In case you haven’t seen them there are a number of groups for Mac OS X Systems Administrators on LinkedIn: Mac OS X Server: http://www.linkedin.com/groups?&gid=138085 Final Cut Server: http://www.linkedin.com/groups?gid=138082 Xsan: http://www.linkedin.com/groups?gid=138084 MacEnterprise: http://www.linkedin.com/groups?gid=1774398
-
-
Controlling Access to Mobile Access in Snow Leopard Server
One of the great new features of Snow Leopard Server is the new Mobile Access feature, which is a reverse proxy server. When you enable the Mobile Access service, you will be enabling access for all users of the server. However, in many environments, not all users will be allowed to access collaborative services remotely. Therefore, you can use the Access option to limit who is able to log into the server over each service provided that you have configured the Mobile Access server to leverage your directory server. This Access option is similar to a Service Access Control List (SACL). However, rather than configure in the SACL option for…
-
Starting OpenLDAP on Mac OS X Client
LDAP is included, by default, installed on every copy of Mac OS X. For Mac OS X Servers its easiest to get LDAP up and running, given that you have a nice handy graphical means of manipulating LDAP in the Open Directory features of Server Admin and Workgroup Manager. But what about Mac OS X Client. It may be easier than you think… To setup OpenLDAP in Mac OS X, we’ll do three quick tasks. The first is to set a password and the second is to put the password into the configuration file and the third is to start the daemon. To create that password, we’re going to use…
-
Friday?!?!
It’s a random Friday. The radio on my central AirPort stops working. I reset the device, do everything I know to do, but while I can log into the device through AirPort Utility there is no SSID, no radio signal whatsoever. What to do? String a cable across the room so that it can get ripped out of a computer when the crazed, sweet & squealing toddler invariably streaks through the office? Not a chance. I’ll just run out to the closest Apple store and grab a quick replacement. So I hop in the car and drive to the mall. What is going on with parking? I finally find a…
-
iPhone + Locked Down Exchange
Some iPhones can have a problem with some Exchange servers due to the fact that they are not fully manageable using ActiveSync Policies. The New-ActiveSyncMailboxPolicy commandlet is can be used with the -Name parameter to assign a name to the new ActiveSyncMailboxPolicy, which we’ll call iPhone. To allow devices that are not fully manageable to use ActiveSync, an ActiveSyncMailboxPolicy needs to be created where -AllowNonProvisionableDevices is set it to $true. For example, if we were to create such a policy and call it iPhone we would use the following command: New-ActiveSyncMailboxPolicy -Name iPhone -AllowNonProvisionableDevices $true
-
Bypassing Exchange 2007's Content Filter
Exchange 2007 is often set to filter all spam and reject mail that is classified as spam. If you configure Exchange 2007 to do so then you still need an email address that does not get filtered. The reason is that in the body of your rejection emails, you need to provide a valid user with a means to contact you in order to get their mail through. To bypass the content filter for an email address can be done using a commandlet, Set-ContentFilterConfig. When using the Set-ContentFilterConfig you can use the -BypassedRecipients option to specify email addresses that the filter will not be applied to, which would then be…
-
Xsan Addendum
Some time ago, I did a little article for Xsanity on using Xsan with removable media. The other day, while helping a friend prepare to give a talk on Xsan I learned a nice little tidbit. It’s just a little addendum to that that brings a smile to my face and makes me a little thankful: If you tell Xsan Admin to flash the LUN so that you can identify which LUN you are labeling the USB drive lights up. Sometimes it’s the little things, man…
-
iPhone Worm is Crap
Sorry, I can’t help it. That whole “iPhone Security Problems” thread I’ve seen on a few sites recently due to that worm. Oh, then there was a second worm that did the same thing. Really? Did these awesome security gurus realize that the device has to be jailbroken? Oh and they have to still have the default password used for SSH? I would hope that if you know enough to jailbreak the device without bricking it that you know enough to change the default SSH password. Interestingly enough though, an estimated 6 to 8 percent of iPhones are jail-broken… If there have been 21 million sold, that provides an attack…
-
HP Paying $2.7 Billion for 3Com?
HP is gung-ho to go after Cisco. It’s going to take too long to R&D better switches for the price than Cisco sells. 3Com has those switches for cheaper. Core routers for data centers are pretty complicated as well, so throw in a few extra bucks to get those from 3Com while you’re at it. There is overlap in the entry-level switches and already a lot of competition out there, so I would expect whichever product HP considers inferior to fall to the wayside. There’s also overlap with a number of other products, such as wireless and then a number of synergistic (how 90’s of me) aspects, such as what…
-
FCS 1.5.1 Story on Xsanity
Posted a little whatnot on FCS 1.5.1 over at Xsantiy, here. Hope you enjoy!