##osx-server

Firefox 37, ahoy!

I'm working with a shared folder with both AFS and SMB users. I've created a user group called Office Group and used the server admin tools to give read/write persmissions to that group. I made sure they are inherited.

But I see that when I move a directory into the shared folder hierarchy using my admin account, the folder's ACL remains untouched.

This might be the cause of the issue where User 1 (a mac/AFP user) creates a folder and User 2 (A SMB user) cannot access it,

although from what I've read, User 1's file should inherit the inheritable ACEs from the top level shared folder

Is there any way to force the same ACL on all files in the sharepoint?

find ./ f -exec [command] {} \;

or just chmod them all...

So I could chmod everything in the /Share hierarchy to get everything under the same ACL

gneagle: Maybe try booting to recover and installing the package from an afp or http resource. See if it still corrupts... I prefer this method over TDM in any case.

depending on the complexity of the acl you could just copy the results of it :P

chilcote: Booting from what?

recovery

forgot the 'y'

recovery hd doesn't have /usr/sbin/installer

it doesn't? Coulda swore I tried that...

nickander: the problem seems to be when a remote user moves a file from their desktop onto the Share. The file retains the same permissions it had on the user's desktop.

I'll double check, but pretty sure

It's highly likely I'm crazy

No, it;'s there

I think I typed "which installer" and saw it complain

nickander: I suppose I could write a script that constantly runs chmod on the whole directory tree to normalize the ACLs on all files, but that seems like a stretch

which which

Turns out "which" is not present!

nothing like metal and imaging computers for a tuesday afternoon

\m/

Good day gang

chilcote: Testing now. Looks promising at least...

I’m having an issue getting Casper Imaging to properly install the Recovery partition. I used the latest Install OS X Yosemite.app with AutoDMG 1.5.3 to make the base image. I made the NBI using the latest AutoCasperNBI. I’m using Casper 9.65. Has anyone else seen this issue?

gneagle

gneagle_ sweet

I had a workflow back when where we were gonna replace deploystudio with just installing a few pkgs via recovery.... don't know what happened with that. I think they are using casper imaging now...

I can see a move from Netbooted imaging tool to a customized recovery partition given recent developments

heck you could write DSR to the Recovery partition

bruienne: of course then then issue is getting the updated Recovery Partition in place

chicken, meet egg

gneagle_: indeed, that was my next line - that would entail staying in step with Apple

but then we have to do that with DSR as well

More than that

font question - installing TTF family via Munki?

fonts are files

you know how to install files...

just put your lips together...

but is it enough to drop them in /L/Fonts, or do any additional steps need to happen in order for them to be available to users

zero point zero

steps

Just install them to /Library/Fonts

been about 6 years now since I had to push fonts

one might get into the argument of "dear god, why TTF?!" but hey, not your problem

drop in /L/Fonts and done

kewl - thanks all for the sanity check.

I'm just doing what marketing wants :)

diwanicki: As long as you're licensed for it...

foigus: luckily, they chose a royalty free one...

Doesn't necessarily mean it's legal for the entire organization

I don't think you can get a license for pleasing marketing departments

Fonts have funky licensing

"xyz font is ok for personal use, but corp costs dollars"

"Pay $500 to license Harvey Balls for your entire organization."

Etc

hey, I was reading these chat logs and saw you all were talking about Recovery partition and AutoDMG earlier. Are others having issues with 10.10.2 and AutoDMG?

jamiejay: nope, just built a few for the early 2015 Macs

Hmm

Maybe it's just this particular computer I'm testing on then. I have the latest AutoDMG and just downloaded the latest 10.10.2 installer from the App store. The Recovery partition isn't being installed or is installing with issues. So i can't FileVault

what does the AutoDMG logs say?

*log

The logs say it works with no erros

errors

I made a new AutoCasperNBI recently too

I can try making another new NBI and Casper Imaging config to see what happens

jamiejay: what version Casper Imaging?

9.65

jamiejay: should be ok, Casper Imaging will ASR the AutoDMG OS.dmg including recovery partition.

Usually when I boot into netboot I open disk utility and reformat the drive. Should Casper Imaging properly partition and do all the CoreStorage stuff?

jamiejay: if you mount the AutoDMG OS.dmg, can you see a recovery partition under: diskutil list ?

jamiejay: it does as of 9.65.

@macmule, yes. diskutil list shows the recovery

after imaging if i open diskutil it looks like Corestorage is not enabled.

I have to run into a meeting. I'll make a new NBI and see what happens

Guys, would you advise using a Mac or windows server as a platform for JSS?

Sorry back

wegotoeleven: mac

Windows

wegotoeleven: or better, linux

There's no suitable Mac hardware

Mini is suitable

Mac Pro is suitable

Depends on scale.

In some people's opinions

We have an Intel Xserve...?

Neither is designed for installation in a server room/data center

wegotoeleven: perhaps ask in #jamfnation?

wegotoeleven: And that is at least four years old now

wegotoeleven: probably closer to five

Macmule: good call

yeah my answer would be neither, use Linux

but I don't use Casper

& Nick_ZWG would say docket

or docker even

xserves are great, and you can get parts on ebay for like super cheap. Put it in production!

Yo, gneagle_ you still there? That problem from earlier is really bugging me, do you have any useful resources I can study. I'm gonna get in early tomorrow and have a sneaky pop at it.

_nix: sounds like the local record for the user account was screwed

_nix: Still here; nothing new for you

wegotoeleven: If your only two choices are OS X and Windows to host your JSS, I'd go with OS X.

wegotoeleven: If Linux is one of your choices, I'd recommend Linux.

Rtrouton: we have a choice of any. We run a vmware environment and have a spare Xserve so the choice is mine. Our IT manager won't go for Linux however as he doesnt trust its stability. That, and he's no idea how to use it 😃

You mentioned about reading up on Directory services etc? macmule my master plan was just to purge the Mac of any local records for the user account, but there doesn't seem to be any trace of it anymore, at least I thought I got rid of it. I've got the home directory backed up, so if I can recreate the account, I can repoint it

rtrouton: why not windows?