31st July 2008, 01:27 pm
These are the steps to adding a Mac 0SX 10.5 Leopard Server to ADS
Prepare DNS
- Get a Static IP and have IUB DNS-Admin dns-admin@indiana.edu do only the reverse DNS entry for it. This is the same thing you should do for any Windows server before you add it to ADS. They don’t need to know it’s a Mac that may just confuse things. The DNS entry must have ads.iu.edu as the suffix then use campus-department-servername naming convention for the name of your machine. So that your FQDN might look like bl-dept-server.ads.iu.edu. We haven’t tried any other naming conventions with 10.5 but this is what is needed for 10.4 systems and it works with 10.5 systems. In other words don’t try to use indiana.edu in the FQDN of your server.
- Create a machine account in ADS for your server and put it in an OU that you control.
- Contact ADS ADMINISTRATOR <ads-admin@iu.edu> and Cc LSP Services <lsps@indiana.edu> and let us know you need to add a Mac Server (only needed for servers) to ADS. Give them the IP address and the DNS name you will be using. (May not need to do this step with 10.5 but It can’t hurt if you do.)
- In the Terminal run these commands to check DNS BEFORE installing your 10.5 server. If DNS isn’t working properly don’t building your server you WILL HAVE PROBLEMS.
dig bl-server-dept.ads.iu.edu
This should return the IP associated with the FQDN.
dig -x IpAddress
This should show you the FQDN associated with the IP.
If all that matches then you are good to start building your Server. Your OS drive/partition should be separate from your data partition(s). Use the Advanced option when installing don’t use any of the other 2 options.
- Once the server is built run hostname (as below) then the above commands to be sure things work on the server.
hostname
This should come back as the FQDN of your server something like bl-server-dept.ads.iu.edu. If this doesn’t work stop here and resolve your DNS issues.
First Boot
When the server first starts up you will get a notice that you need to enable services in Server Admin. You can enable the Open Directory service but not configure it. Don’t start any services yet.
Do all your software updates before configuring the server or binding it to ADS. Also run Disk Utility to repair permissions on your OS drive after you have installed all the updates (this will take a while). After the updates are done you could start DNS on your server and have your server do it’s own DNS only for it’s self. Don’t do this if you don’t know what you are doing. Also don’t try running your own DNS until you have the server fully updated. Now you can bind your Server to ADS.
Connect your server to ADS
- Open Server Admin and switch to the Open Directory service and the Settings option.
- Click the Change button next to Role and change your server to being part of another directory service and follow the instructions. You will probably then need to click the Open Directory Utility… button.
In Directory Utility
- Change the view to Advanced.
- Unlock the lock.
- Click the Services icon.
- Open the Active Directory service.
- Open Show Advanced Options.
- Select the Administrative tab.
- For the Preferred domain server enter one of the AD domain controllers. You can use dig in the Terminal on ads.iu.edu to find the FQDN of one of the DCs.
- Set your Active Directory Domain: to ads.iu.edu
- Set the computer ID to the first part of your FQDN like bl-macsrv-dept
- Click the Bind… Button and authenticate as needed. You may need to first authenticate to the local machine then use IU credentials to add the machine to ADS.
- It could take a minute or more for it to bind. You should be prompted to decide if you want to use an existing machine account. This is the account you created in ADS earlier.
- Once the machine is bound click the OK button.
- Be sure the Enable check is placed next to Active Directory.
- Click the Apply button.
- Select Search Policy icon and see that Active Directory is in the list of Directory Domains.
30th July 2008, 12:50 pm
We have been migrating the auditorium PCs over to Windows Vista. MSB26 and MS326 have been running successfully for almost a month now. The next to convert is the PC in Emerson Hall (slated for 31JUL08 or 01AUG08).
30th July 2008, 12:45 pm
We have successfully installed a New Pharos server that has been running for a few months now that has allowed us to create queues for the new MAC stations on the first floor and will allow us also to successfully have print queues for the Windows Vista PCs.
30th July 2008, 12:26 pm
Contact: Watson Prunier
For the last few months we have been developing a web-based tool to easily manage the Edactic Program. The first couple of months were a challenge because FoxPro (program that was used to design Edactic) is a bit antiquated. So, the tools available to integrate the program were few and far between. So, we had to purchase the latest version of Visual FoxPro (v.9) to develop tools to allow us access the data and create users.
We are at the stage where we can create user folders and assign permissions. We can also remove any blank records from the users’ list. Now we are working on the routines to insert the new user into the users’ table after creating their folder in their respective directory. Also, the program automatically creates a backup of the table (with a timestamp and name of person working on the file) before any changes are made.
The next stage is to programmatically modify the automap.txt file. This, too will be backed up before being edited.
Other features will include:
- Develop database information to be able to programmatically recreate data tree.
- Separate table to monitor list of users.
- Separate table to monitor list of objects (folder names).
- Separate table to monitor list of user’s access to objects.
- Ability to create new folder groups.
- Ability to add other users to view folders.
More to be added later.
29th July 2008, 02:57 pm
Update a few user accounts in Angel and enrolled a few users into Class of 2012.
Kent Redman, wanted us to create a course for Fort Wayne Medical Genetics 682 course with himself as the instructor.
29th July 2008, 02:00 pm
Contact: Michael Taylor
ET is in the process of learning how to manage Mac computers in a public environment and we have been increasing our knowledge on how to match the policies enforced on our Windows stations. Carol Thorne and myself have attend a couple of Mac classes and have learned a great deal so far. There are a few different management options we currently know about. We’ve also, installed and configured a Mac 0S X Leopard Server with Watson, and have already begun the process of implementing several of the following server abilities:
• Remote installation and configuration of the server OS.
• Troubleshooting DHCP DNS and network configurations.
• Firewall setup.
• Account creation and administration
• Open Directory (LDAP) and Kerberos configuration for single sign-on.
• Integration into Active Directory enviroments.
• Configuring and troubleshooting AFP, SMB and other file-sharing services.
• Managing user, group and computer accounts using Workgroup Manager.
• Managing web services including wiki/blog and calendar server.
• Implementing NetBoot and NetInstall services.
Image creation for Macs info:
Here is the definitive info on building a Mac system for general distribution to your other Macs. It’s not a simple process but Mac support users should be able to learn it and there’s lots of online help.
First go to macenterprise.org and watch the webcast on InstaDMG .
AFP548.com has all the tools to learn how to do it.
25th July 2008, 11:01 am
Contact: Michael Taylor
Jim would like us to again work with the Bi-annual Scientific Sessions project:
Comments below:
What we did in 06 is in the Iusm infoshares group under “Public Resources”. It’s essentially a drop box with instructions to leave their contact info if they don’t sign into ANGEL (because a number wouldn’t have ANGEL accounts).
We need some way to provide a name and email prompt that they’d have to answer before submitting their abstract. Maybe also change it to peer review under access so they could see other submissions. And then suggest to the dean’s office they create a folder of accepted submissions, so those submitting could see when their submission was accepted.
24th July 2008, 01:09 pm
Sometime around July 16th, someone or something altered the A-Z branding on the libraries A-Z site. ET was asked to correct the icon/logo look on the website so that it reflects the proper look. I did a little editing work and put together what I thought should be a decent and accurate? branding for the site. Upon further review, Jim Morgan mentioned that since Clarian set up their own A-Z a year or two ago, that we could have taken out their logo at that time. It should still be IUSM libraries however. I will now just remove the Clarian logo and have it to only reflect IUSM Medical Libraries.
This raises the issue that since we’ve made a transition from our old RLML website to the new IUSM sitemaker uniform library website, we really no longer have a defined “RLML logo”. It doesn’t matter to me one way or the other, just noting it for future reference to the powers that be.
24th July 2008, 10:45 am
Contact: Eric Cox
Reports and checklists that IUSM (students, faculty, residents, etc.) use in CERTTS are becoming increasingly complex. As we adapt the reports to the needs of IUSM, these reports are increasing the load to the database. Using AJAX (a compilation of several different programming languages) I can minimize the processing load and redundant requests to the server. In time, every report within the CERTTS system will be modified and updated using AJAX. I’ve currently used the BCS Matching tool report as a developmental test for migrating all forms reports. The matching tool has been modified and testing completed. Although this form alone won’t make much impact to relieving the load on the database, as more and more forms are updated to AJAX, processing and load will be much lighter.
24th July 2008, 10:41 am
- 7/29/2008: Waiting for assessment criteria to be established.
- 7/24/2008: gathering preliminary documentation for Dr. Willis to review.
Contact: Michael Bangert
Dr. Willis is the competency VI director (The Social and Community Contexts of Health Care), and I met with her on July 23 to demo the CERTTS system. She is pursuing a way to assess medical students over the entire four years of medical school and thinks that CERTTS could be further developed towards this goal. Currently, CERTTS reports assess on a per-clerkship basis and the clerkship directors use the reports to verify that the students are achieving a minimum exposure to clinical encounters as defined by IUSM clerkship directors. Dr. Willis is also very involved with the new rural health track being offered through IUSM, and along with Dr. Johnson in Terre Haute, wants to develop CERTTS forms and reports that meet the unique needs of this program. This is a developing project that also involves ANGEL and ePortfolio initiatives.