• Save
Square i minneapolis presentation v1.1
Upcoming SlideShare
Loading in...5
×
 

Square i minneapolis presentation v1.1

on

  • 472 views

Our Casper Preso at JAMF NATION 2013

Our Casper Preso at JAMF NATION 2013

Statistics

Views

Total Views
472
Views on SlideShare
472
Embed Views
0

Actions

Likes
0
Downloads
0
Comments
0

0 Embeds 0

No embeds

Accessibility

Categories

Upload Details

Uploaded via as Apple Keynote

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n

Square i minneapolis presentation v1.1 Square i minneapolis presentation v1.1 Presentation Transcript

  • THE EXPERTS IN GLOBAL APPLE DEPLOYMENT UK • USA • AUSTRALIA • SINGAPORE www.square-i.net
  • Normalizing a Worldwide Apple Deployment Paul Gibbons & Emmanuel Gomez
  • About us...
  • Midlands High Wycombe London
  • United KingdomUSA Singapore Australia
  • What is Square?
  • What is Square?‣ Apple Premium Reseller in the UK
  • What is Square?‣ Apple Premium Reseller in the UK‣ Apple Authorised Reseller in the USA, Latin America & Singapore (Square [ i ] International)
  • What is Square?‣ Apple Premium Reseller in the UK‣ Apple Authorised Reseller in the USA, Latin America & Singapore (Square [ i ] International)‣ Hospitality specialists with our own IP in software solutions (IPTV & Business Centre)
  • What is Square?‣ Apple Premium Reseller in the UK‣ Apple Authorised Reseller in the USA, Latin America & Singapore (Square [ i ] International)‣ Hospitality specialists with our own IP in software solutions (IPTV & Business Centre)‣ International Apple Support Centres
  • What is Square?‣ Apple Premium Reseller in the UK‣ Apple Authorised Reseller in the USA, Latin America & Singapore (Square [ i ] International)‣ Hospitality specialists with our own IP in software solutions (IPTV & Business Centre)‣ International Apple Support Centres‣ 42 Square Design & Marketing Communications
  • The Challenge
  • The ChallengeHow does the world’s largest Art Auction House deploy, manage & maintainover 200 Macs across three continents within the following framework?
  • The ChallengeHow does the world’s largest Art Auction House deploy, manage & maintainover 200 Macs across three continents within the following framework? ‣ Only 2 Mac Support specialists based in London and New York
  • The ChallengeHow does the world’s largest Art Auction House deploy, manage & maintainover 200 Macs across three continents within the following framework? ‣ Only 2 Mac Support specialists based in London and New York ‣ Being able to work with and re-purpose existing ‘standard’ packages
  • The ChallengeHow does the world’s largest Art Auction House deploy, manage & maintainover 200 Macs across three continents within the following framework? ‣ Only 2 Mac Support specialists based in London and New York ‣ Being able to work with and re-purpose existing ‘standard’ packages ‣ 6 locations in 3 Continents - Distributing the Distribution Points!
  • Considerations
  • Considerations‣ Choice of the Server for the JSS
  • Considerations‣ Choice of the Server for the JSS‣ Choice of the Server for the Distribution Point
  • Considerations‣ Choice of the Server for the JSS‣ Choice of the Server for the Distribution Point‣ JSS setup
  • Considerations‣ Choice of the Server for the JSS‣ Choice of the Server for the Distribution Point‣ JSS setup‣ Security
  • Considerations‣ Choice of the Server for the JSS ‣ Package Replication‣ Choice of the Server for the Distribution Point‣ JSS setup‣ Security
  • Considerations‣ Choice of the Server for the JSS ‣ Package Replication‣ Choice of the Server for the Distribution Point ‣ Replication servers‣ JSS setup‣ Security
  • Considerations‣ Choice of the Server for the JSS ‣ Package Replication‣ Choice of the Server for the Distribution Point ‣ Replication servers‣ JSS setup ‣ Imaging Process‣ Security
  • Considerations‣ Choice of the Server for the JSS ‣ Package Replication‣ Choice of the Server for the Distribution Point ‣ Replication servers‣ JSS setup ‣ Imaging Process‣ Security ‣ What is Next? (In few words)
  • Choice of the Server for the JSS
  • Choice of the Server for the JSS‣ Cloud
  • Choice of the Server for the JSS‣ Cloud‣ Windows
  • Choice of the Server for the JSS‣ Cloud‣ Windows‣ Red Had Enterprise Linux
  • Choice of the Server for the JSS‣ Cloud‣ Windows‣ Red Had Enterprise Linux‣ Mac OS X
  • Choice of the Server for the DP
  • Choice of the Server for the DP‣ Mac OS X
  • Choice of the Server for the DP‣ Mac OS X‣ Windows
  • Choice of the Server for the DP‣ Mac OS X‣ Windows‣ Red Had Enterprise Linux / CentOS
  • Choice of the Server for the DP‣ Mac OS X‣ Windows‣ Red Had Enterprise Linux / CentOS‣ NAS Drives
  • JSS setup
  • jsscasper.mycomp.comMobile Devices and Computers Checking in from home or wireless hotspots
  • Network Setup
  • Network Setup Firewall 3306 3306 3306 *Casper Server Casper db Casper Server DMZ LAN In and outbound connection LAN connection * Not available anymore
  • Network Setup‣ Casper servers are clustered Firewall 3306 3306 3306 *Casper Server Casper db Casper Server DMZ LAN In and outbound connection LAN connection * Not available anymore
  • Network Setup‣ Casper servers are clustered‣ Outside the LAN, managed devices will check in from the dmz Firewall 3306 3306 3306 *Casper Server Casper db Casper Server DMZ LAN In and outbound connection LAN connection * Not available anymore
  • Network Setup‣ Casper servers are clustered ‣ Only one port transits from DMZ to LAN 3306 (MySQL)‣ Outside the LAN, managed devices will check in from the dmz Firewall 3306 3306 3306 *Casper Server Casper db Casper Server DMZ LAN In and outbound connection LAN connection * Not available anymore
  • Network Setup‣ Casper servers are clustered ‣ Only one port transits from DMZ to LAN 3306 (MySQL)‣ Outside the LAN, managed devices will check in from the dmz ‣ Change of the JSS database password Firewall 3306 3306 3306 *Casper Server Casper db Casper Server DMZ LAN In and outbound connection LAN connection * Not available anymore
  • How do you do that?
  • How do you do that?https://jamfnation.jamfsoftware.com/article.html?id=174
  • How do you do that?
  • * subject to changesJSS seen from the Public jsscasper.mycomp.com JSS seen from the Private jsscasper.mycomp.com
  • Replication server and package replication
  • **
  • Madrid Helsinki Munich Singapore London Edu London * * Paris Amsterdam NY Santa Fe Hong Kong *Netboot AFP sharepoint * Not available anymore
  • How do you do that?
  • How do you do that?Replication using keypair 2048 bit encryption rsync via ssh tunnel
  • How do you do that?Replication using keypair 2048 bit encryption rsync via ssh tunnel #ssh-keygen -t rsa -b 2048 -f ~/.ssh/id_rsa -C "LOCATION" #cat ~/.ssh/id_rsa.pub | ssh myjssserver cat - >> ~/.ssh/authorized_keys
  • How do you do that?Replication using keypair 2048 bit encryption rsync via ssh tunnel #ssh-keygen -t rsa -b 2048 -f ~/.ssh/id_rsa -C "LOCATION" #cat ~/.ssh/id_rsa.pub | ssh myjssserver cat - >> ~/.ssh/authorized_keysrsync via ssh tunnel
  • How do you do that?Replication using keypair 2048 bit encryption rsync via ssh tunnel #ssh-keygen -t rsa -b 2048 -f ~/.ssh/id_rsa -C "LOCATION" #cat ~/.ssh/id_rsa.pub | ssh myjssserver cat - >> ~/.ssh/authorized_keysrsync via ssh tunnel #rsync -avrpogz --delete -e ssh root@myjssserver:"Source" "Destination" >>yourlogfile
  • Imaging Process
  • Possible Workflow with Pre-Stage
  • Possible Workflow with Pre-Stage Computer is added to Prestage imaging
  • Possible Workflow with Pre-Stage Computer is added to Prestage imaging Computer netboots
  • Possible Workflow with Pre-Stage Computer is added to Prestage imaging Computer netboots Computer is automatically imaged
  • Possible Workflow with Pre-Stage Computer is added to Prestage imaging Computer netboots Computer is automatically imaged Computer is ready to be given to the end user
  • Possible Workflow with QuickAdd
  • Possible Workflow with QuickAdd Computer is given to the end user
  • Possible Workflow with QuickAdd Computer is given to the end user Computer is setup by the user. QuickAdd package is installed
  • Possible Workflow with QuickAdd Computer is given to the end user Computer is setup by the user. QuickAdd package is installed Computer is added to the inventory
  • Possible Workflow with QuickAdd Computer is given to the end user Computer is setup by the user. QuickAdd package is installed Computer is added to the inventory The policies are triggered automatically according to the network segment
  • Possible Workflow with Customised QuickAdd
  • Possible Workflow with Customised QuickAdd Computer is given to the end user
  • Possible Workflow with Customised QuickAdd Computer is given to the end user Computer is setup by the user. Customised QuickAdd package is installed
  • Possible Workflow with Customised QuickAdd Computer is given to the end user Computer is setup by the user. Customised QuickAdd package is installed User complete a predefined set of information
  • Possible Workflow with Customised QuickAdd Computer is given to the end user Computer is setup by the user. Customised QuickAdd package is installed User complete a predefined set of information Computer is added to the inventory
  • Possible Workflow with Customised QuickAdd Computer is given to the end user Computer is setup by the user. Customised QuickAdd package is installed User complete a predefined set of information Computer is added to the inventory The policies are triggered automatically according to the Extended attributes set by the user.
  • QuickAddcocoaDialog postflight script Customised QuickAdd
  • What is Next?
  • What is Next?Cloud Storage integration
  • What is Next?Cloud Storage integrationVM Environment integration
  • Paul Gibbons paul@squaregroup.co.uk Emmanuel Gomez Verardo emmanuel.gomez@squaregroup.co.ukwww.square-i.net @squaregroup