Month: July 2007

Mac Configuration without OS X Server

Peter GodwinLeave a comment

I recently set up a classroom of macintosh desktops (iMacs!). As part of it it I needed a way to (i) join the Active Directory Domain (ii) have a default dock and (iii) map network drives. Figuring that this would be useful for others I thought I’d publish the instructions.

Most of what is mentioned here can be done from the command prompt, or through the GUI.

If you are using the GUI the simplest way to access any of these directories is to use the Go Menu in Finder –> Go To Folder, or press Shift + Command + G.

Take note of the subtle difference between ~/Library and /Library. The first is the current users Library folder and the other is the system wide version.

Initial Configuration

  1. Install and configure all software packages which will be used
  2. Create a new local account
  3. Log in with the new account and configure the account how you see fit (Dock etc)

Modify the Scripts

  1. Open the Mac Deployment package [no longer available]
  2. Open student.sh
  3. Change set localAdmin = administrator to whatever the local administrator account is called
  4. Modify mountdrives.sh to reflect the drives you wish to mount (by default, when the machine is bound to the domain, it will automatically map the users home drive location from AD). You will also have to ensure that a directory is created for each drive mounted.

Deploying the scripts

  1. Go to /Library/
  2. Create a new folder named Deployment
  3. Copy the contents of the Scripts folder (from the mac deployment package) to /Library/Deployment/
  4. Copy the contents of the Bin Folder (from the Mac Deployment package) to /Library/Deployment
  5. Copy ~/Library/Preferences/com.apple.dock.plist to /Library/Deployment/
  6. Go to system preferences –> Accounts –> Login Items
  7. Add /Library/Deployment/Startup.app to the Login Items
  8. Copy ~/Library/Preferences/loginwindow.plist to /Library/Deployment/

Joining the Domain

  1. Load /Applications/Utilities/Directory Access
  2. Tick Active Directory then press Configure
  3. Show the Advanced Options
  4. Choose Create mobile account at Login
  5. Under the administrative tab tick the allow administration by tick box and add your network administration accounts, as well as any other group who should have local administration privileges on the computer.
  6. Give the computer a name and press the Bind Button –> type your network administrator username and password
  7. Press OK
  8. Now press the Authentication tab
  9. Ensure that /Active Directory/All domains is in the list – if not press add and add it to it.
  10. Press apply.
  11. You may also want to change the way the machine logs in. This can be done from the accounts preferences pane in System Preferences.

Creating a login hook

  1. Load LoginWindow Manger – it can be found in the Resources folder of the deployment package or downloaded from http://www.bombich.com/
  2. Tick Run this shell script on login type: /Library/Deployment/student.sh
  3. Press Apply
  4. Exit the program

Finishing up

Restart the computer and try logging in as a user. If all went well the drives should all be mapped and working properly.

EDIT: Well I got linked! Didn’t expect that. I’ll add my write up on making disk images hopefully tomorrow. If anyone has any questions or comments please feel free to post them. I’ll try to answer as many as possible.