FileWave Alliance

The Official Community Forum
  • Page:
  • 1

TOPIC: FW Admin 10.0.2 Mac OSX Observe Client

FW Admin 10.0.2 Mac OSX Observe Client 18 Dec 2015 17:37 #2027

  • John Humphrey
  • John Humphrey's Avatar Topic Author
  • Offline
  • 2nd Level - Yellow Belt
  • 2nd Level - Yellow Belt
  • Posts: 22
  • Karma: 1
  • Thank you received: 5
I am experimenting in using FW Admin 10.0.2 and the new Observe Client feature on our Mac OSX clients.
Works great ONCE I set on client:
Turned off Remote Management
Turned on screen Sharing
Allowed Access for All Users
Computer Settings...
X Anyone May Request Permission....
X VNC Viewers may control this screen.....(put in FW Cient Password)

- Can I send these settings out thru a profile? Going to put them in the newest rev of our master image (Do I need to ???) but some sort of profile sent out to existing would be helpful.

- Can the request to share screen the user receives be disabled?
John Humphrey
HCCSC iPad Support

FW Admin 10.0.2 Mac OSX Observe Client 22 Dec 2015 17:12 #2029

  • Gilbert Palau
  • Gilbert Palau's Avatar
  • Offline
  • 2nd Level - Yellow Belt
  • 2nd Level - Yellow Belt
  • ._______.
  • Posts: 108
  • Karma: 10
  • Thank you received: 26

john.humphrey wrote: I am experimenting in using FW Admin 10.0.2 and the new Observe Client feature on our Mac OSX clients.
Works great ONCE I set on client:
Turned off Remote Management
Turned on screen Sharing
Allowed Access for All Users
Computer Settings...
X Anyone May Request Permission....
X VNC Viewers may control this screen.....(put in FW Cient Password)

- Can I send these settings out thru a profile? Going to put them in the newest rev of our master image (Do I need to ???) but some sort of profile sent out to existing would be helpful.

- Can the request to share screen the user receives be disabled?


Not through a profile but I can link you the fillets I use so that you can do what you want...

First as a reference check out Apple Remote Desktop: Configuring remotely via command line

This is the script I use within the fileset I'm sharing:
#!/bin/bash
# TurnOnSSHAddAdminGroup.sh
# December 12, 2013
# Gilbert Palau, Enteprise OSX
#
# Turn on remote login ## Create the com.apple.access_ssh group ## Add the admin group to com.apple.access_ssh ## unload and load the SSH Service
# Other Settings:
# sudo /System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Resources/kickstart -configure -allowAccessFor -specifiedUsers # specify Users for Remote Access
# sudo /System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Resources/kickstart -configure -users ADMINISTRATOR NAME GOES HERE PLEASE CHANGE -activate -access -on -privs -all -clientopts -setvnclegacy -vnclegacy yes -clientopts -setvncpw -vncpw unimis -quiet

# Set SSH On usable by administrators
sudo systemsetup -setremotelogin on && dseditgroup -o create -q com.apple.access_ssh && dseditgroup -o edit -a admin -t group com.apple.access_ssh && sudo launchctl unload -w /System/Library/LaunchDaemons/ssh.plist && sudo launchctl load -w /System/Library/LaunchDaemons/ssh.plist

# Remove Allowed Users from remote access, add vnc password, set required asked permission and add info group 1 AD GROUP NAME:
sudo /System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Resources/kickstart -activate -configure -access -off -setreqperm -reqperm yes -setmenuextra -menuextra yes -computerinfo -set1 -1 AD GROUP GOES HERE PLEASE CHANGE -clientopts -setvnclegacy -vnclegacy yes -clientopts -setvncpw -vncpw VNCPASSWORD -quiet -restart -agent -menu

/usr/libexec/PlistBuddy -c ‘Set :com.apple.screensharing:Disabled NO’ /private/var/db/launchd.db/com.apple.launchd/overrides.plist
launchctl load /System/Library/LaunchDaemons/com.apple.screensharing.plist
for userid in $(ps -Ajc | grep loginwindow | grep -v grep | awk ‘{print $1}’); do
if [ "$userid" = "root" ] ; then
launchctl load /System/Library/LaunchAgents/com.apple.screensharing.agent.plist
else
su “$userid” -c ‘launchctl load /System/Library/LaunchAgents/com.apple.screensharing.agent.plist’
fi
done

I just send that fileset in the top of my hierarchy and all is set... Let me know if you need help.
Attachments:
--
Gilbert Palau
Desktop Engineering
FileWave Admin
Dallas, TX
enterpriseosx.com
Last Edit: by Gilbert Palau.
  • Page:
  • 1