OS X: Improving login times for clients joined to Active Directory domains ending in ".local"
Use of a .local Active Directory domain conflicts with Apple's Bonjour service and may lead to login delays for network users. You may also observe delays when joining OS X clients to Active Directory.
If you're using OS X Yosemite, refer to "If you're unable to resolve or bind to domains that end in .local" instead of this article.
Mitigation of this behavior requires server-side and client-side DNS modifications.
Server-side modifications
On the server-side, create forward (AAAA) and reverse (PTR) IPv6 records on each DNS nameserver for all Active Directory domain controllers. An IPv6 reverse zone will need to be created to hold the PTR records. Specific instructions for creating these records will vary depending on your DNS server.
For example, see the following Microsoft support articles if you are using a Microsoft Windows 2008 DNS server:
"Add a host (A or AAAA) resource record to a zone" details the creation of AAAA records for a Microsoft Windows 2008 DNS nameserver.
"Creating a reverse lookup zone" details the creation of an IPv6 reverse zone for a Microsoft Windows 2008 DNS nameserver.
"Add a pointer (PTR) resource record to a reverse lookup zone" details the creation of PTR records for a Microsoft Windows 2008 DNS nameserver.
Self-selected, unique-local IPv6 addresses may be used if an IPv6 address space has not been established. The IETF has designed the FD00::/8 address space for this purpose. Addresses in this space are not globally routable and are suitable for internal networks.
Client-side modifications
On the client-side, add the .local Active Directory domain to the DNS Search Domains field:
Choose Apple menu () > System Preferences > Network.
Select the appropriate interface on the left (Built-in Ethernet or Wi-Fi).
Click Advanced at the bottom right.
On the DNS tab, click the + button, then add the .local Active Directory domain name.
Please repeat this process for all interfaces that will be in use when not on the Active Directory network.
Information about products not manufactured by Apple, or independent websites not controlled or tested by Apple, is provided without recommendation or endorsement. Apple assumes no responsibility with regard to the selection, performance, or use of third-party websites or products. Apple makes no representations regarding third-party website accuracy or reliability. Contact the vendor for additional information.
