[Casper] Request for Feature

Thomas Larkin tlarki at kckps.org
Mon Apr 7 10:04:59 PDT 2008 

Well,

We have building specific passwords for their subnets and you can change
the local admin account's password by a policy that is only assigned to
that network segment.  It may not be done exactly how you are imagining
it but it is currently possible with Casper.

The jamf binary has built in commands to change passwords.  This won't
really help at a directory level, but it will in fact help on the local
level.  You can then set different passwords to the local admin account
for the local administration on those subnets (organized by smart
groups) then create a policy as either a log in hook or a start up item
that it will change the local admins account password along with the
firmware password.

I have not extensively tested this out yet, but my trials so far have in
fact worked.  Here is a simple example script attached.  Once I get a
base generic image and go to full package deployment (hopefully
accomplish this over the summer when students are gone) I will then have
one generic password for one generic image, and then building level
policies that will set building level passwords which can be run as post
image actions or as log in hooks at the buildings them self.

Thomas Larkin
TIS Department
KCKPS USD500
tlarki at kckps.org
cell:  913-449-7589
office:  913-627-0351
>>> "Dorey, Dustin" <Dustin.Dorey at district196.org> 04/03/08 10:41 AM >>>
Not sure if anyone else has requested this before. Or if I'm just
missing something.  But it would be great if there was a way to set up
an admin to have access only to a certain group of machines.     i.e. we
have many different schools in our district and I would like it if our
building level admins had only access to the machines on their subnet or
if we could create a smart group that they were only allowed to
administer or something like that.

 

Dustin Dorey

Technology Support Cluster Specialist

ISD 196 Apple Valley, Rosemount, Eagan

14445 Diamond Path West

Rosemount, MN 55068

(952) 423-7971

dustin.dorey at district196.org

 


-------------- next part --------------
A non-text attachment was scrubbed...
Name: example.sh
Type: application/octet-stream
Size: 201 bytes
Desc: not available
Url : http://list.jamfsoftware.com/pipermail/casper/attachments/20080407/7ee8cabb/attachment.obj

More information about the Casper mailing list