[tlarkin]

In Server Admin you can disable automount for share points, but if these are for home folders I would suggest you may look at a new approach. Either modify the user template in your image to reflect the change in path, or create a symbolic link from /Volumes/Users to where your actual wanted home folder is.

[tlarkin]

[QUOTE][u]Quote by: NOEQ[/u][p]
Hi,

Yes, I have multiple users per system. Their home folders reside on an Xserve, not /Users

Thanks[/p][/QUOTE]

I would say create a loop through the home folders since they will have the user’s short name and then execute a command, quick example would be:

[code]
#!/bin/bash

HomePath=`/bin/ls /path/to/homes`

for file in $HomePath ; do

defaults write my command

exit 0
[/code]

Or, I would use a log in hook to do it when a user logs in, exmaple:

[code]
!#/bin/bash

# get current logged in user by checking who owns /dev/console

CurrentUser=`/bin/ls -l /dev/console | awk ‘{ print $3 }’`

sudo -u $CurrentUser defaults write /path/to/file

exit 0
[/code]

[tlarkin]

Do you have multiple users per a system? If so, do their home folders actually reside in /Users?

[tlarkin]

if you have a license of Passenger it has automated tools to build scripts and execute them for you from the GUI. Do you own a license of this product? If not, I highly recommend picking up a copy just for the ease of use it helps with building User/Group import files into directory services. If not we can look at writing you a script to do this.

[tlarkin]

You can maybe put them in the admin group via dscl and some scripting. I am not sure how well LDAP talks to each other from OS X to another platform, so my experience on the topic is a bit novice at best. By default dscl points to the local BSD database but you can point it to any LDAP server in OD to get OD user/groups. You could easily add a group of users to the admin group, which would grant them sudo. Not sure how well it would work though because my environment here at work is 100% OD.

[tlarkin]

I have a post flight image script that creates user accounts and sets system wide settings on my pristine OS image. I found that using the shutdown command may in fact show an incorrect exit status and it flagged the script to run again (since it’s frequency was set to complete one run after a machine is imaged).

The script looks very sound, but I may recommend you use an Ampersand to put the shutdown process in the background so your script can properly exit. So, for example:

/sbin/shutdown -h NOW &

[tlarkin]

I just went through the about:config file myself and did not see where you can disable the user from entering the preferences or installing add ons….However, there is an add on that does this called public fox.

https://addons.mozilla.org/en-US/firefox/addon/3911

So I guess I need to global install that add on, then deploy it….if it works that way. The problem is if a user deletes their ~/Library/Application Support/Firefox (or mozilla) folder they lose the management, so I was looking at other ways of deploying firefox.

[tlarkin]

The check default browser option does not work. I pushed the package out via casper, then logged in to a mobile account, and it took the home page settings to my custom set homepage but it does not do the default browser. I was also able to install add ons, which I did not enable either.

What am I doing wrong here?

[tlarkin]

Some features from that link do not work….some do. It doesn’t work for what I want to do either. I think that this point I am going to deploy a non managed version and just say the heck with it.

[tlarkin]

Where can I find more configurations for this? It looks like this is just CSS code that the jar files read? Also, do I need to install something extra for the command line stuff?

[tlarkin]

OK, so as I have read that article on that wordpress site, all I need to do is create my custom config, and then tell firefox to look at that config instead of the default one? Also, how do I manage and deploy the FF add ons that I want all my users to have?

[tlarkin]

You are referring to this link?

[url]removed for spam….?[/url]

So I have to hack the java part? How future proof is this? Lets say I want to update firefox, will I have to repack this every time?

*EDIT*

It seems that I cannot post the link either as it says I am posting spam

[tlarkin]

I am sure Apple would advise against it, and I would too. I have some Tiger servers that are “connected to a Directory” that are part of my 10.5 deployment but they do not replicate LDAP. They are used for filing sharing mostly.

[tlarkin]

I think your best practice is going to be to move the data on another system or off to an external, then rebuild your RAID 5 with your new disks and copy it back in place.

[tlarkin]

I also second a nomination for Passenger. I wrote up a review and tech doc of it on my site.

[url]http://tlarkin.com/tech/passenger-v379-review[/url]

My article doesn’t touch on generating random passwords but that is a feature that is built into the App itself. Another thing you can do, is set a master password for all users and then flag every user account to force a password change at first log in.

You can write out the results to the comments and key words in WGM so you can look them up. It also generates reports before you export into import files which also shows the password in plain text.

[Author]

Posts