Before running Open Directory, you need to properly configure two aspects of your network: domain name service (DNS) and time synchronization for Kerberos.
Checking for proper DNS setup
If, during initial setup, you configured Server Setup Assistant so that it created an Open Directory master for you, it should have also set up DNS. If you didn’t do this configuration during initial setup or have a DNS server running on another server, you’ll need to ensure that DNS is configured to support Open Directory.
In an A record, also called a machine record, the system’s host name is resolved to an IP address. That is, when another computer requests the IP address for a given domain name, the machine record supplies it. A pointer (PTR) record, also known as a reverse lookup, resolves a domain name for any given IP address. Reverse resolution inquires about an IP address and returns the host name.
By default, the domain’s LDAP search policy and Kerberos realm are the same as the fully qualified host ...