Tag Archives: MAC

Articles and Books Mac OS X Mac OS X Server Mac Security Mass Deployment Network Printing public speaking

MacIT Is Coming Back In July

MacWorld is kinda’ dead. Long live MacWorld (I cry nightly over this). But MacIT, alive and well and awesome (I hadn’t really spent any time on the floor for a long time anyway)! Here’s the email announcing the MacIT dates, which will be July 14th through 16th in Santa Clara! I’m super-stoked! :)

MacIT_logo_emailDear MacIT constituents,

Mark your calendars for MacIT 2015!

I’m pleased to announce that we have secured dates for the MacIT 2015 Conference. This year’s event will be held July 14-16 at the Santa Clara Convention Center in Silicon Valley (Santa Clara, CA). Our team is hard at work to ensure the first “stand alone” MacIT is a must-attend event for enterprise professionals. The program committee is currently vetting themes and topics for the conference and our call for presenters is currently posted on our website – http://www.macitconf.com. Our returning sponsors, JAMF, Code42, ESET, Parallels, and CoSoSys are ready to preview their iOS and OS X solutions at MacIT 2015, and our sponsor recruitment team is in discussions with many of the manufacturers you have requested access to.

The world of enterprise integration for iOS and OS X continues to evolve at an exciting pace and MacIT continues to be a unique meeting and marketplace for the enterprise professional. MacIT will continue to focus on all things “Apple in the Enterprise” – technology and standards tutorials, realistic product and solution chain evaluations, candid analysis, case studies, peer problem solving, access to key vendors, and insights to help you assess Apple’s role in the enterprise technology world, and how these tools can best be put to work in your organization. Our goal is always to provide you the best (quantity and quality) content, presenters, manufacturers, and professional networking access to make you a success in your deployment projects.

I look forward to keeping in touch with you via email and social media with event updates and announcements over the coming months, and hope to see you at MacIT 2015.

Best Regards,

Paul Kent Conference Chairman, MacIT

MacIT on Twitter: https://twitter.com/MacITConf #MacIT2015

MacIT on Facebook: https://www.facebook.com/pages/MacIT/151684994917868

Final Cut Server Mac OS X

Completely Reinstall Final Cut In OS X

I’ve seen a few instances where an upgrade caused Final Cut to run kinda’ strangely. To resolve, I’ve just been doing a quick reinstall of Final Cut. To do so:

  • First move the Final Cut application to the trash (it’s in the /Applications folder).
  • From your home folder, go to ~/Library/Application Support and move the Final Cut folder in there into the trash.
  • From Library/Preferences in your home folder, put com.apple.FinalCut.plist, com.apple.FinalCut.LSSharedFileList and com.apple.FinalCut.UserDestinations.plist in the trash.
  • Finally, trash com.apple.FinalCut directory from ~/Library/Caches.

Once done, go back to the Mac App Store and reinstall Final Cut and open it. Those folders you just tossed out will get re-created. Your toolbars and other customizations are likely to be gone, so you’ll have to spend a few minutes getting your workspace back to the way you had it, but if Final Cut was acting oddly it should be back to normal.

Good luck!

Active Directory Mac OS X Mac OS X Server Mac Security Mass Deployment

Destroy Open Directory Servers Using The Server App

You can destroy an LDAP server using the Server app (and still using slapconfig -destroyldapserver). To do so, open the Server app and click on Open Directory. Then click on the Open Directory server in the list of servers.

Screen Shot 2015-01-16 at 11.22.15 PM

When prompted to destroy the LDAP Master, click on Next.

Screen Shot 2014-12-15 at 10.09.56 PM

When asked if you’re sure, click Continue.

Screen Shot 2014-12-15 at 10.10.00 PM

When asked if you’re really, really sure, click Destroy.

Screen Shot 2014-12-15 at 10.10.03 PM

Wait.

Mac OS X Mac OS X Server

Use a Keystroke to Maximize Finder Windows In OS X

The Maximize jelly in OS X that makes a screen the full size that the screen should be is great. The command that it runs is called Zoom. There’s another one to minimize screens, as well. The minimize has a keystroke mapped of Command-Shift-M. I use it all the time. You can also map a keystroke to make the windows bigger, invoking that Zoom command. Sometimes, when I plug and unplug the monitor on my desk at work at take my laptop home, I end up with windows stuck where the jellies (what those little buttons in the top corner of the screen are called) are above the menu bar and I can’t click them. So the keystroke helps as it basically resizes for me.

To map the keystroke to maximize a screen, first open System Preferences from the Apple menu and open the Keyboard System Preference pane. Then click on the Shortcuts tab and then App Shortcuts in the list of shortcuts. Then click on the + button at the bottom of the list. By default, you’ll see All Applications as the Application your keystroke will work in, but if you only need to do this in certain apps, you can select one instead.

Screen Shot 2015-01-15 at 8.32.46 AM

Next, in the Menu Title field, enter Zoom which is the name of that command from earlier. Click in the Keyboard Shortcut field and enter a key combination you’d like to use. On mine it’s mapped to Control-Command-M. Then click on the Add button.

Nice and easy. You might have to restart apps to pick up the new keystroke but usually you do not. Enjoy.

Oh, and if you’re interested in scripting this as part of your imaging process, see Defaults & symbolichotkeys in Mac OS X.

On the Road

A Glympse Into Where You’re At

When you’re flying, you might find that you’d like to let someone know here and there where you’re at. For example, someone who’s supposed to pick you up at the airport. Or someone who you’re supposed to visit when you arrive at your destination. So there’s a pretty cool new tool called Glympse. Using Glimpse, you can send an invite to someone you’d like to see your travel times; these are known as glympses.

Screen Shot 2014-12-31 at 1.47.37 PM

Once you send an invite, your friends can click the link and see down to the minute stats of when you’ll be at your destination. And they can keep the screen open for as long as they wish.

Screen Shot 2014-12-31 at 1.49.04 PM

iPhone Wearable Technology

Sync A FitBit With Apple’s Health App

By default, the Fitbit tech stack doesn’t sync with the Health App on an iPhone and iPad. But never fear, as with basically everything else on this planet, there’s an app for that!

From the iOS App Store, search for Sync Solver. Using this app, you can then link your Fitbit account to your Apple Health app.

IMG_2578

 

Once linked, you can use the Sync Now button to do an immediate data sync or you can do an automatic sync at midnight every night. And presto, you then see your Fitbit data in the Health app. Happy waiting for the Apple Watch to come out!

Articles and Books Bushel Consulting Mac OS X Mac OS X Server Mac Security Mass Deployment personal

Childproof Your Mac

When I put a computer in my daughters room, I soon realized I could no longer watch over her shoulder as she worked away at school games, Minecraft and of course Civilization (after all, that was my first game). So much as I wrote an article a long time ago about child-proofing an iPad, now I’m writing about child-proofing a Mac.

For me, I find that child-proofing is a bit like taking my kid to McDonald’s. I said never ever ever ever would I do this and then… Well, peer pressure, ya’ll… So if I have to do it, I figure someone else might. So here’s a quick and dirty guide to doing so. The gist of this guide is to continue using the same admin account that was created when you setup the computer initially. But to also create another account for the child, one that has some restrictions to keep them in a customized user experience. This might be to keep them out of things they try to do on purpose, keep them from accidentally finding some things they shouldn’t or maybe just to customize the user experience to make the computer easier to use (after all, if they can’t remove Minecraft from the Dock, they can’t come crying when they can’t find it.

Create a Managed Account

Most of the work that needs to be done, can be done within the System Preferences. This is available under the Apple menu as System Preferences…

Screen Shot 2014-12-26 at 5.09.00 PM

Once open, click on the Users & Groups System Preference.

Screen Shot 2014-12-26 at 5.09.41 PM

At the Users & Groups System Preference pane, click on the plus sign (+).

Childproof_Managed_Account

 

At the new account screen, choose “Managed with Parental Controls” in the New Account field. Then provide the child’s name in the Full Name field and an Account Name will be automatically created (note that I shortened the name in this example to make it easier for the child to log in).

Assuming your child doesn’t have their own iCloud account, set the password to “Use separate password” and then type it in. Once you’re happy with these settings, create the new account, which can be managed with Parental Controls by clicking on the Create User button.

Childproof_User

Restrict Applications and The Dock

Once the account is created, click on the “Enable parental controls” checkbox and then on the Open Parental Controls… button.

Screen Shot 2014-12-26 at 5.01.32 PM

At the Parental Controls System Preference pane, you’ll have a few options.

  • Check the Use Simple Finder box if you’d like the user to have a limited user experience (no command keys, only certain windows open, etc). I would usually only recommend doing this if you have very small children (like maybe pre-school age). I usually like them to be able to do as much as possible to foster the whole hacker mentality nice and young!
  • Check the box for Limit Applications if you’d only like certain apps to open. This is right up front on the main screen because it’s kinda’ important. Use the Allowed Apps section to select which apps can and can’t be opened (if there’s a checkbox beside the app name it can be opened by the user).
  • Use the Allow App Store Apps drop-down list to to set an age ranking minimum. These are available in 4+, 9+, 12+, 17+ and All (which basically disables restrictions).
  • Check the box for “Prevent the Dock from being modified” if you would like to restrict the new account from being able to edit the Dock. I usually wait for this, as I like to customize the Dock by putting the apps I want the child to open into the Dock. To do so, skip now, log in as the new user, log out and then customize the Dock. Once you’re done, log out, log in as an administrative user and then check the box.

Web Restrictions

Next, click on the Web tab. Here, you’ll effectively have 3 options: don’t restrict any content, let Apple try and block inappropriate content and build a whitelist of allowed content (with all other content blocked). Now, it’s worth mentioning that there can be an annoying element here, which is that if a site needs to be opened up for access, a child might come bugging you. But I like that, so I’m configuring this.

Screen Shot 2014-12-26 at 5.01.40 PM

Options include:

  • Allow unrestricted access to websites: Don’t block any content. Allow unfettered access to all websites ever.
  • Try to limit access to adult websites automatically: Click on the Customize button to add white and blacklisted sites, or sites that were accidentally restricted or allowed that maybe shouldn’t of. Or, if you want to restrict access to a specific web-based game that has become problematic.Screen Shot 2014-12-26 at 5.46.23 PM
  • Allow access to only these websites: This option allows access to only the websites you allow access to. A word of warning here, a lot of sites pull content from other sites, which can be kinda’ annoying…

Note: It’s worth mentioning that I discovered a few websites I’d of never tried to use in the allow list, so worth checking them out to see if your child will dig on some of these sites!

Once you’re satisfied with the options you’ve configured, click on the People tab.

Configure Who Your Child Can Communicate With

At the People screen, you can configure who the person using the Managed Account can communicate with. Here, restrict access to Game Center, restrict who the account can send and receive mail with and of course, who the account can use the Messages app with.

Screen Shot 2014-12-26 at 5.02.09 PM

The above options include the following:

  • Allow joining Game Center multiplayer games: Uncheck this box to restrict the user from playing any multiplayer games that use Game Center to connect people. If the user is using a game that doesn’t integrate with Game Center then they would still be able to use that game to enter into a multi-player game.
  • Allow adding Game Center friends: Uncheck this box to keep the user with the Managed Account from adding any new friends in Game Center.
  • Limit Mail to allowed contacts: Only allow people in the Allowed Contacts section to exchange emails with the user of the account.
  • Send requests to: Define an email address that can receive a contact request and approve it. I use this so that when my daughter needs something she can let me know.
  • Limit Messages to allowed contacts: Only allow people in the Allowed Contacts section to message with the user of the account.
  • Allowed Contacts: Use the plus sign at the bottom of this section of the screen to add new contacts and the minus button to remove contacts.

Note: Apple rarely uses the word restrict. Instead, they prefer to allow things to happen by default and then let you disallow these features. Basically the same thing, but keep this in mind when you’re configuring accounts as sometimes you can accidentally click the wrong thing if you’re not accustomed to such double-negativery. 

Once you have configured who the user of this account can communicate with, click on the Time Limits tab.

Configure Time Limits

Time limits are used to restrict what times the user can use the computer as well as how long per day that the user can actually use the computer. The options available include:

  • Limit weekday use to: Define a maximum number of hours that the managed user can use the computer on a given workday between Monday through Friday. This can be anywhere from half an hour to 8 hours of time.
  • Limit weekend use to: Define a maximum number of hours that the managed user can use the computer on a given Saturday or Sunday. This can be anywhere from half an hour to 8 hours of time.
  • School nights: Define the time frames where the computer cannot be used by the Managed User on Sunday through Thursday evenings. For example, the below screen shows that on weeknights, the Emerald Edge user can’t use the computer from 8PM to 6AM.
  • Weekend: Define the time frames where the computer cannot be used by the Managed User on Friday and Saturday nights. For example, the below screen shows that on weeknights, the Emerald Edge user can’t use the computer from 8PM to 6AM.

Screen Shot 2014-12-26 at 5.02.40 PM

Time limits are the only things that matter for some who like to physically sit with a child while they use a computer, as you might just want to keep the child from waking up in the middle of the night and accidentally seeing something that scares them. But for many, time limits won’t be enough, as kids might spend hours gaming or doing homework unmonitored.

More Stuffs

Next, click the Other tab. Here, you’ve got the miscellaneous restrictions that really don’t fit anywhere else in Parental Controls. The options available include the following:

  • Disable built-in camera: Turn off the built-in camera for the user. Note that third party cameras wills till work for the user.
  • Disable Dictation: Turn off Dictation/Speakable Items for the user. Note that apps like Dragon Naturally Speaking can still be used.
  • Hide profanity in Dictionary: Use this option to disable any articles in the Dictionary app that have profanity in them.
  • Limit printer administration: Don’t allow the user to manage printers. Note that if you do this, you’ll want to install any Bonjour printers first.
  • Disable changing the password: Don’t allow the user to change the password.
  • Limit CD and DVD burning: Disable any optical media writing for the Managed Account.

Screen Shot 2014-12-26 at 5.03.09 PM

Note: I know I said earlier that Apple rarely says restrict or disable. They will get around to fixing this screen eventually… ;)

View Logs

Once you have configured parental Controls, click on that Logs button in the lower right corner of the screen. Here, you’ll see the following:

  • Show activity for: Indicate the period of time to show logs for.
  • Websites Visited: A list of the websites accessed by the user of the managed account. Note that no third party web browsers are shown unless they use Apple’s webkit (which is basically not really any).
  • Websites Blocked: A list of any websites that were blocked while attempting to access them.
  • Applications: A list of the applications used by the user of the managed account.
  • Messages: Transcripts of conversations sent and received using the Messages app. Note that any third party chatting apps aren’t logged here.
  • Clear Log: Deletes the log. Use this after you’ve checked the behavior and wish to have the next time you check only show you what’s changed.

Screen Shot 2014-12-26 at 5.02.49 PM

And that’s what you can do with Parental Controls. But there’s more, which we’ll look at shortly. When you click out of a field, the settings are changed in a System Preference, so you should be able to just close the window and have your settings persist.

Conclusion

We’ve gone through creating a new account, restricting access to what that account can do and how and when to use these options. But there’s much, much more than we can cover in this article. There are tons of other restrictions that don’t fit into these basic options, accessed either through what are known as managed preferences or via profiles, which can easily be created by tools like Apple Configurator, Profile Manager and 3rd party mobile device management tools such as Bushel.

Screen Shot 2014-12-26 at 6.13.22 PM

Ultimately, I can pretty much break out of about any managed environment you put me in. And in the age of YouTube, chances are that your child has many the same materials I’ve either presented, written or that others have written. So please don’t consider these options as much more than just a general guideline unless you’re using a Device Enrollment Program-enabled device.

Anyway, good luck, and you’re a good parent for caring.

Mac OS X Mac OS X Server Mac Security Mass Deployment

Show Volumes On The OS X Desktop

I spent a lot of time on Windows a long time ago. And one of the things I got used to was having hard drives on the desktop. And I liked it. So when Apple took them off the desktop I started running these commands on new accounts only own systems. The other day when I gave them to someone, they said I should post them. So here goes…

To show removable media (cards, etc):

defaults write com.apple.finder ShowRemovableMediaOnDesktop -bool true

To show external hard drives (USB, Thunderbolt, firewire, etc):

defaults write com.apple.finder ShowExternalHardDrivesOnDesktop -bool true

To show mounted servers (AFP, SMB, NFS, etc):

defaults write com.apple.finder ShowMountedServersOnDesktop -bool true

To show internal hard drives:

defaults write com.apple.finder ShowHardDrivesOnDesktop -bool true

iPhone Mac OS X Mac OS X Server Mac Security Mass Deployment

The 12 Days Of Krypted

Merry Christmas ya’ll!

On the first day of Christmas my true love gave to me one 32 gig iPad

On the second day of Christmas my true love gave to me two bash one-liners

On the third day of Christmas my true love gave to me three Red Hat servers

On the fourth day of Christmas my true love gave to me four email blasts

On the fifth day of Christmas my true love gave to me five retweets

On the sixth day of Christmas my true love gave to me six regular expressions

On the seventh day of Christmas my true love gave to me seven lines of perl

On the eighth day of Christmas my true love gave to me eight app store apps

On the ninth day of Christmas my true love gave to me nine AWS instances

On the tenth day of Christmas my true love gave to me ten Active Directory forests

On the eleventh day of Christmas my true love gave to me 11 crappy python scripts

On the twelfth day of Christmas my true love gave to me 12 craft brews

xmas-ornament-computer-ram

Mac OS X Mac OS X Server Mac Security Mass Deployment

Disable Natural Scrolling With a Script

I guess it’s a sign of my age. But I can’t stand that whole natural scrolling thing. So I disable it as a part of my imaging process. To do so, set the com.apple.swipescrolldirection global domain to false using defaults, as follows:

defaults write NSGlobalDomain com.apple.swipescrolldirection -bool false

To set it back:

defaults write NSGlobalDomain com.apple.swipescrolldirection -bool true