Your SlideShare is downloading. ×
THE EXPERTS IN GLOBAL APPLE DEPLOYMENT         UK • USA • AUSTRALIA • SINGAPORE                 www.square-i.net
Normalizing a Worldwide Apple Deployment       Paul Gibbons & Emmanuel Gomez
About us...
Midlands  High Wycombe   London
United KingdomUSA                       Singapore                            Australia
What is Square?
What is Square?‣   Apple Premium Reseller in the UK
What is Square?‣   Apple Premium Reseller in the UK‣   Apple Authorised Reseller in the USA, Latin    America & Singapore ...
What is Square?‣   Apple Premium Reseller in the UK‣   Apple Authorised Reseller in the USA, Latin    America & Singapore ...
What is Square?‣   Apple Premium Reseller in the UK‣   Apple Authorised Reseller in the USA, Latin    America & Singapore ...
What is Square?‣   Apple Premium Reseller in the UK‣   Apple Authorised Reseller in the USA, Latin    America & Singapore ...
The Challenge
The ChallengeHow does the world’s largest Art Auction House deploy, manage & maintainover 200 Macs across three continents...
The ChallengeHow does the world’s largest Art Auction House deploy, manage & maintainover 200 Macs across three continents...
The ChallengeHow does the world’s largest Art Auction House deploy, manage & maintainover 200 Macs across three continents...
The ChallengeHow does the world’s largest Art Auction House deploy, manage & maintainover 200 Macs across three continents...
Considerations
Considerations‣   Choice of the Server for the JSS
Considerations‣   Choice of the Server for the JSS‣   Choice of the Server for the Distribution Point
Considerations‣   Choice of the Server for the JSS‣   Choice of the Server for the Distribution Point‣   JSS setup
Considerations‣   Choice of the Server for the JSS‣   Choice of the Server for the Distribution Point‣   JSS setup‣   Secu...
Considerations‣   Choice of the Server for the JSS                  ‣   Package Replication‣   Choice of the Server for th...
Considerations‣   Choice of the Server for the JSS                  ‣   Package Replication‣   Choice of the Server for th...
Considerations‣   Choice of the Server for the JSS                  ‣   Package Replication‣   Choice of the Server for th...
Considerations‣   Choice of the Server for the JSS                  ‣   Package Replication‣   Choice of the Server for th...
Choice of the Server for the JSS
Choice of the Server for the JSS‣   Cloud
Choice of the Server for the JSS‣   Cloud‣   Windows
Choice of the Server for the JSS‣   Cloud‣   Windows‣   Red Had Enterprise Linux
Choice of the Server for the JSS‣   Cloud‣   Windows‣   Red Had Enterprise Linux‣   Mac OS X
Choice of the Server for the DP
Choice of the Server for the DP‣   Mac OS X
Choice of the Server for the DP‣   Mac OS X‣   Windows
Choice of the Server for the DP‣   Mac OS X‣   Windows‣   Red Had Enterprise Linux / CentOS
Choice of the Server for the DP‣   Mac OS X‣   Windows‣   Red Had Enterprise Linux / CentOS‣   NAS Drives
JSS setup
jsscasper.mycomp.comMobile Devices and Computers Checking in from home or wireless hotspots
Network Setup
Network Setup                         Firewall                  3306              3306               3306                 ...
Network Setup‣   Casper servers are clustered                         Firewall                  3306              3306    ...
Network Setup‣   Casper servers are clustered‣   Outside the LAN, managed devices    will check in from the dmz           ...
Network Setup‣   Casper servers are clustered                       ‣   Only one port transits from DMZ to LAN 3306       ...
Network Setup‣   Casper servers are clustered                       ‣   Only one port transits from DMZ to LAN 3306       ...
How do you do that?
How do you do that?https://jamfnation.jamfsoftware.com/article.html?id=174
How do you do that?
* subject to changesJSS seen from the Public jsscasper.mycomp.com   JSS seen from the Private jsscasper.mycomp.com
Replication server and package replication
**
Madrid                    Helsinki    Munich             Singapore      London Edu                                        ...
How do you do that?
How do you do that?Replication using keypair 2048 bit encryption rsync via ssh tunnel
How do you do that?Replication using keypair 2048 bit encryption rsync via ssh tunnel  #ssh-keygen -t rsa -b 2048 -f ~/.ss...
How do you do that?Replication using keypair 2048 bit encryption rsync via ssh tunnel  #ssh-keygen -t rsa -b 2048 -f ~/.ss...
How do you do that?Replication using keypair 2048 bit encryption rsync via ssh tunnel  #ssh-keygen -t rsa -b 2048 -f ~/.ss...
Imaging Process
Possible Workflow with Pre-Stage
Possible Workflow with Pre-Stage    Computer is added to Prestage imaging
Possible Workflow with Pre-Stage    Computer is added to Prestage imaging    Computer netboots
Possible Workflow with Pre-Stage    Computer is added to Prestage imaging    Computer netboots    Computer is automaticall...
Possible Workflow with Pre-Stage    Computer is added to Prestage imaging    Computer netboots    Computer is automaticall...
Possible Workflow with QuickAdd
Possible Workflow with QuickAdd    Computer is given to the end user
Possible Workflow with QuickAdd    Computer is given to the end user    Computer is setup by the user. QuickAdd package is...
Possible Workflow with QuickAdd    Computer is given to the end user    Computer is setup by the user. QuickAdd package is...
Possible Workflow with QuickAdd    Computer is given to the end user    Computer is setup by the user. QuickAdd package is...
Possible Workflow with Customised QuickAdd
Possible Workflow with Customised QuickAdd    Computer is given to the end user
Possible Workflow with Customised QuickAdd    Computer is given to the end user    Computer is setup by the user. Customis...
Possible Workflow with Customised QuickAdd    Computer is given to the end user    Computer is setup by the user. Customis...
Possible Workflow with Customised QuickAdd    Computer is given to the end user    Computer is setup by the user. Customis...
Possible Workflow with Customised QuickAdd    Computer is given to the end user    Computer is setup by the user. Customis...
QuickAddcocoaDialog                         postflight script              Customised QuickAdd
What is Next?
What is Next?Cloud Storage integration
What is Next?Cloud Storage integrationVM Environment integration
Paul Gibbons              paul@squaregroup.co.uk        Emmanuel Gomez Verardo        emmanuel.gomez@squaregroup.co.ukwww....
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Square i minneapolis presentation v1.1
Upcoming SlideShare
Loading in...5
×

Square i minneapolis presentation v1.1

407

Published on

Our Casper Preso at JAMF NATION 2013

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
407
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • Transcript of "Square i minneapolis presentation v1.1"

    1. 1. THE EXPERTS IN GLOBAL APPLE DEPLOYMENT UK • USA • AUSTRALIA • SINGAPORE www.square-i.net
    2. 2. Normalizing a Worldwide Apple Deployment Paul Gibbons & Emmanuel Gomez
    3. 3. About us...
    4. 4. Midlands High Wycombe London
    5. 5. United KingdomUSA Singapore Australia
    6. 6. What is Square?
    7. 7. What is Square?‣ Apple Premium Reseller in the UK
    8. 8. What is Square?‣ Apple Premium Reseller in the UK‣ Apple Authorised Reseller in the USA, Latin America & Singapore (Square [ i ] International)
    9. 9. What is Square?‣ Apple Premium Reseller in the UK‣ Apple Authorised Reseller in the USA, Latin America & Singapore (Square [ i ] International)‣ Hospitality specialists with our own IP in software solutions (IPTV & Business Centre)
    10. 10. What is Square?‣ Apple Premium Reseller in the UK‣ Apple Authorised Reseller in the USA, Latin America & Singapore (Square [ i ] International)‣ Hospitality specialists with our own IP in software solutions (IPTV & Business Centre)‣ International Apple Support Centres
    11. 11. What is Square?‣ Apple Premium Reseller in the UK‣ Apple Authorised Reseller in the USA, Latin America & Singapore (Square [ i ] International)‣ Hospitality specialists with our own IP in software solutions (IPTV & Business Centre)‣ International Apple Support Centres‣ 42 Square Design & Marketing Communications
    12. 12. The Challenge
    13. 13. The ChallengeHow does the world’s largest Art Auction House deploy, manage & maintainover 200 Macs across three continents within the following framework?
    14. 14. The ChallengeHow does the world’s largest Art Auction House deploy, manage & maintainover 200 Macs across three continents within the following framework? ‣ Only 2 Mac Support specialists based in London and New York
    15. 15. The ChallengeHow does the world’s largest Art Auction House deploy, manage & maintainover 200 Macs across three continents within the following framework? ‣ Only 2 Mac Support specialists based in London and New York ‣ Being able to work with and re-purpose existing ‘standard’ packages
    16. 16. The ChallengeHow does the world’s largest Art Auction House deploy, manage & maintainover 200 Macs across three continents within the following framework? ‣ Only 2 Mac Support specialists based in London and New York ‣ Being able to work with and re-purpose existing ‘standard’ packages ‣ 6 locations in 3 Continents - Distributing the Distribution Points!
    17. 17. Considerations
    18. 18. Considerations‣ Choice of the Server for the JSS
    19. 19. Considerations‣ Choice of the Server for the JSS‣ Choice of the Server for the Distribution Point
    20. 20. Considerations‣ Choice of the Server for the JSS‣ Choice of the Server for the Distribution Point‣ JSS setup
    21. 21. Considerations‣ Choice of the Server for the JSS‣ Choice of the Server for the Distribution Point‣ JSS setup‣ Security
    22. 22. Considerations‣ Choice of the Server for the JSS ‣ Package Replication‣ Choice of the Server for the Distribution Point‣ JSS setup‣ Security
    23. 23. Considerations‣ Choice of the Server for the JSS ‣ Package Replication‣ Choice of the Server for the Distribution Point ‣ Replication servers‣ JSS setup‣ Security
    24. 24. Considerations‣ Choice of the Server for the JSS ‣ Package Replication‣ Choice of the Server for the Distribution Point ‣ Replication servers‣ JSS setup ‣ Imaging Process‣ Security
    25. 25. Considerations‣ Choice of the Server for the JSS ‣ Package Replication‣ Choice of the Server for the Distribution Point ‣ Replication servers‣ JSS setup ‣ Imaging Process‣ Security ‣ What is Next? (In few words)
    26. 26. Choice of the Server for the JSS
    27. 27. Choice of the Server for the JSS‣ Cloud
    28. 28. Choice of the Server for the JSS‣ Cloud‣ Windows
    29. 29. Choice of the Server for the JSS‣ Cloud‣ Windows‣ Red Had Enterprise Linux
    30. 30. Choice of the Server for the JSS‣ Cloud‣ Windows‣ Red Had Enterprise Linux‣ Mac OS X
    31. 31. Choice of the Server for the DP
    32. 32. Choice of the Server for the DP‣ Mac OS X
    33. 33. Choice of the Server for the DP‣ Mac OS X‣ Windows
    34. 34. Choice of the Server for the DP‣ Mac OS X‣ Windows‣ Red Had Enterprise Linux / CentOS
    35. 35. Choice of the Server for the DP‣ Mac OS X‣ Windows‣ Red Had Enterprise Linux / CentOS‣ NAS Drives
    36. 36. JSS setup
    37. 37. jsscasper.mycomp.comMobile Devices and Computers Checking in from home or wireless hotspots
    38. 38. Network Setup
    39. 39. Network Setup Firewall 3306 3306 3306 *Casper Server Casper db Casper Server DMZ LAN In and outbound connection LAN connection * Not available anymore
    40. 40. Network Setup‣ Casper servers are clustered Firewall 3306 3306 3306 *Casper Server Casper db Casper Server DMZ LAN In and outbound connection LAN connection * Not available anymore
    41. 41. Network Setup‣ Casper servers are clustered‣ Outside the LAN, managed devices will check in from the dmz Firewall 3306 3306 3306 *Casper Server Casper db Casper Server DMZ LAN In and outbound connection LAN connection * Not available anymore
    42. 42. Network Setup‣ Casper servers are clustered ‣ Only one port transits from DMZ to LAN 3306 (MySQL)‣ Outside the LAN, managed devices will check in from the dmz Firewall 3306 3306 3306 *Casper Server Casper db Casper Server DMZ LAN In and outbound connection LAN connection * Not available anymore
    43. 43. Network Setup‣ Casper servers are clustered ‣ Only one port transits from DMZ to LAN 3306 (MySQL)‣ Outside the LAN, managed devices will check in from the dmz ‣ Change of the JSS database password Firewall 3306 3306 3306 *Casper Server Casper db Casper Server DMZ LAN In and outbound connection LAN connection * Not available anymore
    44. 44. How do you do that?
    45. 45. How do you do that?https://jamfnation.jamfsoftware.com/article.html?id=174
    46. 46. How do you do that?
    47. 47. * subject to changesJSS seen from the Public jsscasper.mycomp.com JSS seen from the Private jsscasper.mycomp.com
    48. 48. Replication server and package replication
    49. 49. **
    50. 50. Madrid Helsinki Munich Singapore London Edu London * * Paris Amsterdam NY Santa Fe Hong Kong *Netboot AFP sharepoint * Not available anymore
    51. 51. How do you do that?
    52. 52. How do you do that?Replication using keypair 2048 bit encryption rsync via ssh tunnel
    53. 53. How do you do that?Replication using keypair 2048 bit encryption rsync via ssh tunnel #ssh-keygen -t rsa -b 2048 -f ~/.ssh/id_rsa -C "LOCATION" #cat ~/.ssh/id_rsa.pub | ssh myjssserver cat - >> ~/.ssh/authorized_keys
    54. 54. How do you do that?Replication using keypair 2048 bit encryption rsync via ssh tunnel #ssh-keygen -t rsa -b 2048 -f ~/.ssh/id_rsa -C "LOCATION" #cat ~/.ssh/id_rsa.pub | ssh myjssserver cat - >> ~/.ssh/authorized_keysrsync via ssh tunnel
    55. 55. How do you do that?Replication using keypair 2048 bit encryption rsync via ssh tunnel #ssh-keygen -t rsa -b 2048 -f ~/.ssh/id_rsa -C "LOCATION" #cat ~/.ssh/id_rsa.pub | ssh myjssserver cat - >> ~/.ssh/authorized_keysrsync via ssh tunnel #rsync -avrpogz --delete -e ssh root@myjssserver:"Source" "Destination" >>yourlogfile
    56. 56. Imaging Process
    57. 57. Possible Workflow with Pre-Stage
    58. 58. Possible Workflow with Pre-Stage Computer is added to Prestage imaging
    59. 59. Possible Workflow with Pre-Stage Computer is added to Prestage imaging Computer netboots
    60. 60. Possible Workflow with Pre-Stage Computer is added to Prestage imaging Computer netboots Computer is automatically imaged
    61. 61. Possible Workflow with Pre-Stage Computer is added to Prestage imaging Computer netboots Computer is automatically imaged Computer is ready to be given to the end user
    62. 62. Possible Workflow with QuickAdd
    63. 63. Possible Workflow with QuickAdd Computer is given to the end user
    64. 64. Possible Workflow with QuickAdd Computer is given to the end user Computer is setup by the user. QuickAdd package is installed
    65. 65. Possible Workflow with QuickAdd Computer is given to the end user Computer is setup by the user. QuickAdd package is installed Computer is added to the inventory
    66. 66. Possible Workflow with QuickAdd Computer is given to the end user Computer is setup by the user. QuickAdd package is installed Computer is added to the inventory The policies are triggered automatically according to the network segment
    67. 67. Possible Workflow with Customised QuickAdd
    68. 68. Possible Workflow with Customised QuickAdd Computer is given to the end user
    69. 69. Possible Workflow with Customised QuickAdd Computer is given to the end user Computer is setup by the user. Customised QuickAdd package is installed
    70. 70. Possible Workflow with Customised QuickAdd Computer is given to the end user Computer is setup by the user. Customised QuickAdd package is installed User complete a predefined set of information
    71. 71. Possible Workflow with Customised QuickAdd Computer is given to the end user Computer is setup by the user. Customised QuickAdd package is installed User complete a predefined set of information Computer is added to the inventory
    72. 72. Possible Workflow with Customised QuickAdd Computer is given to the end user Computer is setup by the user. Customised QuickAdd package is installed User complete a predefined set of information Computer is added to the inventory The policies are triggered automatically according to the Extended attributes set by the user.
    73. 73. QuickAddcocoaDialog postflight script Customised QuickAdd
    74. 74. What is Next?
    75. 75. What is Next?Cloud Storage integration
    76. 76. What is Next?Cloud Storage integrationVM Environment integration
    77. 77. Paul Gibbons paul@squaregroup.co.uk Emmanuel Gomez Verardo emmanuel.gomez@squaregroup.co.ukwww.square-i.net @squaregroup

    ×