This link was the most helpful to me. The most important thing to do is make sure beyond a reasonable doubt that your DNS functions properly before you waste any time trying to get this working! If you can run 'host' with the value returned by 'hostname' on your server I think that is good enough, but I could be mistaken on that. What I eventually wound up doing was keeping only a forward and reverse mapping to the XServe itself, but I am sure that wouldn't work in many, many environments.
I also had to delete my/etc/krb5.keytab before I could get sso_util to configure my service.
I admin (part time out of love, not a pro) an XServe that serves as an opendirectory master in a mixed environment, with Windows, Linux and Solaris clients. I really thought this book was going to be a decent reference/addendum to the docs provided by Apple, so I pre-ordered it many moons ago. Unfortunately, I was mistaken.
My major criticism of the book is that it simply consists of walkthroughs for standard setups with Mac and Windows clients. It provides screenshots accompanied by textual explanations for all of the most common tasks involved with setting up a simple server. Unfortunately, there are not enough details provided to allow the reader to alter the examples to suit their own needs or troubleshoot errors that may arise.
For example, it is clearly stated in the book that DNS MUST be working correctly before promoting a server to an opendirectory master in order to have a working KDC, but no details are provided as to what the user should do if that wasn't the case (outside of reinstalling, or demoting the server to standalone, which is a huge no no if the server is already in production). Also, there are a number of examples on setting a Mac client up to access the server using Directory Services, and one example on setting up a PC running Windoze. Unfortunately, linux and unix clients are not even an afterthought in this book.
I understand that this is a visual quickstart guide, but at the very least I would have appreciated an appendix or two listing the command line tools incorporated in OS X Server (and no, smartass, they are not all standard tools) and a guide to debugging error logs. As it stands now, they got my money for a book that will just collect dust as I spend my time scouring http://afp548.com and http://discussions.info.apple.com.
P.S. -- I got KDC running without losing any info by hand cranking it on the command line, for those who may be curious:-)
... the upgrade is free, but you do not receive the developer tools or the administration tools. In fact, I have yet to see a huge difference between the first version and the second version, since I downloaded and installed the ISOs last week.
The kernel is still 2.4.19, but given the target audience of corporate users, it makes sense (I suppose) that they do not provide the latest version.
Overall it is a decent system for non-hobbyists. Personally, I use it to test Java desktop software that I wrote in OS X.
Many people wondered why Clear Channel was so quick to dump the Stern show in six markets without putting up any kind of a fight.
While at first they presented themselves as being truly ashamed of the "Indecency" over their airwaves, it seems now that they were supporting the FCC in a very public arena so they could work themselves into a position where they can influence FCC policies. It probably doesn't hurt that they are a huge corporate donor to the Bush campaign.
On a recent Stern show episode, Howard suggested holding concerts in major Clear Channel markets to combat their growing power. With this latest news we have all the more reason not to support them and their anti-competitive policies.
As unpopular an opinion as this may be, I am happy any time the authority of the FCC is challenged in any way.
The FCC is an unelected arm of the government that already has far too much control. We may applaud their efforts to limit the power of corporations, but how do we feel when they limit what we are allowed to see/hear/think? We can't have it both ways.
The next time you think it is a good idea to grant any power to the FCC at all, ask yourself how you would feel if you didn't have Howard Stern during your morning commute.
The company I work for is in the process of outsourcing a substantial part of its workforce to India. Since the transition to India started, the company has conducted a series of information sharing sessions with its employees, during which they have been releasing and revising their justifications for outsourcing. Here is the latest (paraphrased):
About [insert insanely large number here] people from the Baby Boomer generation will be retiring by 2010. This will leave a gap of approximately [insert a slightly smaller number here] positions that will not be fillable due to a shortage in the workforce. Without offshoring, there will be far more open positions than workers to fill them. Therefore, we need these offshore workers to *supplement* our workforce in the U.S.
Have any other companies tried using this Baby Boomer excuse? In a sense, I suppose it gives some hope to those who have been laid off (just live off of your *savings* until 2010 when there will be more work than you could handle), but I doubt it.
I work for one of the global HR outsourcing firms that tracks corporate trends. In most cases we have about a five year waiting period before we actually implement these tends within our own organization, but in some cases (for instance, if there is money to be saved) we are actually one of the first to implement.
A few months ago, one of the PHBs came up with the idea that we can save corporate real estate by moving away from the cubicle model, as mentioned in the article. However, our solution did not encourage mobility and teamroom type environments. Instead, they are now putting two to three people in each cubicle (in the space formerly occupied by one). Rather then do away with cubicles altogether, they are "Maximizing" the space in each cubicle.
This hasn't affected everyone within our organization yet. They have started it with our lowest skilled workers, but the "Success" stories I have heard can only lead me to believe that it wont be long before the rest of us join them. Considering the number of corporations that take HR advice from us, it probably wont be long before the majority of you join them as well.
The moral: It is better to be treated like a cow than like a sardine.
How dense does somebody have to be to confuse a cartoon show against a live person cable television news network?
Are you kidding me? Think 'War of the Worlds' with a potential audience of at least a few million more people!!! I'm not defending what is obviously a ploy to limit potential parodies of sister network Fox News, but I cannot sit idly by while someone questions the stupidity of the masses!
I work in Benefits Delivery, and odds are if you work for a Fortune 100, I have access to every bit of your retirement income data. The depth and breadth of the personal information we store is staggering. The number of people with unfettered and untraceable access to that information is disturbing. The fact that we will begin outsourcing many of our operations to India in a few months is downright frightening.
At any point, someone who has been with the company for only a few days would be able to change your 401(k)investment elections, transfer your retirement savings money between funds, set up an unauthorized beneficiary for you... all without the possibility of being traced.
Even assuming that all of our employees are honest, the possibility for errors is enough to make you want to start storing all of your savings under your mattress in a sock! Without going into too much detail, last week one of our client teams accidently wiped out all of the balances for the entire population in their production database. That was 10,000 people who suddenly lost their retirement incomes! How was it fixed? They used a week old backup and guessed about what the updated amounts should have been.
Of course, there is nothing that you can do about any of this but keep a vigilant watch on your retirement accounts. There is no "opt-out" option. In many cases, you wont even know that we are managing your benefits.
This is the world we live in. There is no privacy any more and nothing is ever truly secure.
Slashdot Mirror
The sysadminday URL is blocked by websense on our network. The reason given is that it is a gambling site.
Somewhere in there is a joke. Possibly a good one.
This link was the most helpful to me. The most important thing to do is make sure beyond a reasonable doubt that your DNS functions properly before you waste any time trying to get this working! If you can run 'host' with the value returned by 'hostname' on your server I think that is good enough, but I could be mistaken on that. What I eventually wound up doing was keeping only a forward and reverse mapping to the XServe itself, but I am sure that wouldn't work in many, many environments.
/etc/krb5.keytab before I could get sso_util to configure my service.
I also had to delete my
Good luck!
I admin (part time out of love, not a pro) an XServe that serves as an opendirectory master in a mixed environment, with Windows, Linux and Solaris clients. I really thought this book was going to be a decent reference/addendum to the docs provided by Apple, so I pre-ordered it many moons ago. Unfortunately, I was mistaken.
:-)
My major criticism of the book is that it simply consists of walkthroughs for standard setups with Mac and Windows clients. It provides screenshots accompanied by textual explanations for all of the most common tasks involved with setting up a simple server. Unfortunately, there are not enough details provided to allow the reader to alter the examples to suit their own needs or troubleshoot errors that may arise.
For example, it is clearly stated in the book that DNS MUST be working correctly before promoting a server to an opendirectory master in order to have a working KDC, but no details are provided as to what the user should do if that wasn't the case (outside of reinstalling, or demoting the server to standalone, which is a huge no no if the server is already in production). Also, there are a number of examples on setting a Mac client up to access the server using Directory Services, and one example on setting up a PC running Windoze. Unfortunately, linux and unix clients are not even an afterthought in this book.
I understand that this is a visual quickstart guide, but at the very least I would have appreciated an appendix or two listing the command line tools incorporated in OS X Server (and no, smartass, they are not all standard tools) and a guide to debugging error logs. As it stands now, they got my money for a book that will just collect dust as I spend my time scouring http://afp548.com and http://discussions.info.apple.com.
P.S. -- I got KDC running without losing any info by hand cranking it on the command line, for those who may be curious
... the upgrade is free, but you do not receive the developer tools or the administration tools. In fact, I have yet to see a huge difference between the first version and the second version, since I downloaded and installed the ISOs last week. The kernel is still 2.4.19, but given the target audience of corporate users, it makes sense (I suppose) that they do not provide the latest version. Overall it is a decent system for non-hobbyists. Personally, I use it to test Java desktop software that I wrote in OS X.
Many people wondered why Clear Channel was so quick to dump the Stern show in six markets without putting up any kind of a fight.
While at first they presented themselves as being truly ashamed of the "Indecency" over their airwaves, it seems now that they were supporting the FCC in a very public arena so they could work themselves into a position where they can influence FCC policies. It probably doesn't hurt that they are a huge corporate donor to the Bush campaign.
On a recent Stern show episode, Howard suggested holding concerts in major Clear Channel markets to combat their growing power. With this latest news we have all the more reason not to support them and their anti-competitive policies.
For more information go here.
As unpopular an opinion as this may be, I am happy any time the authority of the FCC is challenged in any way.
The FCC is an unelected arm of the government that already has far too much control. We may applaud their efforts to limit the power of corporations, but how do we feel when they limit what we are allowed to see/hear/think? We can't have it both ways.
The next time you think it is a good idea to grant any power to the FCC at all, ask yourself how you would feel if you didn't have Howard Stern during your morning commute.
The company I work for is in the process of outsourcing a substantial part of its workforce to India. Since the transition to India started, the company has conducted a series of information sharing sessions with its employees, during which they have been releasing and revising their justifications for outsourcing. Here is the latest (paraphrased):
Have any other companies tried using this Baby Boomer excuse? In a sense, I suppose it gives some hope to those who have been laid off (just live off of your *savings* until 2010 when there will be more work than you could handle), but I doubt it.
I work for one of the global HR outsourcing firms that tracks corporate trends. In most cases we have about a five year waiting period before we actually implement these tends within our own organization, but in some cases (for instance, if there is money to be saved) we are actually one of the first to implement.
A few months ago, one of the PHBs came up with the idea that we can save corporate real estate by moving away from the cubicle model, as mentioned in the article. However, our solution did not encourage mobility and teamroom type environments. Instead, they are now putting two to three people in each cubicle (in the space formerly occupied by one). Rather then do away with cubicles altogether, they are "Maximizing" the space in each cubicle.
This hasn't affected everyone within our organization yet. They have started it with our lowest skilled workers, but the "Success" stories I have heard can only lead me to believe that it wont be long before the rest of us join them. Considering the number of corporations that take HR advice from us, it probably wont be long before the majority of you join them as well.
The moral: It is better to be treated like a cow than like a sardine.
How dense does somebody have to be to confuse a cartoon show against a live person cable television news network?
Are you kidding me? Think 'War of the Worlds' with a potential audience of at least a few million more people!!! I'm not defending what is obviously a ploy to limit potential parodies of sister network Fox News, but I cannot sit idly by while someone questions the stupidity of the masses!
Credit Card information? That's nothing....
I work in Benefits Delivery, and odds are if you work for a Fortune 100, I have access to every bit of your retirement income data. The depth and breadth of the personal information we store is staggering. The number of people with unfettered and untraceable access to that information is disturbing. The fact that we will begin outsourcing many of our operations to India in a few months is downright frightening.
At any point, someone who has been with the company for only a few days would be able to change your 401(k)investment elections, transfer your retirement savings money between funds, set up an unauthorized beneficiary for you... all without the possibility of being traced.
Even assuming that all of our employees are honest, the possibility for errors is enough to make you want to start storing all of your savings under your mattress in a sock! Without going into too much detail, last week one of our client teams accidently wiped out all of the balances for the entire population in their production database. That was 10,000 people who suddenly lost their retirement incomes! How was it fixed? They used a week old backup and guessed about what the updated amounts should have been.
Of course, there is nothing that you can do about any of this but keep a vigilant watch on your retirement accounts. There is no "opt-out" option. In many cases, you wont even know that we are managing your benefits.
This is the world we live in. There is no privacy any more and nothing is ever truly secure.