<html><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">Hi Nathaniel-<div><br></div><div>This seems to be an interesting situation. This might not be the best (or supported) approach, but I can tell you how I would approach it.</div><div><br></div><div>What I would do is make a generic, custom user home directory into a package a la Composer. Don't just grab the changes though, grab to whole 'example' user directory. Then make a policy like you normally would limiting the scope to the AD group you want and have it run a script with the following, for example:</div><div><br></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;">#!/bin/bash</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"><br></span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;">$USER=$3<br></span></font><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"><br class="webkit-block-placeholder"></span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"># This next one may take some modification depending on how you connect to AD</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;">$USERHOME=`dscl localhost read /Active\ Directory/All\ Domains/Users/$USER NFSHomeDirectory | cut -d' ' -f2`</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"><br></span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"># Remove an existing home directory</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;">rm -rf $USERHOME</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"><br></span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"># Mount package and copy contents (similar to how Casper works)</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;">mkdir /tmp/packages</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;">mount_afp <a href="afp://user:password@server/share">afp://user:password@server/share</a> /tmp/packages # For us it's "mount_afp <a href="afp://user:password@xsrv1/CasperShare">afp://user:password@xsrv1/CasperShare</a> /tmp/packages"</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"><br></span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"># Mount (or "attach") the package</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;">hdiutil attach /tmp/packages/Packages/<package name>.dmg</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"><br></span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"># ditto out the contents into the user's home directory</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;">ditto /Volumes/<package name> $USERHOME</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"># Change ownership</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;">chown -R $USER $USERHOME</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"><br></span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"># Cleanup</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;">hdiutil detach /Volumes/<package name></span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;">umount /tmp/packages</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"><br></span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;">exit 0</span></font></div><div><font class="Apple-style-span" face="Monaco" size="2"><span class="Apple-style-span" style="font-size: 10px;"><br></span></font></div><div>This script will obviously have to be modified to match your infrastructure, but will mount the package and copy the contents to the user's home directory. If this policy only runs for the users in a certain AD group (via the policy scope) then you should have the solution that I think you are looking for.</div><div><br></div><div>This method of mounting the package and using ditto is what Casper used to use for package installation and is currently used as the fallback if asr (the current copy method) fails. Unfortunately, I don't have the experience with ASR to show you how to use that.</div><div><br></div><div>I cannot stress enough that I just typed this script into this email. It is not something that I use in practice and it's possible that there might be errors is it so make sure you test it before you use it (should be good practice for anything you use).</div><div><br></div><div>Hope it helps, let me know if I can help any further.</div><div apple-content-edited="true"> <div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; "><font class="Apple-style-span" color="#8776B3" size="4"><b style="color: rgb(135, 118, 179); font-size: 14px; font-weight: bold; "><br class="Apple-interchange-newline">Ryan Harter</b></font></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; "><font class="Apple-style-span" color="#8776B3" size="2">UW - Stevens Point</font></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; "><font class="Apple-style-span" color="#8776B3" size="2">Workstation Developer</font></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; "><font class="Apple-style-span" color="#8776B3" size="2">715.346.2716</font></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; "><a href="mailto:Ryan.Harter@uwsp.edu"><font class="Apple-style-span" size="2"><span class="Apple-style-span" style="color: rgb(0, 0, 238); ">Ryan.Harter@uwsp.edu</span></font></a></div> </div><br><div><div>On Oct 6, 2008, at 12:40 PM, <a href="mailto:NATHANIEL.LINDLEY@spps.org">NATHANIEL.LINDLEY@spps.org</a> wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite"><br><font size="2" face="sans-serif">Craig,</font> <br> <br><font size="2" face="sans-serif">Sorry, I'm not clear myself in some ways. </font> <br><font size="2" face="sans-serif">when a user from an AD group called "online testers" logs in to a computer I want a policy activated by that login to set the desktop, dock, system settings and install the test application software package. The dock will be empty except for that one test application, some finder prefs (don't show connected servers" and a different background desktop to show that it isn't a standard user. So the Application package isn't unique to the user but the Dock and such are unique to the user who is a member of this group. I don't want this online testing User Environment settings to be applied to other users on the computer or the User template on the computer. Just these few testing users who will get local home directories made on the computer when they login-per the AD plugin settings.</font> <br><font size="2" face="sans-serif">Does that help?</font> <br><font size="2" face="sans-serif">-Nathaniel</font> <br> <br> <br> <br> <table width="100%"> <tbody><tr valign="top"> <td width="40%"><font size="1" face="sans-serif"><b>"Ernst, Craig S." <<a href="mailto:ERNSTCS@uwec.edu">ERNSTCS@uwec.edu</a>></b> </font> <br><font size="1" face="sans-serif">Sent by: <a href="mailto:casper-bounces@list.jamfsoftware.com">casper-bounces@list.jamfsoftware.com</a></font><p><font size="1" face="sans-serif">10/06/08 12:32 PM</font> </p></td><td width="59%"> <table width="100%"> <tbody><tr valign="top"> <td> <div align="right"><font size="1" face="sans-serif">To</font></div> </td><td><font size="1" face="sans-serif">Casper List <<a href="mailto:casper@list.jamfsoftware.com">casper@list.jamfsoftware.com</a>></font> </td></tr><tr valign="top"> <td> <div align="right"><font size="1" face="sans-serif">cc</font></div> </td><td> </td></tr><tr valign="top"> <td> <div align="right"><font size="1" face="sans-serif">Subject</font></div> </td><td><font size="1" face="sans-serif">Re: [Casper] User Environment for group of users</font></td></tr></tbody></table> <br> <table> <tbody><tr valign="top"> <td> </td><td></td></tr></tbody></table> <br></td></tr></tbody></table> <br> <br> <br><font size="2" face="Verdana">Hi Nathaniel,<br> <br> Can you clarify the language here a bit for me...particularly the per user stuff.<br> <br> Do you have additional settings that need to get applied to just these users (and not anyone who applies this particular package), AND a unique dock you want for these users as well?<br> <br> Craig E<br> <br> <br> On 10/6/08 12:04 PM, "Nathaniel Lindley" <</font><a href="NATHANIEL.LINDLEY@spps.org"><font size="2" color="blue" face="Verdana"><u>NATHANIEL.LINDLEY@spps.org</u></font></a><font size="2" face="Verdana">> wrote:<br> </font> <br><font size="2" face="Verdana"><br> We've started preparing for our online testing deployment and I'd like to trigger installs of software and user environment settings based on a login of certain users or a group of users. <br> For example, when "testing1" logs in who is a member of the AD group "online testing users" they should trigger the install of the testing software, User ennvironment settings and turn off some services (like anti-virus). So I can get the policy to trigger at the users login and the software to install, but the User Environment stuff doesn't seem to work, because I created the package in Compuser using a generic "student" account. Then the desktop,dock plists get placed for the local student account and not for the "testing1" account. I don't want to fill User Template or Existing Users on the machine b/c I only want it for this group of users. Do I need to create a UEV package for each testing user? or can I apply the UEV package to a group of users based on login name or group membership? and have it fill their user preferences? <br> Do I need to write some custom scripts instead? <br> <br> Version 6.01 <br> <br> Thanks <br> -Nathaniel <br> <br> <br> Nathaniel Lindley<br> <br> ++++++++++++++++++<br> Learning Systems Specialist<br> Educational Technology<br> Saint Paul Public Schools<br> Saint Paul, Minnesota</font><font size="2" color="blue" face="Verdana"><u><br> </u></font><a href="nathaniel.lindley@spps.org"><font size="2" color="blue" face="Verdana"><u>nathaniel.lindley@spps.org</u></font></a><font size="2" face="Verdana"><br> phone: 651-603-4929</font><tt><font size="2">_______________________________________________<br> Casper mailing list<br> <a href="mailto:Casper@list.jamfsoftware.com">Casper@list.jamfsoftware.com</a><br> </font></tt><a href="http://list.jamfsoftware.com/mailman/listinfo/casper"><tt><font size="2">http://list.jamfsoftware.com/mailman/listinfo/casper<br> </font></tt></a> <br><span><ATT00001.txt></span></blockquote></div><br></div></body></html>