This article will explain how to create a default user profile/template for OS X 10.6 Snow Leopard & OS X 10.5 Leopard as well a quick overview of how to bind your Mac to AD (Active Directory).
Included is a AutorMator script that cuts out a tremendous amount of time with preparing an image for deployment.
Why create a Default profile/template?
If you a computer that multiple users log into it on a regular basis & you want all users to have an identical profile with looks, setting etc. then this article will show you how to do so.
Binding to AD (Active Directory)
With the new version of OS X Snow Leopard, Apple has now moved where the Directory Utility is found. It's now part of core services unlike OS X Leopard where it was found in the Utilities folder.
Step 1 (Create default user profile/template ** OS X Snow Leopard & Leopard)
With your “admin” user fully update OS X.
** Keep in mind that there are some applications out there that will not run or support past certain version of an OS X. If this does not apply then update to latest OS X version release.
With your “admin” user install all needed applications that will be needed all check for any updates for those applications.
From the “Accounts” panel create a new user. (For this document I will create a user named “default”)
Enable “Root” user:
Snow Leopard 10.6 - Go to the Accounts Panel -> Login Options -> Network Account Server & select “Join”. Next select “Open Directory Utility”.
Once you have the “Directory Open” select ”Edit” from menu bar & select “Enable Root User” and give it a password.
If you chose to the direct method to open “Directory Utility” is /System/Library/CoreServices/Directory\ Utility.app
Leopard 10.5 - Go to /Applications/Utilities/Directory\ Utility.app
Once you have the “Directory Open” select ”Edit” from menu bar & select “Enable Root User” and give it a password.
Logout & then login into “default” user
Organize the Dock with all your needed applications
Adjust settings & preferences for:
Dock
Desktop/Finder/MenuBar
System Preferences (Run through each option in System Preferences & adjust as needed)
Run “ALL” applications that will be used on the system. Once each application has launched open it’s preferences and adjust as needed. (In most cases, it’s recommended to turn “off” “check for updates” if you do not want users getting prompted each time an application releases an update)
Once you feel happy with your image and everything is set the way you want it, continue to step 2.
.
.
.
.
.
.
.
.
Now restart the computer and login as root.
Copy this automator script to the desktop.
OS X Leopard 10.5 - OS X Snow Leopard 10.6 -
http://dl.dropbox.com/u/121843/OSX10...lt_profile.zip
OS X Lion 10.7 -
http://dl.dropbox.com/u/121843/OSX_1...lt_profile.zip
This automator script does a lot for cleaning up the profile, copying all needed files, correcting permissions etc. It's very easy to adjust & update for future use.
What the “default_profile” Automator script does:
Deletes the old default profile and replaces it with the “default” user
Clears out un-needed Caches
Clears Recent Servers
Clears Cookies
Clears Documents Folder
Clears Downloads Folder (in case you left files behind)
Clears/Empty’s Trash (in case you left files behind)
Removes Keychains
Clears Managed Preferences (in case you logged in/tested with a remote user already)
Corrects needed permissions on the new profile
Runs “Repair Permissions”
These commands could be run separately under a regular root user individually but I find it some much easier to click on the script and walk away. This will only work under root. You will get an error under any other user.
I hope in the next week or so I will fix this up & find a way to have the user prompted for an admin password so this can be run under any admin user but for now use under the root user.
Once you run this “default_user” script you are done. Shutdown the computer and image the computer.
If you want to know how to manually bind your Mac to AD checkout Step 3.
.
.
.
.
.
.
.
.
Step 3(Binding to AD / Active Directory ** OS X Snow Leopard & Leopard)
Snow Leopard 10.6 - Go to the Accounts Panel -> Login Options -> Network Account Server & select “Join”. Next select “Open Directory Utility”.
If you chose to the direct method to open “Directory Utility” is /System/Library/CoreServices/Directory\ Utility.app
Leopard 10.5 - Go to /Applications/Utilities/Directory\ Utility.app
Once Directory Utility is open double click “Active Directory”
Once open enter in the needed info for your Domain, name computer & select what options you want or don’t want.
Now simply select “Bind” and enter in a user/password that has Network Administrator access to your domain.
You are now bound to your domain.
It’s also a good idea to change the login window to “Name & Password” if there will be many users logging into the computer.
Now restart your computer.
Once restarted & sitting at your login window, the best way to know you are connect to your domain is to click 5 Times where you see your computer name. You should see a colored dot, which will give you your status. You want to see Green.
Now try logging in using an AD/Active Directory account.
****
****
How to create an OS X Default Profile/Template - 10.5+ - YouTube
Here is a quick video on what my "default_profile" script does when it is run. This script does a lot for cleaning up the profile, copying all needed files, correcting permissions etc.
Top
