the enormous amounts of memory being added to today’s servers,
Snow Leopard Server has a 64-bit operating system to support up to a theoretical
16 TB of RAM. With more RAM, server applications can use more physical memory and
consequently run faster. In addition, the 64-bit operating system dramatically improves
the total number of simultaneous system processes, threads, and network connections
that the server can use.
Snow Leopard Server supports the latest 64-bit technology on today’s Xserve and
Mac Pro systems while maintaining 32-bit support for other systems. On all systems,
Mac OS X Server can run 64-bit and 32-bit applications concurrently, address large
amounts of RAM, and access 64-bit le systems and math and image libraries.
8 Chapter 1 Introducing Mac OS X Server
OpenCL
OpenCL (Open Computing Language), allows developers to eciently tap the vast
gigaops of computing power in the graphics processing unit (GPU). With GPUs
approaching processing speeds of a trillion operations a second, they’re capable of
considerably more than just drawing pictures. Unlike other server operating systems,
Mac OS X Server is specically designed to use the GPU for graphics rendering, podcast
eects and transitions, and drawing the user interface for Mac OS X Server itself.
OpenCL lets developers apply GPU power in high-performance computing applications
like genomics, video encoding, signal processing, and simulations of physical and
nancial models.
Podcast Producer 2
Podcast Producer 2 simplies the process of recording content, encoding, and
publishing high-quality podcasts for playback in iTunes and on iPod, iPhone, and
Apple TV. Users control recording of lectures, training, presentations, or any other
audio and video projects. Podcast Producer then automatically encodes and publishes
the recording based on your workow. With Snow Leopard and Snow Leopard
Server, Podcast Producer 2 gains an easy-to-use graphical workow editor, dual video
recording, Podcast Library, a web-based application to control recording, and optional
failover conguration for high availability.
9Chapter 1 Introducing Mac OS X Server
10 Chapter 1 Introducing Mac OS X Server
The graphical workow editor, Podcast Composer, leads you through the steps of
dening video-based Podcast Producer workows. You graphically choose the intro,
title, and exit videos; specify dierent transitions and eects between videos; and
view real-time titles and eects. You can add watermarks and overlays to your Podcast
content. Your workow also species encoding formats and targets distribution via
wiki, iTunes U, or Podcast Library for your nished podcast.
Podcast Producer 2 lets users record dual video sources using the Podcast Capture
application on a Mac or the new Podcast Capture web application on a Mac, iPhone,
or Windows computer. Apple provides several picture-in-picture templates, or you can
create your own.
Podcast Library lets your server store podcasts and deliver them to viewers through
RSS and Atom feeds. For example, your podcasts can feed directly from your server
through iTunes U. Atom feeds simplify distributing multiple podcast versions, such as
iPod, Apple TV, and audio only, because each Atom feed can contain multiple versions
and the viewer’s playback device automatically picks the best version.
Podcast Producer 2 and the services it relies on, including Xgrid, can be congured for
high availability by setting up failover servers and using an Xsan le system.
Wiki Server 2
Mac OS X Server includes web services that make it easy for users to create and
distribute information through shared wiki websites. Users can easily view, search,
and edit wiki content in their web browsers. They can add, delete, edit, and format wiki
content naturally—without knowing markup codes or special syntax. With a few clicks,
they can attach les and images, publish to podcasts, assign keywords, and link to
other wiki pages or other websites.
11Chapter 1 Introducing Mac OS X Server
Snow Leopard Server provides each wiki user with a convenient wiki portal, called
My Page, for viewing and creating wikis and blogs, using web calendars, tracking wiki
updates, and accessing webmail.
Mac OS X Server’s single sign-on authentication means a user only needs to enter a
name and password once to access all private wikis. Users don’t need administrator
passwords to create public and private wikis, and the creator of a private wiki controls
access to it.
12 Chapter 1 Introducing Mac OS X Server
Users can search across multiple wikis. They can also see Quick Look previews of wiki
attachments in the browser window, even if they don’t have applications that open the
attachments.
13Chapter 1 Introducing Mac OS X Server
Snow Leopard Server also has new wiki and blog templates optimized for iPhone.
Besides being better able to view wiki and blog pages, iPhone users can now track wiki
page changes and add comments and tags.
When users create events in personal and group web calendars, Snow Leopard Server
lets them invite other users and assists by looking up invitees and showing their
availability. Snow Leopard Server also allows multiple calendars per user and per group.
14 Chapter 1 Introducing Mac OS X Server
iCal Server 2
iCal Server makes it easy to share calendars, schedule meetings, and coordinate events
within a workgroup, a small business, or a large organization. Colleagues can check
each other’s availability, propose and accept meetings, book conference rooms, reserve
projectors, and more. iCal Server sends meeting invitations with agendas or to-do lists,
and tabulates replies.
15Chapter 1 Introducing Mac OS X Server
Snow Leopard Server adds push notications, the ability to email event invitations
to non–iCal Server users, integration with Calendar on iPhone, and a web application
that lets users access their calendars from any computer with a web browser. iCal
Server also integrates with the iCal application in Mac OS X and third-party calendar
applications that support the standard CalDAV protocol.
Address Book Server
Snow Leopard Server introduces Address Book Server, which allows users to nd
contact information in an address book across multiple computers without the schema
limitations and security issues associated with LDAP.
16 Chapter 1 Introducing Mac OS X Server
Users can view and add contact information in a server-based address book by using
the Address Book application on any Mac with Snow Leopard. Address Book Server can
also allow Snow Leopard users to nd public contact information in directory servers
that your server is connected to. Users of other computers can access address books on
your server using third-party applications that are compatible with the CardDAV open
standard.
Mail Server
Snow Leopard Server boosts its Mail Server performance, reliability, and scalability with
a new, open standards–based engine designed to handle thousands of simultaneous
connections. In addition, Mail Server is enhanced to include push email, server-side
email rules, and vacation messages.
Mobile Access Server
Snow Leopard Server has a Mobile Access Server that can give mobile users secure
access to your private services without inconvenient VPN connections. You specify
whether users can access private mail, web, iCal, and address book services. Users
connect to the reverse proxy Mobile Access Server on the Internet, and it makes secure
connections on their behalf to services that Mac OS X Server provides on your private
network.
17Chapter 1 Introducing Mac OS X Server
Snow Leopard Server in Small Business
A single server with Mac OS X Server can provide all the services needed by computer
users in a small business. The server and users’ computers are all connected to a private
local network that shares a DSL or cable Internet connection. The Internet connection
can be shared through an AirPort Extreme Base Station (802.11n) or a Time Capsule,
through a router from the Internet service provider (ISP) or computer retailer, or
through the server. The next few pages illustrate and describe these congurations.
Single Server with AirPort Extreme
The following illustration shows Mac OS X Server and users’ computers and iPhones
sharing an Internet connection through an AirPort Extreme Base Station (802.11n).
The base station connects to the Internet through a DSL modem or cable modem and
connects to the local network to share the Internet connection with the server and
users’ computers. The server and some of the users’ computers have wired connections
to the local network, and other users’ computers connect to the local network
wirelessly through the base station. The server and users’ computers get their network
addresses from the base station’s DHCP server. They get DNS name service from the ISP.
The base station also protects the server and all users’ computers against malicious
attacks from the Internet by blocking communications that originate outside the local
network. However, the base station is congured to allow incoming communications
for some services. For example, the base station allows the server’s mail service to
receive email from outside the local network.
All the wired and wireless computers on the local network get services from Mac OS X
Server.
18 Chapter 1 Introducing Mac OS X Server
The server provides user and group accounts, shared folders, server-based address
Mac OS X
Server
DSL
or cable
modem
The Internet
AirPort
Extreme
ISP
Local network
Mac OS X computers iPhone
books, shared calendars, instant messaging, and wikis with user portals, web calendars,
and blogs. The ISP doesn’t provide enough email addresses for everyone in the
organization, so the server provides email addresses and mail service.
19Chapter 1 Introducing Mac OS X Server
Users with Mac OS X Snow Leopard or Leopard use Time Machine to back up their
Macs to an external hard drive (not shown) attached to the server.
Some users have their portable computers and home computers set up to connect to
the server’s VPN via the Internet. This gives them secure remote access, while traveling
or working at home, to all the services that the server provides on the local network.
iPhone users check wikis and blogs while they’re roaming.
Single Server with a Network Router
The next illustration shows Mac OS X Server and users’ computers and iPhones sharing
an Internet connection through a wireless router from the ISP.
The wireless router in this conguration takes the place of the AirPort Extreme Base
Station in the previous conguration. The wireless router has a built-in DSL or cable
modem that connects to the Internet. The router has wired and wireless connections
to the local network to provide Internet access to the server and users’ computers and
iPhones. The router includes a DHCP server that provides network addresses to the
server and to the users’ computers and iPhones.
In this conguration, the server’s rewall blocks malicious attacks originating outside
the local network. The rewall is congured to allow some services to receive incoming
communications. For example, iChat service can receive instant messaging invitations
from Google Talk users via the Internet.
20 Chapter 1 Introducing Mac OS X Server
Mac OS X Server provides services to all the wired and wireless computers on the local
Mac OS X
Server
The Internet
ISP
Local network
Wi-Fi
router
Mac OS X computers iPhone
network. The server provides user and group accounts, shared folders, server-based
address books, shared calendars, instant messaging, mail, and wikis with user portals,
web calendars, and blogs. Users with Mac OS X Snow Leopard or Leopard use storage
space on the server for Time Machine backups.
21Chapter 1 Introducing Mac OS X Server
While away from the local network, users with mobile devices can check email,
web calendars, wikis, and blogs via Wi-Fi hotspots in libraries, cafes, and airports.
Single Server as an Internet gateway
The next illustration shows Mac OS X Server congured as an Internet gateway to
provide Internet access to computers and mobile devices on the local network.
The server’s primary Ethernet port connects through a DSL or cable modem to the
Internet, and its other Ethernet port connects to the local network. The server’s DHCP
service provides network addresses to users’ computers and mobile devices. Thus the
server in this conguration does the job of the AirPort Extreme Base Station or generic
router in the previous two congurations.
The server’s rewall is congured to block malicious attacks from the Internet, but does
allow incoming email and iChat invitations that originate outside the local network.
Besides mail and iChat, the server also provides user and group accounts, shared
folders, server-based address books, shared calendars, and wikis with user portals,
web calendars, and blogs.
22 Chapter 1 Introducing Mac OS X Server
Users with Mac OS X Snow Leopard or Leopard use storage space on the server for
Mac OS X
Server
The Internet
AirPort
Extreme
Local network
DSL
or cable
modem
ISP
Mac OS X computers iPhone
Time Machine backups.
23Chapter 1 Introducing Mac OS X Server
Snow Leopard Server in a Workgroup
The next illustration shows a conguration of Mac OS X Server that serves a
department in a large organization. This organization has an IT department that
provides DHCP service for assigning network addresses, DNS name service, mail service,
Internet access, and a VPN.
Everyone in the department already has a user account provided by the organization’s
Open Directory server, so these user accounts have been imported to the department’s
server. This means everyone simply uses the user name and password they already
know to authenticate for services provided by the department’s server. Those services
were set up to use the Kerberos authentication of the Open Directory server, allowing
users to log in once per session for all departmental services.
The department’s server provides address book, calendar, and instant messaging
services that work with the users’ Mac OS X Address Book, iCal, and iChat applications.
The department’s server also provides shared folders and private wikis for groups and
projects within the department. Some projects include participants from outside the
department. Outside participants use their existing user accounts to authenticate for
wiki or shared folder access.
The organization’s servers provide storage for backup, but most users have Mac OS X
Snow Leopard and prefer to use Time Machine with the external hard drive (not
shown) attached to the department’s server.
The department has some Windows users, who use Internet Explorer, Safari, and FireFox
to access wikis, web calendars, and blogs. Shared folders appear as mapped drives in
their Network Places. They have also set up their PCs to use the department server’s
Jabber instant messaging.
24 Chapter 1 Introducing Mac OS X Server
Organization
Department
Mac OS X
Server
AirPort
Extreme
Mac OS X
administrator computer
Mac OS X computers iPhonesWindows computers
Local network
ISP
The Internet
File sharing,
address book,
iCal, mail,
Open Directory,
and web
Firewall, VPN,
push, and
mobile access
25Chapter 1 Introducing Mac OS X Server
Basic Applications and Utilities
After setting up Snow Leopard Server, you can manage users and groups, change
essential service settings, and perform other basic server administration tasks using the
applications and utilities described below. For information about using them, see the
other chapters in this book.
Important: If you have versions of these applications and utilities from Mac OS X Server
v10.5 Leopard or earlier, do not use them with Snow Leopard Server.
Applications and utilities for server administrators
iCal Server Utility (in /Applications/Server/)
Create, edit, and delete the locations and resources that users can reserve when they schedule
meetings in shared calendars hosted by iCal Server.
Server Assistant
Set up Mac OS X Server for the rst time. Install Mac OS X Server on a remote computer.
Server Preferences (in /Applications/Server/)
Manage users and groups, customize services and system information, and monitor server activity.
Server Status widget for Dashboard
Monitor server activity from any Mac with Snow Leopard.
System Preferences (in /Applications/)
Connect your server to a directory server in your organization. Congure Time Machine backup of
the server. Congure sharing for a directly connected USB or FireWire printer.
26 Chapter 1 Introducing Mac OS X Server
Advanced Tools and Applications
Besides Server Preferences and the other basic administration applications, Snow
Leopard Server includes the advanced administration applications and tools described
in the following table. For more information about these tools and applications, open
Server Admin and then use the Help menu, or see the Mac OS X Server Resources
website at www.apple.com/server/macosx/resources/.
Important: If you have administration applications and tools from Mac OS X Server
v10.5 Leopard or earlier, do not use them with Snow Leopard Server.
Advanced applications and tools for server administrators
Directory Utility
Congure advanced connections to directory servers. Open Directory Utility by clicking Edit
(or Join) in the Login Options section of the Accounts pane of System Preferences.
Podcast Capture (in /Applications/Utilities/)
Record high-quality audio and video from a local or remote camera, capture screen activity,
or upload QuickTime les into Podcast Producer for encoding and distribution.
Podcast Composer (in /Applications/Server/)
Follow a structured, graphical process to create workows that control how Podcast Producer
generates and distributes podcasts.
QuickTime Broadcaster (in /Applications/)
Capture live audio and video that works seamlessly with QuickTime Streaming Server for highquality network broadcasting.
RAID Admin (in /Applications/Server/)
Set up and monitor Xserve RAID hardware.
27Chapter 1 Introducing Mac OS X Server
Advanced applications and tools for server administrators
Server Admin (in /Applications/Server/)
Change advanced service settings, congure advanced services, and manage le share points.
Monitor server activity and view detailed service logs.
Server Assistant
Set up multiple servers automatically, using saved auto setup proles. Open Server Assistant by
using the Server menu in Server Admin.
Server Monitor (in /Applications/Server/)
Remotely monitor and manage one or more Xserve systems.
System Image Utility (in /Applications/Server/)
Create NetBoot and NetInstall images for Mac OS X and Mac OS X Server computers.
System Preferences (in /Applications/)
Connect the server to a directory server in your organization.
Workgroup Manager (in /Applications/Server/)
Manage users, groups, computers, and computer groups in advanced server deployments.
Manage preferences for Mac OS X users.
Xgrid Admin (in /Applications/Server/)
Remotely manage clusters, monitor controller and agent activity, and check job status on the grid.
Command-line tools
Use UNIX tools to install and set up server software, administer services, manage users, and more.
28 Chapter 1 Introducing Mac OS X Server
Getting Ready for Mac OS X Server
2
Check the server hardware, set up your network, decide
how to manage users and groups, decide which services
to provide, and prepare server disks.
Before you install and set up Mac OS X Server, you need to:
Make sure the computer you want to use as a server meets system requirements Â
(page 30)
Make sure your Internet connection and local network are ready for your server Â
(page 31 )
Understand the ways you can manage users and groups, and decide which way is Â
right for your circumstances (page 39)
Learn about the services Mac OS X Server can provide, and decide which basic Â
services you want to set up initially (page 42)
Prepare disks for installing Mac OS X Server (page  49)
If your server won’t have a display, or won’t be accessible, you can set up an Â
administrator computer (page 51 )
29
What You Need to Install Snow Leopard Server
To install Snow Leopard Server, you need a Macintosh desktop computer or server with:
An Intel processor Â
At least 2 gigabytes (GB) of random access memory (RAM) Â
At least 10 gigabytes (GB) of disk space available Â
Your server needs signicantly more disk space—such as a high capacity external
hard drive—if you want to allow Snow Leopard and Leopard users to back up their
Macs on the server. A server needs even more disk space if you want to back up the
server using Time Machine.
An active connection to a secure network Â
If you’re an experienced system administrator, you can install and initially set up
Snow Leopard Server without a network connection if, during setup, you select the
option to congure manually and you don’t create an Open Directory master or
connect to an existing directory server during initial setup. The server will need a
network connection when you set up its directory services.
Some Podcast encoding operations require a compatible graphics card.
Some features have additional system requirements or require additional purchases.
For details, see the Mac OS X Server website at www.apple.com/server/macosx/.
Unless you have a site license, you need a unique serial number for each server.
You must use a Mac OS X Server v10.6 Snow Leopard serial number, which begins
with XSVR-106.
30 Chapter 2 Getting Ready for Mac OS X Server
Loading...