UPDATE: We've since updated to JSS 9.3 & we no longer have this issue.
We recently updated our JSS from 8.73 > 9.22 & on the whole it’s been a non-event.
However, we started to find that some Self Service policies were erroring with the below message post the upgrade.
Below are the details on what we found, and a workaround.
Even though we’re using a HTTP/S distribution point, that should allow for resumable downloads we sometimes see the above error.
Below are some more details around this, and a break-fix.
Continue readingWithin our Casper environment all our distribution points are HTTPS. On occasions we’ll get the emails from our JAMF Software Server containing the above error.
Below are some more details.
As mentioned in my previous post, we have a simple cluster setup for our JSS.
However, I’ve seen and intermittent issue with permissions to /var/log/jamfChangeManagement.log, below are more details as well as a break-fix solution.
Continue reading
This weekend our firewalls were replaced with us moving from one vendor to another. This took a little longer than required due to some issues with rules & inside outside definitions, but my colleague was more than up to the challenge.
This change required our VPN config profile to be re-pushed, it seemed to work. But further testing revealed we had an issue.
We have a simple cluster for our JSS with one server “cloud” accessible in the DMZ & another on our WAN that is our master JSS, post firewall change I checked:
Continue reading
Subject’s a mouthful eh? Basically, I needed for my 10.7 Macs to authenticate to our RADIUS wireless network using PEAP authentication & the Mac’s Certificate from our domain.
Below are the steps taken.
UPDATE: Since 8.61+ User information can be submitted following the method outlined here.
For couple of years now i’ve ran various flavours of the below script via a login policy on my Mac clients.
The purpose of this script is to first check if the user is a network user, & if so then perform a lookup of their account against AD grabbing information that can then be submitted to the JSS in the relevant fields as per the above.
See below for the script:
Continue readingWhen trying to setup a clustered DMZ server as a computer only JSS I received the below error:
Could not write to /Library/JSS/Tomcat/webapps/ROOT/WEB-INF/web.xml
To resolve I needed to enable change management in the JSS. But as the JSS did not have write permission to /var/logs/ I couldn’t enable change management.
So I changed the log location & enabled change management. I could then enable the JSS instance as computer management only version.
Recently we setup a 10.7 Mac Server in our DMZ & clustered this with our main JSS to enable external clients connectivity to our JSS & for them to be able to use Self Service & ASUS when off the network.
However we’ve had some issues getting the distribution point to work over HTTPS, however HTTP & AFP worked fine.
Below are some details on the steps taken to investigate this issue, and resolve.
Continue readingUPDATE: Updated to now work with Lion
The Extension Attribute below checks to see if Mac has either an Airport or Wireless & returns “Yes” is the Mac has one & “No” if it doesn’t.
Continue reading