Monthly Archives: September 2012

public speaking

MacTech Conference in LA Coming Up Soon

As many will know, I’m taking a break from speaking at conferences for awhile. But before I made that decision, I’d already planned to do a talk on Regression Testing for MacTech, in beautiful Los Angeles. If you haven’t signed up for the conference yet, it’s bound to be excellent, as all of the MacTech events have been. In fact, for more on MacTech from MacTech:

MacTech Conference for Apple Developers and IT Pros, October 17-19, 2012 in Los Angeles, has announced its post-event sessions and activities.  The event: a three-day, information-packed event that will have sessions and activities throughout the day and evening. This immersive conference is hotel-based, giving attendees the opportunity to not only learn from the best, but also to meet new people and spend time with their peers as well. Information about the conference is at http://www.mactech.com/conference .

In addition to two and half days of world-class sessions for IT Pros, and developers in the Apple community, MacTech Conference has added three options for attendees to take advantage of post-event on Friday afternoon:

• Code 42 Special Presentation: Protecting Enterprise Information in a Mobile World.
• Cryptic Apps Special Presentation: Using Hopper Dedicated Disassembler for Mac and iOS.
• Apple Certifications Exams proctored by v.2.

In a special two-hour event, Code 42 Software (a Platinum sponsor for MacTech Conference 2012) will discuss the challenges of protecting Enterprise information. Everyone recognizes the advantages gained by technological mobility in the Enterprise: increased efficiency, increased effectiveness and reduced time required to accomplish tasks. But at what cost if critical business information isn’t adequately protected and secured?  Join Andrew Renz–Senior Enterprise Engineer for Code 42 Software/CrashPlan PROe–as he outlines how companies can reap the benefits of a mobile workforce while confidently securing Enterprise information. Renz will share wisdom gained from his experience selecting and/or deploying Enterprise backup solutions for Apple, Oracle, Expedia and Intuit. He’ll also explain how to effectively employ the new capabilities available in version 3 of PROe.  RSVP required.  http://www.mactech.com/conference/code42

In an additional post-event session, Cryptic Apps software will be making a special two hour presentation about Hopper Dedicated Disassembler. Join Vincent Bénony (aka bSr43), developer of Hopper Disassembler  as he discusses the premise, and how to use, Hopper Dedicated Disassembler for both Mac, and with the new iOS support.  He’ll not only outline what you can use Hopper for, but also explore some of Hopper’s advanced features. You’ll have the chance to learn, ask questions, and meet the developer of this incredibly useful developer tool for Mac and iOS.  RSVP required.  http://www.mactech.com/conference/hopper

Finally, attendees will have the opportunity to update their Apple Certifications. Apple Certification Exams will also be available after the close of the conference on Friday, October 19th.  All current Apple exams will be available, and lunch is included.  Additional fee required.  Immediately following the conference our local testing partner, v.2 Consulting, Inc., will offer a moderated study hour and exam session on-site. Testing will conclude by 5pm.  RSVP required. http://www.mactech.com/conference/certification

“The conference is amazing in and of itself, but these three special opportunities give people that much more reason to be a part of this great community event,” said Neil Ticktin, Editor-in-Chief/Publisher, MacTech Magazine.  “We’re fortunate to have Code42 and Cryptic Apps give us these extended insights into their worlds with the people that make it happen.  And, for those that have not yet updated their Apple Certifications, v.2 has enabled us to offer a convenient way to do so.”

MacTech Conference is a multi-track event with a focus on both programming/development, as well as IT/Enterprise. Sessions will focus on both desktop and mobile with appropriate levels of attention paid to the Mac and iOS. Check out the speaker and topic list (http://www.mactech.com/conference/sessions) for specific sessions and speaker list.

The event will be held Wednesday through Friday October 17-19. The conference kicks off at 10am on Wednesday and is packed with sessions using MacTech’s well-established running order format. The evenings are filled with special activities and events designed specifically to have fun and give attendees an opportunity to form bonds with their peers and meet new people.

MacTech Conference is priced economically at $999 (pre-registration pricing) including all meals, a schedule packed full of sessions, exclusive entertainment, and more. Registration is far ahead of last year. Pre-registration ends on September 30th, and attendees can still save $300 off the on-site registration price. Register at http://www.mactech.com/conference/register

“These new sessions are in addition to our already world-class speaker line up: amazing people that will present and be in attendance at MacTech Conference 2012. See all the announced sessions at http://www.mactech.com/conference/sessions ,” said Ed Marczak, Sessions Chair and Executive Editor, MacTech Magazine.

Educational discounts are available. See http://www.mactech.com/conference/student for more information.

MacTech’s hotel guest room block has already out-paced last year and sold out once, but more rooms have just been added.  Available on a first-come, first-served basis, MacTech Conference attendees get a special rate of just $184 per night, which includes Internet access. The Sheraton is a quality venue with rooms that typically run $279.00 or more per night.

Mac OS X Mac OS X Server Mac Security Mass Deployment public speaking

Goodbye & Thanks To MacSysAdmin

MacSysAdmin, a great conference in Gothenburg, Sweden, is now over. The conference went off without a hitch. There were many great presentations and speakers. But I just wanted to take a quick moment to thank the great people from Apoio and especially Patric and Tycho. Tycho, I hope, can now ride Sleipnir home and take his well deserved Odinsleep. Anyway, MacSysAdmin was a class act all round and something I’m proud to have been a part of for the past few years. Thanks, guys!

Untitled

Adding Last Minute Tweaks To My Slide Deck – Thanks to Luis Giraldo For Posting The Picture

Now to finish up my MacTech talk!

public speaking

My MacSysAdmin Presentations For Today

The first presentation I’ll be doing at MacSysAdmin today is on Windows Server in Mac OS X and iOS environments, which can be found here:

MacSysAdmin_Windows

The second presentation I’ll be doing today at MacSysAdmin is on iOS deployment, which can be found here:

MacSysAdmin_iOS

If you’re not able to attend then I hope you will enjoy. I’ll try and get them to Tycho for uploading to the official site asap.

Windows Server

Installing the DHCP Service in Windows Server

With the DHCP service no longer in the Server apps provided by Apple (for the most part), it’s important to look at alternative solutions to host the service. The DHCP Service in Windows Server is a Role that a Windows Server can fill that dynamically assigns IP addresses to client computers requesting addresses. The DHCP Role is easily added using the Server Manager application, available in the Administrative Tools menu of the Start Menu. Once opened, click on the Add Roles button.

At the Select Server Roles screen, locate DHCP Server and then check the box for it, which will allow you to click on the Next button.

At the DHCP Server screen, click on Next.

At the Select Network Connection Bindings screen, check the box for each network interface that will be available to DHCP to host DHCP scopes (a scope being a range of addresses that the server will host. Click on Next.

At the Specify IPv4 DNS Server Settings screen, enter the name of the search domain to be assigned in the “Parent domain” field. Then provide the ip address for the first DNS server that is provided to clients in the “Preferred DNS server IPv4 address” field. Click on Next once the appropriate DNS information has been provided.

If you are using “WINS servers click on WINS is required for applications on this network” and then click on the Next button.

At the “Add or Edit DHCP Scopes” screen, click on the Add… button to provide the first DHCP scope for the environment.

At the Add Scope screen, enter the following information:

  • Scope name: A friendly name for the DHCP scope (e.g. Marketing Subnet)
  • Starting IP address: The first IP address in the scope of addresses provided
  • Ending IP address: The last IP address in the scope of addresses provided (note that you cannot overlap pools and that
  • Subnet type: Select a type of scope being created (note that this changes the lease times)
  • Activate this scope: Check this box to make the scope available immediately
  • Subnet mask: The subnet mask used by clients of the scope
  • Default gateway: The router for the scope being created

Once you’re satisfied with your settings, click OK. Next, select whether DHCP will be provided for IPv6 and click on Next.

If IPv6 is supported, enter the address of an IPv6 based DNS service. Click Next.

Next, integrate DHCP with Active Directory (to disable, use the “Skip authorization of this DHCP server in AD DS”) by either allowing the service to use the credentials of the currently logged in user or using the Specify button to provide a different user account.

Click Next.

At the Summary screen, verify the settings are as intended and then click on Next.The role is then installed and if you selected to do so the service is started as well. There are a lot of steps here, but if you’re new to Windows Server, don’t let that intimidate you. It’s a wizard and normally takes me a little less than 5 minutes, about what we grew to expect from OS X Server.

Mac OS X Mac OS X Server Xsan

Installing Final Cut Server on Lion & Mountain Lion Server

Thanks to Allan Sanderson for the following submission, which outlines how to install Final Cut Server in Lion and Mountain Lion Server.

In Server.app

————-
Websites:
Check “Enable PHP web applications”

Install Java
————
Open /Applications/Utilities/Java Preferences.app
You’ll be prompted by Software Update service to install Java, click “Continue”, provide admin credentials when promopted.

Install Final Cut Server
————————
Run Final Cut Server installer.
Then run Software Update to get ProApplications 2010-02 & Final Cut Server v1.5.2 updates.

Check Configuration
——————-
1)
Check fcsvr user has been created:
dscl /Local/Default -search /Users RecordName fcsvr
Output should look something like this:
fcsvr RecordName = (
fcsvr
)

2)
Check “fcsvr” user’s home folder location is set to “/Library/Application Support/Final Cut Server”
dscl /Local/Default -read /Users/fcsvr NFSHomeDirectory
Output should look something like this:
NFSHomeDirectory: /Library/Application Support/Final Cut Server
If it doesn’t, caorrect it with this command:
sudo dscl /Local/Default -create /Users/fcsvr NFSHomeDirectory “/Library/Application Support/Final Cut Server”

Customisations To Make It Work
——————————
A word to the wise, I personally take a backup before making any changes to system files, Time Machine is nice ‘n all, but I’d prefer not to have to go there in the first place.

1)
An out the box FCSvr install doesn’t set an “AUTH_TYPE” key/value pair in the com.apple.FinalCutServer.settings.plist file. Under 10.5 & 10.6 this didn’t cause any issues, but 10.7+ does seem to be an issue. So for Local and Open Directory authentication, this command will do the job:
sudo defaults write /Library/Preferences/com.apple.FinalCutServer.settings “AUTH_TYPE” -int 2
If you’re being more daring and trying to work with an Active Directory, then you’ll want the following:
sudo defaults write /Library/Preferences/com.apple.FinalCutServer.settings “AUTH_TYPE” -int 1

2)
Because of how things have changed between 10.6 and 10.7 & 10.8, its necessary to manually copy the apache site config into a users apache space.
sudo cp “/Library/Application Support/Final Cut Server/Final Cut Server.bundle/Contents/Resources/share/conf/client_apache2.conf” “/etc/apache2/users/fcsvr.conf”

3)
Now in order for the apache site config to be read by apache, we need to add in the necessary direction for httpd.
Append “UserDir Sites” to end of “/etc/apache/httpd.conf”, this can be done as a one-liner if you like:
sudo echo “UserDir Sites” >>/etc/apache2/httpd.conf

4)
Lastly we have to add in the redirection settings for 10.7+ as the installers isn’t able to do this due to file path changes between the OS revisions.
So, in your /etc/apache2/sites/0000_any_80_.conf file, paste in the following lines after the IfModule for mod_ssl.c:
<IfModule mod_rewrite.c>
RewriteCond %{REQUEST_METHOD} ^TRACE
RewriteEngine On
RewriteRule .* – [F]
RewriteRule ^/FinalCutServer$ /~fcsvr/Sites/webstart/index.php [NC,L]
RewriteRule ^/FinalCutServer/FinalCutServer_mac.jnlp$ /~fcsvr/Sites/webstart/macJnlp.php [NC,L]
RewriteRule ^/FinalCutServer/FinalCutServer_windows.jnlp$ /~fcsvr/Sites/webstart/windowsJnlp.php [NC,L]
RewriteRule ^/FinalCutServer/FinalCutServer_other.jnlp$ /~fcsvr/Sites/webstart/jnlp.php [NC,L]
</IfModule>
ORIGINAL_SOURCES: http://www.linkedin.com/groups/Has-anyone-been-able-get-138082%2ES%2E67319989?view=&srchtype=discussedNews&gid=138082&item=67319989&type=member&trk=eml-anet_dig-b_pd-ttl-cn&ut=2M3_ri588Lslo1

SPECIAL_MENTIONS: Matt Geller, David Colville

iPhone

Volume Purchasing Program Now Available In More Countries

The Volume Purchasing Program is a program from Apple that allows you to buy gift codes en masse for distribution to users, either by mail merging them and sending them out or using a special tool for distribution, such as Apple Configurator or an MDM solution. If you’re in the United States and work with iOS, you’ve likely been using the Volume Purchasing Program for awhile. But for users in Australia, Canada, France, Germany, Italy, Japan, New Zealand, Spain and the United Kingdom, the Volume Purchasing Program is new and probably being well received.

The Volume Purchasing Program allows users to receive the codes and install/purchase software without being gifted money to do so, although in most cases the users will need Apple IDs. This is because the Volume Purchasing Program still requires codes to be redeemed, although if you’re using Apple Configurator you can deploy apps without tying them to unique AppleIDs.

Overall, the Volume Purchasing Program is a great way to be able to control and manage app expenditures, and for users in the newly added countries, will help with deployments large and small. To access the Volume Purchasing Program site, see http://www.apple.com/business/vpp. To quote Apple:

Deliver essential business apps to your employees with the Volume Purchase Program, now available in Australia, Canada, France, Italy, Germany, Japan, New Zealand, Spain, the UK, and the US. VPP makes it easy to purchase iOS apps in any quantity and distribute them to your users. You can also have custom apps built for your company’s unique needs. Search thousands of useful apps, specify any quantity, and use a corporate credit card to complete your purchase. Download the updated VPP Guide for details.

personal

Hansel and Gretel Go Witch Hunting

Mac OS X Server Uncategorized

Creating Groups in Mountain Lion Server

There are four ways to create groups in Mountain Lion Server. The first is using the Server app, the second is using Workgroup Manager, the third is using the Users & Groups System Preference pane and the fourth is using the command line. In this article we will look at creating groups in the Server app.

Once a server has been an Open Directory Master all user and group accounts created will be in the Local Network Group when created in Server app. Before that, all user and group objects are stored locally when created in Server app. Once promoted to an Open Directory server, local groups must be created in Workgroup Manager, the Users & Groups System Preference pane or using a command line tool appropriate for group management.

 To create a new group, open the Server app and then click on Groups in the ACCOUNTS list of the Server app sidebar. From here, you can switch between the various directory domains accessible to the server using the drop-down list available. Click on the plus sign to create a local network group.
At the New Group screen, provide a name for the group in the Full Name field. This can have spaces. Then create a short name for the group in the Group Name field. This should not have spaces.
Click Done when you have supplied the appropriate information and the group is created. Once done, double-click on the group to see more options.
Here, use the plus sign (“+”) to add members to the group or highlight members and use the minus sign (“-“) to remove users from the group. You can also choose to use the following options:
  • Give this group a shared folder: Creates a shared directory for the group, or a group with an ACL that grants all group members access.
  • Make group members Messages buddies: Adds each group member to each other group members buddy list in the Messages client.
  • Enable group mailing list: Enables a list using the short name of the group where all members receive emails to that address.
  • Create Group Wiki: Opens the Wiki interface for creating a wiki for the group.

Once changes have been made, click Done to commit the changes.

Mac OS X Server Mac Security

Creating Users In Mountain Lion Server

There are four ways to create users in Mountain Lion Server. The first is using the Server app, the second is using Workgroup Manager, the third is using the Users & Groups System Preference pane and the fourth is using the command line. In this article we will look at creating users in the Server app.

To do so, open the Server app and connect to your server. Then click on the Users entry in the ACCOUNTS list. The list of users is displayed, based on the directory domain(s) being browsed. A directory domain is a repository of account data, which can include local users, local network users and users in a shared directory service such as Open Directory and Active Directory.

The drop-down list allows you to see objects that are stored locally as well as on a shared directory server. Therefore, clicking All Users will show all of the accounts accessible by the system. Click on the plus sign to create a new account. At this point, if the server has been promoted to an Open Directory Master, the account will be a local network account, with no way of choosing a different location to store the account in the Server app.

When prompted, provide the following information about the new user:

  • Full Name: Usually the first and last name of the user.
  • Account Name: A shorter representation of that name with no spaces or special characters.
  • Email address: The email address to use if the account is going over quotas, has calendar invitations sent, or used for email hosted on the server, etc.
  • Password: The password the user will use to access services on the server.
  • Verify: The password a second time to make sure there are no spelling errors.
  • Allow user to administer this server: Optional field that grants the user administrative access to the server.
  • Home Folder: Optional field that by default creates local home directories for users that use the account but that also allows you to select a directory shared using the File Sharing service as a location for home folders. Each user in OS X has a home folder, this option defines whether that folder will reside on their computer or on a central server.
  • Disk Quota: Define the amount of space an account can take up on servers.

Note: Optionally, you can also drag an image onto the image shown in the New User screen if you’d like the user to have an avatar.

Once the account details are as you would like, click on the Done button. The account will then be displayed in the list of available accounts. You can still create local accounts but must do so in the Users & Groups System Preference pane, through Workgroup Manager or through the command line. If the server has not been made an Open Directory server then you would be creating local users through the Server app.

Once the account is created, highlight it and click on the cog wheel icon below the list of accounts. Here, you have the option to edit the account you just created, edit their access to services hosted on the server, configure email information and change their password.

Click Edit User. Here, you have two new features. You can add the user to groups and use the checkbox for “log in” to disable the account.

Click Cancel and then using the cog wheel menu again, click on Edit Access to Services. Here, uncheck each service that the user should not have access to. If the service isn’t running then it’s not a big deal. You can highlight multiple accounts concurrently and then use this option to disable services for users en masse.