arubdesu/Notes.txt

## Notes.txt
We started by discussing what's new in Yosemite:

Puppet as a tool is unaffected, due to getting over the issues with Rubby 2.0 in Mavericks.

The issues with NetInstall and CreateOSXInstallPkg with the distribution pkg format were discussed, as per:
https://github.com/munki/createOSXinstallPkg#further-note-on-additional-packages-and-yosemite

SCCM hasn't been well know to immediately support OS releases, nor patch broken functionality in a timely fashion.

Re: looking to migrate a DeployStudio repo  to a new address but reuse nbi's of older version of the OS was given the option of mounting them as they are read/write, and can therefore be updated for new server location. Another point is you can provide auth to automatically run workflows at the NBI level, which is super cool for lab re-imaging.
(but really, use DNS!)

Another method of removing the Mac-as-a-server dependency of DeployStudio:
http://themacwrangler.wordpress.com/2014/09/29/how-to-use-deploystudio-when-you-cant-have-a-mac-in-the-data-centre/

A linux-based DeployStudio server replacement:
Spirit - https://github.com/mosen/spirit
Spirit Docker Image - https://registry.hub.docker.com/u/macadmins/spirit/

For those that need to keep up with rapid DeployStudio releases when rebuilding NBI's:
AutoDSNBI - https://gist.github.com/MagerValp/76aa181cbd2796bab968

A non-Mac NetBoot service from Pepijn Bruienne, in Docker format:
BSDPy https://registry.hub.docker.com/u/macadmins/bsdpy/

Then we discussed the Device Enrollment Program, which I incorrectly got wrong about it's implementation on Macs, it's supposedly fully functional with several MDMs.
DEP https://www.apple.com/education/it/dep/
https://www.apple.com/support/ipad/business/

What's new in autopkg - 3rd party patch mgmt system support, primarily

I asked about making munki aware of users/OU's in AD, and was told years back Per Olofsson had actually shared a munki_conditional way of determining info before applying it. Tim may dig up one he has...

Regarding writing to the Default User Template, we recommended Outset to write prefs per-user login via LaunchAgent, adn joe himself was there to discuss it
https://github.com/chilcote/outset

In specific managing first-login things like Apple ID sign-in and Diagnostic/privacy opt-in prompts, those 'setup assistant-like' prefs can be set with a system-wide configuration profile. Tim said he modified Gregs, first mentioned here: http://managingosx.wordpress.com/2012/07/26/mountain-lion-suppress-apple-id-icloud-prompt/ and probably this is a good one to look at using:
https://github.com/nmcspadden/Profiles/blob/master/SetupAssistant.mobileconfig

802.1x/WiFi auth at loginwindow solutions
http://www.afp548.com/2013/03/06/automatically-enable-wifi-at-login-window/
http://help.apple.com/profilemanager
and in specific, payload variables,
http://help.apple.com/profilemanager/mac/4.0/#/apd073333AA-30C6-4FD2-B2E0-E0C95658A2C4
and identification
https://developer.apple.com/library/ios/featuredarticles/iPhoneConfigurationProfileRef/Introduction/Introduction.html#//apple_ref/doc/uid/TP40010206-CH1-SW10
Greg specifically even wanted to share what he had experimented with in a blog post!
http://managingosx.wordpress.com/2014/11/06/configuration-profiles-and-identity-payloads/

There might have been a WWDC video on Managing Apple Devices...

FIN
	We started by discussing what's new in Yosemite:

	Puppet as a tool is unaffected, due to getting over the issues with Rubby 2.0 in Mavericks.

	The issues with NetInstall and CreateOSXInstallPkg with the distribution pkg format were discussed, as per:
	https://github.com/munki/createOSXinstallPkg#further-note-on-additional-packages-and-yosemite

	SCCM hasn't been well know to immediately support OS releases, nor patch broken functionality in a timely fashion.

	Re: looking to migrate a DeployStudio repo to a new address but reuse nbi's of older version of the OS was given the option of mounting them as they are read/write, and can therefore be updated for new server location. Another point is you can provide auth to automatically run workflows at the NBI level, which is super cool for lab re-imaging.
	(but really, use DNS!)

	Another method of removing the Mac-as-a-server dependency of DeployStudio:
	http://themacwrangler.wordpress.com/2014/09/29/how-to-use-deploystudio-when-you-cant-have-a-mac-in-the-data-centre/

	A linux-based DeployStudio server replacement:
	Spirit - https://github.com/mosen/spirit
	Spirit Docker Image - https://registry.hub.docker.com/u/macadmins/spirit/

	For those that need to keep up with rapid DeployStudio releases when rebuilding NBI's:
	AutoDSNBI - https://gist.github.com/MagerValp/76aa181cbd2796bab968

	A non-Mac NetBoot service from Pepijn Bruienne, in Docker format:
	BSDPy https://registry.hub.docker.com/u/macadmins/bsdpy/

	Then we discussed the Device Enrollment Program, which I incorrectly got wrong about it's implementation on Macs, it's supposedly fully functional with several MDMs.
	DEP https://www.apple.com/education/it/dep/
	https://www.apple.com/support/ipad/business/

	What's new in autopkg - 3rd party patch mgmt system support, primarily

	I asked about making munki aware of users/OU's in AD, and was told years back Per Olofsson had actually shared a munki_conditional way of determining info before applying it. Tim may dig up one he has...

	Regarding writing to the Default User Template, we recommended Outset to write prefs per-user login via LaunchAgent, adn joe himself was there to discuss it
	https://github.com/chilcote/outset

	In specific managing first-login things like Apple ID sign-in and Diagnostic/privacy opt-in prompts, those 'setup assistant-like' prefs can be set with a system-wide configuration profile. Tim said he modified Gregs, first mentioned here: http://managingosx.wordpress.com/2012/07/26/mountain-lion-suppress-apple-id-icloud-prompt/ and probably this is a good one to look at using:
	https://github.com/nmcspadden/Profiles/blob/master/SetupAssistant.mobileconfig

	802.1x/WiFi auth at loginwindow solutions
	http://www.afp548.com/2013/03/06/automatically-enable-wifi-at-login-window/
	http://help.apple.com/profilemanager
	and in specific, payload variables,
	http://help.apple.com/profilemanager/mac/4.0/#/apd073333AA-30C6-4FD2-B2E0-E0C95658A2C4
	and identification
	https://developer.apple.com/library/ios/featuredarticles/iPhoneConfigurationProfileRef/Introduction/Introduction.html#//apple_ref/doc/uid/TP40010206-CH1-SW10
	Greg specifically even wanted to share what he had experimented with in a blog post!
	http://managingosx.wordpress.com/2014/11/06/configuration-profiles-and-identity-payloads/

	There might have been a WWDC video on Managing Apple Devices...

	FIN