+ Post New Thread
Page 2 of 2 FirstFirst 12
Results 16 to 20 of 20
Mac Thread, Macs drive mapping in Technical; Originally Posted by DMcCoy Yes permissions remained the same, as long as users have read (this folder only) on the ...
  1. #16

    Join Date
    Jul 2009
    Location
    Wolverhampton
    Posts
    116
    Thank Post
    6
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Quote Originally Posted by DMcCoy View Post
    Yes permissions remained the same, as long as users have read (this folder only) on the (new year specific) share root to traverse to their folder it should work. I already had this in place on each folder anyway as while you don't need it on windows to map the folder it can break things like office when it starts are the root of the share.

    Should anyone be using MS office on Mac there are other folders that need to be created to allow it to save and overwrite files. I can provide these details if anyone needs them
    Yes permissions remained the same, as long as users have read (this folder only) Which folder, the users home folder? or something else?

    on the (new year specific) share root to traverse to their folder it should work. is this where the share for the students year is?? ie \year9\

    we just want to clear up what this means

    thanks

  2. #17
    DMcCoy's Avatar
    Join Date
    Oct 2005
    Location
    Isle of Wight
    Posts
    3,456
    Thank Post
    10
    Thanked 494 Times in 434 Posts
    Rep Power
    112
    Quote Originally Posted by fil_b View Post
    Yes permissions remained the same, as long as users have read (this folder only) Which folder, the users home folder? or something else?

    on the (new year specific) share root to traverse to their folder it should work. is this where the share for the students year is?? ie \year9\

    we just want to clear up what this means

    thanks
    Yes, the Year9 folder. Students will already have correct permissions on their home folder. If they can already see the Year 9 folder from windows then you won't need to do anything.

  3. #18


    Join Date
    Mar 2009
    Location
    Leeds
    Posts
    6,589
    Thank Post
    228
    Thanked 856 Times in 735 Posts
    Rep Power
    296
    i just gave in and went to \\server\%username% shares as its quick to change in ad (about 1 min per year) and wrote a quick and dirty script that shaed the individual folders again couple of mins per year

    using command prompt on the server with your user shares go to a year group say 2008 type
    Code:
    dir /b>users.txt
    then edit the following batch file and run from the 2008 folder

    Code:
    for /f %%u in (users.txt) do net share %%u$="d:\users\2008\%%u" /grant:everyone,full /cache:none
    works on 03/08 doubt it on 2000

  4. #19


    Join Date
    Mar 2009
    Location
    Leeds
    Posts
    6,589
    Thank Post
    228
    Thanked 856 Times in 735 Posts
    Rep Power
    296
    tested win 2003 r2 and osx 10.5.8

    download the zip file below

    http://www.stedscarpics.net/files/apple%20schema.zip
    (bear in mind this has non necessary data as it was made for me so contains all the steps i used to get the final version and the pdf detailing how)

    extract the osx schema add.ldif to servers c drive and rename osx.ldif

    open up a command prompt and navigate to c: and enter the following (exactly as below except changing DC=school,DC=local to the appropriate domain name (it goes through the file and changes all dc=x to dc=school.local when the command is run))

    Code:

    ldifde /j . /k /i /f osx.ldif /v /c “DC=X” “DC=school,DC=local”


    that adds the necessary info to the ad schema to support managing apples

    next you need to add the schema management mmc (if its not already there run)

    Code:

    regsvr32 shhmmgmt.dll


    check for various attributes called apple-whatever

    while in there find the mac address attribute double click it and select index this attribute. close the mmc down

    Open up gpmc and edit the default domain policy. computer config-windows settings-security settings-account policies-passwords policies and set Store passwords using reversible encryption to enabled

    thats it on the pc side of things everything else is mac based.

    set up a mac and install all the software on it you want (so remote desktop, smartboard, open office, scratch etc)

    now you need a few admin/cloning programs
    server admin tools from apple (run system update after installing this to get the most up to date version)
    carbon copy cloner (ccc for short)Carbon Copy Cloner - Home allows you to clone one mac to another (images are NOT hardware dependant so one image works on macbooks imacs mini macs etc)
    if you want to clone bootcamp then you need winclone Download Winclone 2.2 - Easily backup and restore a bootable Windows partition on Mac OS X - Softpedia and some other small file it will ask for when you run it and link to the download

    (i will cover winclone later when ive finished testing it)

    ccc after you are happy with your mac and before you domain it you want to clone it. Now you can dump an image to a network drive (usually 10-20gb) but you cant restore from one needs to be a mac formatted drive (fat32 might work). The software is fairly obvious what you want to do is clone macintosh hdd to a read only image file.

    once the mac is cloned its time to network it. First make sure the clock is the same on both as its quite fussy. Then go to accounts in system preferences and logon options and set it to type username and password and untick autologon . Now go to sharing and give the pc its mac name this wants to be different to the windows name (i usually call the mac name mac001 and pc name mac01). Now load finder and go to utilities directory utility click the show advanced settings button go to services (if the padlock is closed click it and insert password). Double click active directory click the administrative tab and tick allow administration by. There should be a box that says enterprise admins/domain admins add any other admin users you need so teachers etc. in active directory domain fill in domain name and click bind. Fill in username / password for domain. Click the ok box then lock the padlock. if you go back to the directory servers tab your domain should now be listed and have a green light. You can now log on as whoever you choose but unless the users have $ shares their userareas wont work and atm no setting are applied.

    you should of installed workgroup manager now and be a part of the domain if not do that.

    log on as a domain admin and load finder and go to applications then server. Drag workgroup manager to the dock bar then load it. When it pops up about authentication ignore that and go to the top bar and server view directories. it will complain that "you are working with a local configuration database . . . " tick the do not show again box and ok. In the top right hand corner is a padlock, click this and fill in domain credentials at the top of the window is should now say authenticated as username to directory: /active directory/all domains. Now in the left window select the user group icon (looks like 3 people) then select staff or pupils (it helps a lot if you create a pupil group that contains 2003/4/5...... unless you need to manage them individually) then at the very top click preferences. The right hand pane will now show the options you can change. So for instance go into system preferences select manage always and lock them out of the system preferences by clicking show none (which dosent actually show no options but when they log in greys them out) cllick done then save. Now just go through the other options restricting the dock bar etc and making sure to set the proxy settings for EVERY protocol as there is no blanket setting.

    most of the workgroup manager setting are fairly obvious so its just ba matter of playing till you get it how you want it. and im still not 100% happy with my setup but im waiting for feedback and at least the system is now usable.

    notes (i posted this elsewhere on a private forum so language is a bit slack in places sorry)
    i haven't tried this on 08 but i see no reason why it shouldnt work but if anyone uses the ldif file DONT DO IT ON A LIVE ENVIRONMENT first try it on a vm/testrig, As mentioned im still leasring the mac biy myself at the end of the day im a pc man (and windows at that) i can get by in osx/linux environments but they arnt my forte so again if you follow these instructions and it all goes wrong (its not happened to me on the 3vms/test systems and 2 live systems ive tried it on but never say never) on your own head be it

  5. #20
    ceebster's Avatar
    Join Date
    May 2009
    Location
    The World
    Posts
    104
    Thank Post
    5
    Thanked 1 Time in 1 Post
    Rep Power
    0
    Quote Originally Posted by DMcCoy View Post
    Yes, the Year9 folder. Students will already have correct permissions on their home folder. If they can already see the Year 9 folder from windows then you won't need to do anything.
    sorry to ask - which permmsions will your users have and the share?

SHARE:
+ Post New Thread
Page 2 of 2 FirstFirst 12

Similar Threads

  1. Drive Mapping woes
    By korifugi in forum Wireless Networks
    Replies: 1
    Last Post: 16th September 2009, 01:43 PM
  2. Citrix Client Drive Mapping
    By Geoff in forum Thin Client and Virtual Machines
    Replies: 15
    Last Post: 27th May 2009, 02:25 PM
  3. Mapping H Drive
    By LeonieCol in forum Wireless Networks
    Replies: 5
    Last Post: 20th May 2009, 12:35 PM
  4. CC3 - how is drive mapping actually done?
    By Nozza in forum Network and Classroom Management
    Replies: 18
    Last Post: 7th April 2009, 04:26 PM
  5. Help with drive mapping script edit
    By Andie in forum Scripts
    Replies: 2
    Last Post: 6th October 2008, 09:05 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •