... | ... | @@ -2,18 +2,20 @@ |
|
|
|
|
|
Hi everyone! You have found your way to the repo for **NoMAD Login AD**, or NoLoAD for short. This project can be seen as a companion to our other AD authentication product for macOS, [NoMAD](https://nomad.menu). You can use either one independently from each other, and both contain all the bits and pieces you need to talk to AD.
|
|
|
|
|
|
NoLoAD is a replacement login window for macOS 10.12 and higher. **(See our [macOS Sierra page](https://gitlab.com/orchardandgrove-oss/NoMADLogin-AD/wikis/Support/macOS-Sierra) for solutions to the known performance issues with 10.12)** It allows you to login to a Mac using Active Directory accounts, without the need to bind the Mac to AD and suffer all the foibles that brings.
|
|
|
NoLoAD is a replacement login window for macOS 10.12 and higher. It allows you to login to a Mac using Active Directory accounts, without the need to bind the Mac to AD and suffer all the foibles that brings.
|
|
|
|
|
|
## About this release
|
|
|
The current production version of NoLoAD is 1.0.1. There are several enhancements we are working on for the 1.1 release and you can see those in the [1.1 Milestone](https://gitlab.com/orchardandgrove-oss/NoMADLogin-AD/milestones/5).
|
|
|
The current production version of NoLoAD is 1.1.0. There are several enhancements we are working on for the 1.2 release and you can see those in the [1.2 Milestone](https://gitlab.com/orchardandgrove-oss/NoMADLogin-AD/milestones/7).
|
|
|
|
|
|
For those of you that are new here the basic features are:
|
|
|
For those of you that are new to NoLo, the basic features are:
|
|
|
|
|
|
* You can login to a Mac using AD without being bound
|
|
|
* Just-in-time provisioning user provisioning to create a local account
|
|
|
* "Demobilization" of previously cached AD accounts
|
|
|
* Local accounts can always login
|
|
|
* Ability to enable FileVault2 on APFS without a logout.
|
|
|
* Ability to enable FileVault on APFS without a logout
|
|
|
* Choose between a macOS-style loginscreen, or the older loginwindow types
|
|
|
* Customize the login screen with your own art and background
|
|
|
|
|
|
Please file any issues, or requested features, in the [project issue tracker](https://gitlab.com/orchardandgrove-oss/NoMADLogin-AD/issues).
|
|
|
|
... | ... | @@ -24,7 +26,8 @@ Getting started with NoLoAD is easy, but currently it takes a few steps. It's a |
|
|
Currently NoLoAD is a simple manual install, but we will have a pkg install available soon if you aren't packaging it on your own.
|
|
|
|
|
|
Installing is easy!
|
|
|
1. Download the [NoMAD Login AD 1.0.1 archive](https://drive.google.com/a/orchardandgrove.com/file/d/12dO1FNL7XTTBUUXQr6Fi93WzmCTwVJ85/view?usp=sharing).
|
|
|
|
|
|
1. Download [NoMAD Login AD](https://drive.google.com/a/orchardandgrove.com/file/d/12dO1FNL7XTTBUUXQr6Fi93WzmCTwVJ85/view?usp=sharing).
|
|
|
2. If you've never installed NoLoAD on the Mac before, you can run the installer package that includes the `authchanger` tool and be done with it.
|
|
|
|
|
|
-or-
|
... | ... | @@ -44,7 +47,9 @@ Take a look in our Wiki to see how to [get started with Carthage and Xcode](http |
|
|
## Using NoLoAD
|
|
|
Using NoMAD Login AD is easy. Just enter your AD username and password in `username@domain` format and your password. If the domain is visible on the network, NoMAD Login AD will discover the domain details and then authenticate your account. Once that is done it will create a local account that matches the AD one and complete the login. You can then use NoMAD as you normally would from the menu bar to keep the accounts synchronized.
|
|
|
|
|
|
Since the created account is a local one, you won't suffer any network delays when logging in or unlocking your Mac. From the login window, NoLoAD will simply defer to the regular local login process for any local accounts.
|
|
|
Since the created account is a local one, you won't suffer any network delays when logging in or unlocking your Mac. From the login window, NoLoAD will simply defer to the regular local login process for any local accounts. At this point you could even just go back to the Apple Loginwindow, but where is the fun in that?
|
|
|
|
|
|
Enticing you to stay now is the ability to customize the login experience with your own logos and background images. More info, and a gallery of options, can be found in the [wiki](https://gitlab.com/orchardandgrove-oss/NoMADLogin-AD/wikis/home).
|
|
|
|
|
|
## I want to get off this crazy ride!
|
|
|
When you decide that you've had enough it's easy to go back to the standard login window.
|
... | ... | @@ -53,8 +58,10 @@ When you decide that you've had enough it's easy to go back to the standard logi |
|
|
2. Run `sudo ./resetDB.bash` to reload the default `system.login.console` mechanisms into the AuthorizationDB.
|
|
|
3. If you've had to do this from a SSH session behind the NoLoAD login window you can simply run `sudo killall loginwindow` in order to restart the login window to the defaults.
|
|
|
|
|
|
## What's new in 1.0.1
|
|
|
* Added workarounds and advice for users on macOS Sierra (#21)
|
|
|
## What's new in 1.1.0
|
|
|
* Added better authentication failure UI (#25)
|
|
|
* Changed the bundle ID and defaults domain to menu.nomad.login.ad (#54)
|
|
|
* Added the ability to customize the login UI (#30, #41)
|
|
|
|
|
|
# Thanks
|
|
|
Thanks to all of you for trying NoMAD Login AD! Please let us know about issues and features in the issue tracker. You can also find us on Slack in [nomad](https://macadmins.slack.com/messages/C1Y2Y14QG) and [nomad-login](https://macadmins.slack.com/messages/C88MFDLV8). |
|
|
\ No newline at end of file |