[blake]

After some more research it turns out that you have to encode the special characters like you would in a browser url. I found this applescript code that will do the work for you.

http://harvey.nu/applescript_url_encode_routine.html

Get the password from your login window and run it though this before passing it on the command line. Works like a champ now.

Also we switched from apple’s SIU to using netrestore helper now that its working with leopard. It’s working quite well and I’m digging the ability to connect to netbooted systems using ARD.

Blake

[blake]

Quick update to this..
I built a login window to handle logging into the server in applescript studio which works well. Except with users who have some special characters like % in their passwords. The command will fail with no matter what kind of quoting I throw around it. Currently I’m using this.

mount_afp ‘afp://joeuser:1#$%[email protected]/Lab’ /Volumes/Lab

Any suggestions on escaping special characters in the password here are welcome.

-Blake

[blake]

I’m doing some tests with .rar today. It requires a decompression tool on the mac but our windows users already have winzip which can handle .rar archives. I forgot to mention that another requirement is to segment files into 2GB chunks.

Looks like any format that uses tar can’t hang with files bigger than 4GB..

b

[blake]

The Leopard version of SUI is flaky.. I also had problems with it making broken netinstall images and telling me they are good. Trash the .nbi and start it again. Also make sure you are updated to 10.5.1 on both the source and server.

[blake]

I have considered creating my own login window with apple script studio. I want to avoid doing that if at all possible.

I’m waiting to hear back from apple right now. Hopefully this issue is the last kink I need to work out.

blake-

[blake]

Dominic you may need to ditto over a few more items to get your application running.

Make sure your netinstall image has these

/System/Library/PrivateFrameworks/AppleScript.framework
/System/Library/Components/AppleScript.component

Currently I use ditto to copy over the entire contents of these directories. A lot of those files are unused but It hasn’t broken anything to add them all.

/System/Library/ScriptingAdditions
/System/Library/Components
/System/Library/Frameworks
/System/Library/PrivateFrameworks
/System/Library/CoreServices

Remember to enable permissions on the .dmg before you ditto things over or it will blow up..

As for my issue PAM may be failing. Looks like some additional ram disks and possibly launchd .plists will need to be added to the boot image.

Blake-

[blake]

Well it turns out that mount_afp is working for me now. It’s when try and mount the share via our applescript studio application it’s failing. I have added in the required frameworks and any other required binaries that I know of.

However when I run this applescript command
[code]
mount volume “afp://imageserver/LabRestore”
[/code]
I’m getting a network security error. On a 10.4.10 netinstall image the user is prompted for credentials. If I hard code the username and password the command completes successfully. Seems like a needed service isn’t running. I see DirectoryService is running.

Unfortunately it’s required that users login with their AD credentials and I would prefer not to create an login window in applescript if I can avoid it..

Any suggestions on how I can turn on additional logging and figure out what’s failing are appreciated..

Blake-

[blake]

You are supposed to be able to use the bless command in current versions of OS X. However here is the script we use to set it via nvram.

[code]

#!/bin/sh

setName=”bork.nbi”
imageName=”bork.dmg”
server=”10.10.10.25″

/usr/sbin/nvram boot-args=”rp=nfs:${server}:/private/tftpboot/NetBoot/NetBootSP0:${setName}/${imageName}”
/usr/sbin/nvram efi-boot-device=”IOMatchIOProviderClassIONetworkInterfaceBSD Nameen0IOEFIDevicePathTypeMessagingIPv4RemoteIpAddress${server}IOEFIDevicePathTypeMediaFilePathPathNetBoot\NetBootSP0\\${setName}\i386\booter”
/usr/sbin/nvram efi-boot-file=”IOMatchIOProviderClassIONetworkInterfaceBSD Nameen0IOEFIDevicePathTypeMessagingIPv4RemoteIpAddress${server}IOEFIDevicePathTypeMediaFilePathPathNetBoot\NetBootSP0\\${setName}\i386\mach.macosx”

[/code]

It’s a little more verbose than the ppc OF version. Gotta love XML 🙂

Blake-

[blake]

Ok let me clarify..

when I’m booted from the DVD on a headless xserve what’s the best way to ssh into the box?

Blake-

[blake]

Something about one of my shares was killing the apple file server process.

I was able to create a new folder and move the shared files into that.
After deleting the original folder I renamed the folder and was able to startup file sharing again..

http://discussions.apple.com/thread.jspa?messageID=2062280&#2062280

thanks apple..

Blake-

[blake]

I was told that the contacts are being used as place holders. The will be removed after the users email account is migrated to exchange.

Didn’t make sense to me either..

In the end we restored a fresh disk image of 10.4.2 server and had the systems up and running in a matter of hours.

[blake]

No luck on changing the search base.

I’m going for the accelerated upgrade to tiger server plan.
Good thing I already have the licenses and such on hand.

The AD plugin in 10.4.2 was able to handle the changes in the directory without issue in my lab.

Thanks for the input dudes…

Blake-

[blake]

Yep they added new contacts to the domain with exactly the same name as the user accounts. The suggestion I got from them was to narrow my search base to return only the user accounts.

I’m not sure the AD plugin can be configured that way but I foresee some serious face to man page time in my near future…

[blake]

I also am having problems with this. We use AD groups to restrict
access to specific files for legal reasons. After the user has been added to the group the updates are reflected on windows servers quickly.

If I was cool I could use dscl to list out the users in the cached AD group, but I couldn’t figure out the syntax.

Blake-

[Author]

Posts