Launch /Applications/Utilities/Directory Access
If everything is greyed out, click the lock icon to unlock
Select LDAPv3, and click the 'Configure' button
Click the 'New...' button
UNcheck 'Add DHCP-supplied LDAP servers to automatic search policies'
Server Name: ldap.itd.umich.edu
Check 'Encrypt using SSL'
Check 'Use for authentication'
UNcheck 'Use for contacts'
Pick a Template: RFC 2307 (Unix)
Searchbase: ou=People,dc=umich,dc=edu
After it says 'Configuration of new server complete', hit 'OK'
Type in 'UMOD' for Configuration Name
Also be sure that you UNcheck 'Add DHCP-supplied LDAP servers to automatic search policies'.
Click the 'Edit' button, and go to the 'Search & Mappings' tab on the resulting window.
On the left side, open the Users triangle, then select Password, and click the 'Delete' button.
Click 'OK' when done.
Be sure that 'Add DHCP-supplied LDAP servers to automatic search policies' is UNchecked. Click 'OK' when done.
Quit out of Directory Access.
If you want to test it, launch /Applications/Utilities/Terminal and type
id johndoe
(or any other uniqname of a person that does not have an account on your computer). If it comes back with their uid (and some other stuff) you're all set. If you see a 'no such user' result, your LDAP configuration is not working.
