Introduction to AD Bridge Best Practices
AD Bridge allows management of Berkeley Software Distribution (BSD), Linux, Mac, and Unix systems within Microsoft Active Directory. AD Bridge includes support for AD Bridge Cell Technology, two-factor authentication, Group Policy, and reporting features.
Because both workstation and server operating systems are supported, it is important to note that this software should be installed on a management workstation, and not on a domain controller. The appropriate installer should be used on each platform. The installer name denotes the version. This management workstation can be a terminal server, a user’s desktop, or a shared desktop.
AD Bridge software authentication architecture installs no services that need to be run on a Windows server. Because of this, administrators can keep domain controller installations clean of non-Microsoft software, and they can perform maintenance on these servers with no special considerations for AD Bridge client computers.
Group Policy administration should be handled for AD Bridge Enterprise in the same manner as suggested by Microsoft. For more information, please see Best Practices for Securing Active Directory.