[hjuutilainen]

Same issue here. The most recent macs just flash the globe and then go on to boot from local disk. Can’t think of any other quick solution than to create preconfigured DeployStudio USB sticks for our support staff…

Did you create bugreports for this issue?

[hjuutilainen]

Damn this spam filter…

Version 1.0b2 05/2009
# – Every path should now be correctly quoted
# – Added repair functions for ./Library, ./Library/LaunchDaemons and ./usr/local/bin
# – We’re removing all extended attributes on source files (instead of only FinderInfo and quarantine)

Get it from the temp directory linked on my original post (remove the filename from the link).

PS. treydock, could you modify your post to not include the full PackageMaker command? It seems to make the page awfully wide… 🙂

Best,
Hannes

[hjuutilainen]

Hi and thanks for the info. My posts are being detected as spam so let’s try this without a link…

The first warning “User ID 1255435942 does not match 0 of root volume for “/Applications”” means that your component/Applications directory has different permissions than the /Applications directory on your local hard drive. This should be fixed by changing the owner of component/Applications to root (chown root:admin component/Applications).

The second warning means that you already have Keychain Minder.app installed in /Applications but the package you are creating has a different set of permissions. In this case the package you are creating has the correct permissions (root:admin drwxrwxr-x). You have propably installed the Keychain Minder using your own account which means that the permissions are you:staff drwxr-xr-x

The script sets the mode and permissions to be the same as Apple apps (root:admin drwxrwxr-x). This means that files are owned by root but can be modified by anyone in admin group. Normal users have only read and execute rights.

I’m not sure about using the script on a network drive. I’m currently running it on my build machine and build server and then moving the output to a network share.

Best,
Hannes

[hjuutilainen]

[QUOTE][u]Quote by: macshome[/u][p]I’ve not tried a 2008 cluster, but I used to connect to 2003 r2 clusters all the time.

Remember too that Mac OS X doesn’t use SAMBA to connect to SMB shares. It uses smbfs.[/p][/QUOTE]

Yes, we have a few 2003 clusters also and everything is working just fine with them. It’s just the 2008 clusters that are refusing to work. At the moment we don’t have any other choice than to move the affected user homes to another server. I’ve filed a bug report with Apple about this.

[hjuutilainen]

Sorry for my late reply. I thought I had enabled email notifications in these forums but I didn’t… But anyway, slapcat doesn’t work on it’s own either. It crashes with “segmentation fault” as a last line of text.

Is there any other alternatives to backing up OD? We only have about 200 client machines and OD is used only for managing these clients. Authentication and home folders are handled by Active Directory. I haven’t tried disabling SSL yet because I’m not exactly sure what the clients might think about it. Would it be safe to test without SSL?

Thanks again!

[hjuutilainen]

Thanks for your replies!

Our AD is also quite big (10,000+ users) but there are only about 400 users (1-2 different OU’s) that will be using the system we are building. I’m not sure how many home folders the SAN will have. Propably quite many… We just had a meeting about this and we are still unsure whether we are going to use AD or eDir. I told the other administrators that setting-up and configuration are more simple with AD but the problem is that most of those 400 users are currently authenticated using eDir and have their home folders in Novell. So eDir has the correct information about the 400 users home folders (we have quite a few servers here…). We have the same user base on both eDir and AD and the only thing that differs between those two is home folder location.

Is it possible to get authentication from AD, management from OD and then mount the required network shares and home folder with ie. login hooks? I would really love to use AD for authentication only and not retrieve the home folder location there. This way we wouldn’t have to change anything in AD and we could easily mount multiple different network shares depending on the group of a user. If we decide to use eDir after all, is the “magic triangle” setup possible with eDirectory?

So many questions… Thanks again!

[Author]

Posts