Configuring Mountain Lion Server for iOS MDM

Hi all,
I am an admitted newbie to the Mac world. That said, I am in the process of setting up an OsX 10.8 server to handle the MDM for our iPad deployment. This is in a school district that runs all Windows in Active Directory.
I attempted to do the setup with no luck. So, I tried to reset the server back to the defaults and found that the settings I had made previously were still there.
What I need to know is how should I go about getting back to essentially scratch with this setup? Once I have that, what is the correct setup process to get me to where I can enroll the iPads to do the wireless MDM? We do not need to have access to the server from any other devices. No other services are needed like email, file shares etc. We have several sites on many different subnets but all on the same network.
A few specifics I do need to know is which network configuration would be preferred for our type of network? I'm thinking Private since everything will be handled internally. Also, regarding the certificates, is an SSL certificate required? And last, I read that there are some TCP ports that need to be opened. Is this required if we are running strictly internal with this?
Sorry for rambling on and my inexperience. I appreciate any help anyone can give.
Thanks!

You can use .private but if there is EVER the possibility that this would be used outside your LAN, then I would use a FQDN.
You do not need a commercial certificate. A self-signed will work fine.
The default self-signed has a 1 year expire. If you don't want to deal with updating the cert in a year, I would create a new 5 year cert.
This option is harder to find now with mountain lion.
From the Certificates section in Server, first click the gear and choose 'show all certficates', then hit the + button and choose 'Create a trusted certificate'. You will see a button to override defaults. This allows you to have a different expire date.
You can reset the profile manager data (stored in postgres) with:
sudo /Applications/Server.app/Contents/ServerRoot/usr/share/devicemgr/backend/wipeDB.sh

Similar Messages

  • How to configure Mountain Lion Server to run Web2py with wsgi?

    I am trying to config Mountain Lion Server to run Web2py with mod_wsgi. I get an error saying: "Premature end o scritp Header" wsgihandler.py (which is the wsgi file for Web2py).
    I had it working fine in Snow Leopard and Lion Servers but not in Mountain Lion Server.
    Thanks for your help.
    Flavio.

    I don't run web2py framework so can't tell you specifically.
    That error means your script is not writing an http header to the browser so the browser can't decode whatever string it is getting. Your script is running as a plain old Python script. This is most likely because the Server.app in 10.8 now includes mod_wsgi built-in and configured from the GUI.
    You can insert an intercept anywhere in your code to check any variable by saying this:
    ##########   PROGRAMMING HERE  ###############
    print("Content-type:text/plain\n\n")
    print(someVariable)
    # raise SystemExit
    The above sends an "http header" so the browser knows what to do. These headers are invisible in the browser window. But depending on your Python version, the pring statement may not work (I am running Python3). The SystemExit statement is optional, just in case your script crashes downstream.
    WSGI sends a header like this:
    startResponse("200 OK", [("Content-Type", "text/plain")])
    but it sounds like mod_wsgi is not even being invoked. Normally your WSGI script is named *.wsgi and your Apache is set up to run the Python script as CGI under the mod_wsgi handler using this directive:
    AddHandler wsgi-script .wsgi
    The file having the config is located at
    /Library/Server/Web/Config/apache2/httpd_wsgi.webapp.conf
    where webapp is the name of your webapp. I would suggest copying the file called httpd_wsgi.conf and renaming it to your webapp name. When Server.app is configured properly, you enable wsgi webapps in the GUI Advanced wndow for your domain.

  • Configuring postfix on Mountain Lion Server

    I'm trying to upgrade from Snow Leopard Server to Mountain Lion Server and did an install of Mountain Lion Server on top of a working instance of Snow Leopard Server.  The "crippled" GUI on Mountain Lion Server is forcing me into using terminal to configure Postfix to handle incoming email.
    I would like to configure Postfix to only accept email that is forwarded from a gmail business account.  The public email address is [email protected] which is received by Google Mail, goes through their spam filters and then is auto-forwarded to  [email protected]
    The server WAN domain is nonpublic.com  The ip address is 96.231.165.126
    The server LAN is nonpublic.local  The ip address is 10.6.18.201
    The server is a MacMini running Mountain Lion Server 10.6.8 hostname server so the FQDN is server.public.com.
    The network on the MacMini is configured to handle both LAN and WAN traffic through the 1GB physical ethernet port which plugs into a CISCO 3750 switch.  The external traffic to the WAN flows through the switch as tagged packets.  The LAN traffic is not tagged.  The VLAN connection is running 802.1q
    When an email is sent through the WAN to [email protected] the Postfix SMTP log shows:
    Jun  7 19:29:22 server.public.com postfix/smtpd[42181]: connect from cisco.public.com[96.231.165.123]
    Jun  7 19:29:22 server.public.com postfix/smtpd[42181]: disconnect from cisco.public.com[96.231.165.123]
    I can send emails from a client on the LAN through this server with no problems.  The incoming mail server can connect to the machine via the Cisco router/switch but Postfix just shows "cisco" as the connection (that's the router's DNS name) and provides no more info.  I suspect Postfix possibly doesn't like the 802.1q connection and drops the SMTP request to connect on port 25.
    I have turned on "debug" logging in Postfix, but that is all that appears in the SMTP log file
    I've spent most of the week reading through everything I can find on how to install and configure postfix on Mountain Lion Server and work around the cripled GUI in the "server" application.  I'm barely OK using Terminal and not familiar at all with configuring Postfix directling editing the config file.
    What is the best approach to configure Postfix to allow SMTP connections from the outside to deliver incoming email that is forwarded from gmail.com?
    I did find an "aliases" file in /etc/postfix/aliases but I'm not sure how to add the aliases and if adding aliases with a text editor is going to cause the "server" app problems and if the changes will be lost when the machine is restarted.
    Any help would be appreciated.

    MrHoffman, thank you for your response to my challenge to get the new test server working.  This is a migration from Snow Leopard Server to Mountain Lion Server.
    Here is the "checkhostname" test results:
    blue:~ admin$ sudo changeip -checkhostname
    Password:
    Primary address     = 96.231.165.211
    Current HostName    = blue.pderby.com
    DNS HostName        = blue.pderby.com
    The names match. There is nothing to change.
    dirserv:success = "success"
    blue:~ admin$
    Here is the response from postconf -n
    blue:~ admin$ postconf -n
    biff = no
    command_directory = /usr/sbin
    config_directory = /etc/postfix
    daemon_directory = /usr/libexec/postfix
    data_directory = /var/lib/postfix
    debug_peer_level = 2
    debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin xxgdb $daemon_directory/$process_name $process_id & sleep 5
    dovecot_destination_recipient_limit = 1
    html_directory = /usr/share/doc/postfix/html
    imap_submit_cred_file = /Library/Server/Mail/Config/postfix/submit.cred
    inet_interfaces = loopback-only
    inet_protocols = all
    mail_owner = _postfix
    mailbox_size_limit = 0
    mailq_path = /usr/bin/mailq
    manpage_directory = /usr/share/man
    message_size_limit = 10485760
    mydomain_fallback = localhost
    newaliases_path = /usr/bin/newaliases
    queue_directory = /Library/Server/Mail/Data/spool
    readme_directory = /usr/share/doc/postfix
    recipient_delimiter = +
    sample_directory = /usr/share/doc/postfix/examples
    sendmail_path = /usr/sbin/sendmail
    setgid_group = _postdrop
    smtpd_tls_ciphers = medium
    smtpd_tls_exclude_ciphers = SSLv2, aNULL, ADH, eNULL
    tls_random_source = dev:/dev/urandom
    unknown_local_recipient_reject_code = 550
    use_sacl_cache = yes
    blue:~ admin$
    I agree that I should change the LAN domain from .local to something like .internal or whatever.   I've been running with .local for 5 years  on snow leopard server and never had any problems so that was a low priority.
    I hope I'm just not seeing some obvious setting in main.cf

  • Error configuring services from Snow Leopard Server to Mountain Lion Server

    I am trying to upgrade a Snow Leopard Server Mac Mini to Mountain Lion Server.
    We have two Mac Mini servers at our office (production and backup) so I migrated the everything from our production server to the backup using the migration assistant when setting up the backup computer.
    I now have the backup at home trying to upgrade it to Mountain Lion Server.  I have downloaded and installed Mountain Lion as well as the Server App version 2.2.  I basically followed the simple directions found in the Apple documentation.
    I started the server app and it got to the part where it said "Upgrading services".  After running for a few minutes, I get a window that states "An error occurred while configuring your server."  It also sayd "The following actions failed or were not attempted:" with a red dot next to "Upgrading services".  The other three items:  "Authenticating to local directory", "Reading directory configuration" and "Authenticating to local directory services" have gray dots so I'm sure they were not even attempted.
    Our Snow Leopard server is setup for SMB file sharing, LDAP services, FTP, Web, DNS, DHCP.
    Can someone point me to where I can figure out what exactly is failing?  Are there specific log files I need to look into?
    Thanks

    Have EXACTLY the same issue - also tried reinstalling mountain lion server fresh and still had the same problem...

  • Firewall gui for Mountain Lion Server

    Is there an easy firewall for Mountain Lion server? Im amazed Apple took this feature away. For what reason? I dont know command line very well and shouldnt have to learn it seeing as how Macs are supposed to be "user friendly". Doing a port scan I see about 20 ports open that I want to close but just dont know how as they're not application specifc (like pop3...). Any suggestions would be helpful.
    thanks.

    Scott Howe wrote:
    I meant to say "Is there a GUI for the Firewall for Mountain Lion Server"
    I totally agree with you, the whole point of OS X was to be easy to use i.e. GUI based, if we wanted a pure CLI system we would get Linux
    There are actually two different Firewalls on Mountain Lion Server, the 'standard' one you see in System Preferences which is an Application level firewall (ALF), and has extremely limited options but does have a GUI, and the CLI only one which is pfctl (Packet Filtering).
    Note: ipfw is depreciated in Mountain Lion.
    There is a third-party tool for configuring pfctl called IceFloor. Be careful though, I managed to screw up a system with it, as always make sure you have a backup before making changes.
    See http://www.hanynet.com/icefloor/

  • Mountain Lion server VPN configuration problem

    I'm having a problem connecting to my Mountain Lion server VPN even on my home local network.  The configuration is so simple but I can't figure out what I need to do to get it to connect.  Trying from my iphone and also ipad going directly to the ip address of the server and have the user account name, password and secret filled out as I have it set on the server but the connection fails.  I was at first thinking it might be a DNS issue, but then dismissed that since it's happening on the local network.  It seems to be an authentication issue, however I'm using the same settings as on the server. I have other services working such as file server, DNS and SUS so the product itself is fine, just the VPN service.
    Any ideas?
    - Chris

    I had the same "No CHAP secret found for authenticating username" issue. I've been at this VPN thing for many many hours over many days. Desperately want OS X Server to work.
    Finally I just bought iVPN to see if that would work somehow--- AND IT TOTALLY DID.
    So, forget Mac OS X Server VPN. Just forget it. There are definitely many problems out there facing VPN access. But if you're at the point I was, where it's connecting just not authenticating, then forget Mac OS X Server.
    http://macserve.org.uk/projects/ivpn/

  • Can't get Mountain Lion Server Server to upgrade properly - Configuring services

    Hi All,
    First of all thanks for any answers or suggestions you might have. We are a small business with about 25 employees. We have been running Lion Server for email and collaboration without much issue. Today we decided to upgrade to Mountain Lion Server, which was a big mistake apparently. We downloaded and installed Mountain Lion which went fine. We then downloaded and installed the new Server app and that's where things got hairy.
    The Server app got to the part where it says Configuring Services and just sat there spinning. After about an hour I figured something was up and noticed in the console that there were a bunch of errors trying to update certain things. Needless to say we had to force quit the Server app after a long while and nothing got updated/migrated. We were left with a non functional server. Luckily we had set up the Lion Server to clone to another drive and we were able to boot to that to get back to work.
    None of us have much experience with command line, part of the reason we got Lion Server in the first place was it's ease of use and GUI. So has anyone else had similar issues? We are kind of at a loss as to where to go next. Thanks!

    It is indeed an option to wait, although I did manage to upgrade four servers that all have working forward and reverse DNS from Lion Server to Mountain Lion 10.8.
    After installing OS X Server on top of that server specific items like mailboxes returned

  • Adding redirect path and  pattern in Lion server for configuring software update server

    Adding redirect path and  pattern in Lion server for configuring software update server.Any changes

    Ok, after days of browsing on the forum I found the following hint on another discussion related to AFP access:
    "This may be a service ACL issue.
    It turns out one of the latest Apple updates turned on Service ACL's which caused AFP connections to be  blocked. Once I fixed the Service ACL in Server Admin... all connections and Single Sign On worked."
    Well, after allowing access to all services to all users with Server Admin, we were finally able to log in the server with our admin account...
    So, there must have been an update that turned on ACL's which caused even our local access, probably for OD/Kerberos, on the server to be restricted.

  • Snow Leopard client for NetRestore image not being recognized in Mountain Lion Server

    I target firewired a MacBook Pro running Snow Leopard and ran System Imaging Utility and the machine does not show up as an option. Does Mountain Lion Server support Snow Leopard NetRestore images or am I doing something wrong?

    I'm actually trying to figure that out as well. We have 10.5, 10.6, 10.7, and 10.8 Images we wanted to put together for our netrestore images on our server, but can only do 10.8 images currently.
    We also have the AppleCare Helpdesk diagnostic kit which includes hardware tests, we were only able to get the newer mid-2012 and late-2012 Diagnostic utilities to netboot but none of the older ones.
    So do we need a server running the older OS to get these or is there a better alternative? i mean really shouldnt be a problem considering theyre running inside of an image and dont rely heavily on the server resources other than to say "Yep, goto this file/directory".
    I'd like to know more as well....

  • Additional email address for user in mountain lion server

    I have a new installation of OS X Mountain Lion server (10.8.2) that I am wanting to deploy.  The problem that I am running into now is that there is no way that I have found to add a second email address. 
    I have multiple domains so, i need to have "[email protected]" and "[email protected]" for the same user.
    Has anyone seen a way around this?

    matneyc wrote:
    Wow - just after I answer back, I found a download for the Workgroup Manager at http://support.apple.com/kb/DL1567.  I probably need more sleep.
    Yes, it is just Server Admin that is no more, Workgroup Manager is still at the moment available.
    For your information another less pleasant means would be to directly modify the Open Directory record using either the command line or the Directory Editor launched from Open Directory Utility which in turn is launched from the Login Options "Join..." button.

  • Mountain lion server won't take my password for install

    I have never run a server version of apple software.  I am wanting web sharing to host a small website.  This option was removed from sharing preferences in mountain lion. 
    I purchased server to avoid the need to use the command line interface.  It was requiring a password and I don't use a password on my system and it wouldn't take a null.  I am finding a similar problem with attempting to install server on mountain lion.
    When I run the mountain lion server installer it prompts for an administrator password.  I hit return as I set up the system without an administrator password.  This fails, but works with all other admin password requests for software installation.
    Any assistance would be appreciated.
    Best Regards,
    David Finell

    I just decided to setup passwords.  I just wanted to avoid the pain.  It worked.  Now to figure out how to share folders over the web in server.

  • Out of office Relpy for apple Mail on Mountain Lion Server

    We just recently switched our server from Lion to Mountain Lion and now we can not figure out how to create and launch an Out of Office Reply for Apple Mail on the new Mountain Lion Server.  I have searched the internet for an aswer and/or instructions on how to do this and haven't found any. 
    As anyone figured out how to create and launch an Out of Office Reply for Apple Mail on the new Mountain Lion Server?

    Eustace - Thanks for taking a crack at it!  I saw this same post as well but it doesn't answer my question about how to create and launch an Out of Office Reply for Apple Mail on the new Mountain Lion Server?
    I'm not looking to create an out of office rule on my computer but on our Mountain Lion Server like we used to be able to do on Lion Server.

  • I recently (4 days ago) bought a Mac mini server with 10.7 lion; will I qualify for a free upgrade to Mountain Lion Server?

    How has Apple honoured buyers of other releases of OS X immediately before a new version was announced?

    omnomnomz wrote:
    How has Apple honoured buyers of other releases of OS X immediately before a new version was announced?
    I recently (4 days ago) bought a Mac mini server with 10.7 lion; will I qualify for a free upgrade to Mountain Lion Server?
    Mtn Lion not due out until the Summer, so no, you will not get a free upgrade.

  • How to Create lion os x Image for netrestore in mountain lion server

    i have a problem with the create a lion os x image for netrestore in mountain lion server, i have a macbook pro with all software that i like for the customize deployment but when i connect the macbook pro to macmini server in target mode,but  the system image utility don't added to sources for create a netrestore image, this only pass with lion os x because with mountain lion os x works correctly, please help me

    System Image Utility only makes images of the system it ships with.
    In order to make Lion images, you'll need to install the Server Admin Tools for Lion onto a Lion system. You will then find the appropriate System Image Utility in /Applications/Server/.

  • Mountain Lion Server cannot create NetBoot images for earlier systems

    I'm trying to create a NetBoot image for OS X Lion on my Mountain Lion Server using System Image Utility, but SIU shows the 10.8 installer as the only available disk for creating an image.
    The same 10.7 boot disk is shown as source correctly in Lion Serevr SIU.
    Does SIU limits the creation of NetBoot image only for the same OS X version or am I missing something?
    Ideas?
    Thank you!

    Yes. SIU for Mountain Lion only makes images of Mountain Lion.
    To make images for Lion, you'll need to download the Server Essentials package for 10.7.5 and install it onto a Lion system.

Maybe you are looking for

  • How to add a contact to a specific group in iOS6

    Whenever I add a new contact to Contacts (address book), the contact just gets added to default list. Is there an option in iOS6 to add the contact to a specific group within my contacts or to move a contact from one group to another? I know how to d

  • Very frustrating problem with Photoshop Elements 10 - can anyone help?

    I don't know what's happened, and I haven't changed any of the settings or anything. When I open a photoshop file I am currently working on, now, no matter what I do, nothing changes in the actual photo. Even when I delete layers to see if it reverts

  • Salary statement in ESS

    Hi everyone, I just need to know if under the "Benefits and payments" service, an employee can see all the salary statements he has for a certain period. Eg, if in the month of june the employee has a statement with his vacation calculation and anoth

  • Lost history after updating to FF4.0

    From FF3.6, I downloaded and installed FF4.0. I had a huge history saved in 3.6 and expected it to be there with the upgrade - it wasn't. In the "show All History", only "Today" shows. I'd heard of a file called "places.sqlite" is where history is sa

  • Why wont my audio/video transitions render in media encoder

    when im rendering a project from PP in media encoder the audio/video transitions i added to my project dont show up in the rendered version of the video (the affter affects compositions i added show up though) but when i open the project back up in P