[pliny]

[QUOTE][Two ways to do this […] or to use WGM to set up sharepoints as login items.[/p][/QUOTE]

I had previously abandoned this path because I cannot (still) for the life of me figure out how to add Mounts to Login Items beyond the available checkbox items. Anything I browse to via “Add…” is treated as a folder. (Love to know if I am missing something here.)

My kludge is to make my desired automount a group share point and to add it to Login Items with the “Add Group Share Point” option – works, even though it is a limiting, imperfect solution.

Can I add Volume Mounts arbitriarily? Or am I limited to “User Home” and “Group Home”?

Thanks again Joel.

[pliny]

Thanks for the reply. I turned on Inspector in the WGM and hacked a few XML files under Config -> KerberosKDC to correctly push edu.mit to client machines. Thanks!

Before I go further (authentication problems persist) I want to make sure I’m doing this for the right reasons – in short, I believe I need Kerberos in order to automount share points on client machines _with_ authentication. This will allow clients, freelancers, staff, etc. to immediately access project folders that I control via ACLs, etc.

I understand that I must enable guest access for automounts or else enable Kerberos authentication. Correct?

[pliny]

Two more pieces:

1. From the system log:
[b][quote]
Jul 19 16:21:19 thefly mDNSResponder: ERROR: Only name server claiming responsibility for “_kerberos._udp.THEFLYLOCAL.” is “.”!
Jul 19 16:21:20 thefly mDNSResponder: ERROR: Only name server claiming responsibility for “_kerberos.thefly.” is “.”![/quote][/b]

2. edu.mit.Kerberos that is generated on the client side contains 100% outdated config info. I manually updated it before the previous post in this thread. But the fact that this bad edu.mit is being created means that I still have bad config info somewhere on the server side.

Is it possible to “re-kerberbize” my OD? Can I trash my Kerberos domain with the Kerberos.app tool and start over? Or is that a really bad idea?

[pliny]

Thanks for the reply. I believe I have this issue fixed. Slouching towards a clean OD/Kerberos implementation. I’ll get there, eventually.

[pliny]

First, thanks for your replies.

Yes, each user has a unique login. I’m running the Open Directory service.

By MCX do you mean managing the dock via “Preferences” in Workgroup Manager? Sorry for asking – I’m about 5 days deep into OSX Server. Not totally new to this, but new to Server.

If yes to the above, I don’t seem to be able to add, e.g., FCP into the default dock unless I install FCP locally on my OSX Server box. The only options currently under “Place these items in the user’s Dock:” are standard OSX apps — Mail, Safari, iChat, etc. Is there a way around this?

[pliny]

Correct. The syncing works in most other aspects — all files in ~/Documents, the desktop wallpaper, &c. are synced back to the user home dir on the network on login/logout. So these elements are carried over when I authenticate on a different workstation.

But the dock is in its default configuration whenever I sign on to a new workstation. Changes to the account’s dock are stored locally, but they do not seem to get synced back to the network home dir and are therefore not replicated across other workstations.

It seems like a relatively minor aesthetic quibble — but since I rent offline edit rooms, I will undoubtedly have to spend a little more time either manually configuring new client accounts or answering “where is my Final Cut icon” questions. All stuff I’d rather just have automated.

[pliny]

Incidentally my original post here was far more detailed but kept getting flagged as spam – possibly due to length?

Here’s what I have attempted:

1. In Workgroup Manager -> Prefs -> Mobility turned Sync on (Sync for offline use)

2. In Workgroup Manager -> Prefs -> Mobility -> Rules -> Login & Logout Sync, I deleted the “skip items” entry ~/Library/Preferences/com.apple.dock.plist. Set to “Manage Always”.

3. Under same screen, added ~/Documents and ~/Library to sync at login and logout.

4. Replicated these settings across the user and group level, just to be sure.

5. Also tried manually copying com.apple.dock.plist to the Network copy of my account’s /Library folder – signing out – signing in on a different workstation – still nothing.

6. Am _not_ currently managing the dock on user or group level.

If I had access to the workstation applications (FCP, etc.) from the “Manage Dock” menu in Workgroup Manager, I could achieve part of what I am trying to do — however, from what I can tell I can only add OS standard apps (iCal, QT, etc.) from this interface.

Again, any advice is much appreciated.

[Author]

Posts