WWDC2003 Session 617

Transcript

Kind: captions
Language: en
good morning how's everyone doing she
forgot your coffee and your donuts and
you've known us this morning no not yet
they'll be coming I'm sure they'll have
your all the sugar you need by the end
of the day so we're here to talk about a
desktop and server migration to Mac os10
my name is JD Mankowski I'm the
consulting engineer for us business and
federal for the u.s. so what does that
mean means that i live in a hotel i know
a lot of those flight attendants by
their first name and so i spent about
sixty percent of my time in front of
customers and I know quite a few of you
basically understanding your needs as
far as features for as an example for
Panther right now but before any future
releases of our operating system so it
spent a lot of time with enterprise
accounts understanding what they need
from apple and then i spend about thirty
to forty percent of my time back in
cupertino with our product marketing and
engineering folks and making sure that
we actually build the products you need
so that's kind of my role for for apple
and so you know basically what i'm going
to do today is kind of give you an
overview of some of the tools and best
practices that you know our customers
are using today to migrate to mac OS 10
and then you know with panther there's a
lot of new features that we think will
fit the needs of the enterprise and by
the way my enterprise is you know
business federal you know I consider
education in their price as well so if
there's education people in here when I
mentioned enterprise it does include
hire a discourse and k12 and so we're
going to talk about some of those tools
that are going to be made available to
you soon by the end of the year with
panther and Panther server and as you've
seen in the past year a lot of our
developers are all is well migrating to
mac OS 10 and porting the wraps to to
mac OS 10 and we'll talk about that in a
second but basically 2003 is the year to
move from nine to ten so for those of
you who haven't done this yet this is
really the year to do to do this
we'll try and illustrate and show you
some of the best practices in a second
so the first thing I wanted to do is
like we did last year the developer
conference I just wanted to have fun
with keynote that's all I like the
balancing feature it's kind of cool but
so this is another cool feature keynote
but basically last year no we put mac OS
9 / rest from the developer side and
this year we're putting mac OS 9 to rest
from the customer perspective and again
classic is still going to be here but
you know as you you know the g5 and all
the new machines are not booting mac OS
9 and so this is the time this is this
is a year to migrate to 10 so what are
going to learn well when I go and meet
with customers what they ask me quite
often is give us the ammunition where I
give us the reasons why we should go to
Mac OS 10 and so that'll be my first
point is try to give you the top 10
reasons that I think and our customers
feel like are good reasons to migrate
from Mac OS 9 to mac OS 10 as well as
migrating from Windows to Mac os10
because that's another thing that we'll
talk about today i will also have a
special guest from pixar who is actually
going to talk about how they migrated
there max from OS 9 20 s 10 and they did
some really really cool stuff and gable
actually show that in a few minutes and
then we'll talk a little bit about the
windows side because again you know we
started with a switcher campaign on the
consumer side but i feel like with
panther and panther server we have a
really good shot to actually go beyond
the consumer and beyond the creative
groups and actually replace some windows
desktops and some windows servers with
mac OS 10 and mac OS x server and to do
this will actually show you some really
cool demos today with eric lemons who
will show you actually some pretty
interesting integration demos so what
are the top 10 reasons to move to as 10
and again this is feedback that I've got
from customers that have migrated to mac
OS 10 already so the number the number
one bullet that i would think of as
security right Mac OS 10
foundation when we built when we design
Mac os10 it was built around you know a
very robust core OS but security was
built in not bolted on like some of the
other operating systems out there so my
first point is you know security
built-in not bolted on and you can see
that this year with kerberos you can see
we're pushing for pretty heavily
kerberos some other things that we
haven't talked about is smart card
support so we have smart card support
and Mac OS 10 and so you can you know
you can also look at that that's a
pretty interesting roadmap as far as we
have a lot of demand from our federal
groups on smart cards but we think this
can apply as well to to the business
into the enterprise where they could
very easily put in a smart card reader a
USB smart card reader put it in and
basically type in a pin number and get
instead of having the login prompt and
having to remember their name and
password they can actually do that with
a smart card and with a pin a pin number
stability Mac OS 10 is a much more
stable OS than mac OS 9 and you all
experience that already I mean even
though an application can quit and it
does happen and I'm sure you've seen
that today or this week you should play
with the betas of Panther right or the
WTC build so it is much more stable than
mac OS 9 and the beauty of it is you can
force quit an application and it doesn't
bring the whole system down directory
integration that's something that I've
heard a lot about throughout all those
meetings with with accounts is they
really want us to fit in and integrate
with their back-end directory and that
means ldap integration it means you know
Active Directory Integration as well
single sign on is another big thing and
that's something that we announced this
year with Panther will be able to
achieve that will be able to achieve
single sign-on and again for those of
you don't know what that means it
basically means that you log in once at
the login window and then you can
connect your ASP and connect to your ftp
you can ssh without having to re enter a
password anymore or username and a
password
and so single sign on is something
that's very useful in the in the
enterprise world server based user home
directories ok that's the feature where
you can log in from any desktop and that
machine becomes your machine your
background your fonts get loaded your
files get loaded your email gets loaded
very very powerful feature that we can
achieve actually we can already do that
today in Jaguar but we'll go beyond that
in Panther we're group management right
IT people love locking down the systems
right is that true yes so what group
management is a great thing it's called
workstation policies on the window side
same thing we can basically do some
pretty nifty things with with micro with
Jaguar and Panther where you know you
can lock down you know people plugging
in disk on keys right those wonderful
little USB devices you can prevent that
you can prevent people from mounting
external devices you can prevent them
from you know burning cds she can do all
sorts of things with with ro group
management and and that's again that was
designed from the get go with with
jaguar and with panther so it's not
something we added on top like in the
mac manager days with the OS ninth and
the OS 9 timeframe central desktop
administration that's another thing
people want they want to easily build a
manage those desktops and push
applications and push files push
preferences over to those computers and
so with panther we announced that apple
remote desktop the client will be built
in 22 Panther and that's the next big
step that's something that we had it
should recall in the end of eight and
nine days where we had you know Apple
Network assistant and I was built in you
can actually do that you can actually
add that to your custom install it's now
back in Panther so the client is built
into built into Panther and it's
actually in your sharing prep and that's
actually in the in the build you have in
your hands
robust unix-based foundation so yes Mac
os10 is a very robust unix OS but what I
discovered with our customers is when we
talk to you know the Mac group now we're
also as well talking to the UNIX group
and we've got those people pretty much
switched over as well right those UNIX
people had a Windows computer and they
had a unix box right they had a unit
computer to run their email and run the
the productivity suite like office in a
Word Excel and so forth and now they
basically replaced their windows
computer and their UNIX workstation with
a mac OS 10 bucks right and so you
should get if you're a Mac IT person you
should get with your unix people and get
to know them and actually you know
really work together as a group to
support the max to support the UNIX
stations that you have in your in your
environment and that's also the fact
that the mac OS n is unix also makes it
easier to find people that can manage
and help support those macs is anyone
with you know a solaris background or a
linux background can actually now help
support the max very it's much easier
for them to do that than to learn mac OS
9 believe me software developers have
transitioned to 10 great examples from
adobe from Microsoft I mean they make
phenomenal applications and so they have
transition to 10 and that's one more
reason to move to mac OS 10 from from
your perspective and then licensing
costs that's something that I hear a lot
about a lot of complaints from customers
is that licensing costs of Microsoft's
are pretty expensive and we think we
have a you know pretty good solution
with our maintenance agreements that we
have in place today so let's talk about
some general migration guidelines if you
haven't migrated to mac OS 10 yet what
are some of the key things that you
should look at before starting that
migration well the first one is planned
your directory strategy right what I
mean by directory strategy I mean take
the right back end authentication method
and you know we like standards right Mac
os10 is all based around open standards
and so if you haven't planned on your if
you haven't looked at a directory a
central directory strategy we highly
recommend you look at ldap based
solutions right and those could be from
Sun they can be from novell edirectory
the phenomenal solution for from a
directory perspective it could be from
IBM it can be from Apple using our new
openldap based ldap replication server
so you know active directory is and
interesting you know the product for
Microsoft it's not quite standards-based
right it's kind of a mixture of ldap
kerr bros plus some other things so we
like standards and so if you haven't
looked at this look at an ldap based
solution if you can if you've gone ad we
understand and will fit in plan your
desktop management right so again using
we're group management make sure that
you create and you set up your OS 10
servers with your work group management
and you define that and created your
groups and basically done all the work
in advance before deploying work group
management and that you've actually
tested that in a small environment right
50 users 10 to 50 use is a good number
to actually deploy this and test that
before you go throughout you know to
your hundreds of hundreds of mac users
get certified right we have a wonderful
certification program that's something
that our customers have been requesting
for years and its really really
important I mean you know i've been
using mac OS since 1984 I know Mac OS 9
I know every extension you know but Mac
OS 10 is a different beast there's a lot
of potential right in this operating
system a lot of potential and by getting
certified will give you a lot of that
those tips and a lot of that really
interesting suite that
knowledge that the the trainers have
because they a lot of them come from a
UNIX background and they could really
help you get jump-started and it's
really important that you get certified
for 10 before starting this Mac os10
migration and deployment so this is the
website check it out sign up for
applecare support right we have a pretty
nice applecare server software support
it's not the 999 the 999 that's really
for hardware you know it's in the five
thousand dollar range and that includes
very high level support from unix people
who can actually help you write you know
scripts and do some pretty interesting
stuff so we have those plans in place to
support enterprise level customers get
familiar with the new Apple tools right
so today you're familiar with carbon
copy cloner phenomenal tool net restore
is another one that's really cool in
Panther timeframe we have a new version
of disk utility we have a new version of
the network image utility which is
basically which takes a lot of the
carbon copy cloner features and
integrates it and in this tool and then
we have of course apple remote desktop
which is a phenomenal product I mean I
go and meet with customers on the pc
side and the comparable solutions are
you know worth thousands of dollars and
here you can get you know apple remote
desktop for a thousand dollars for
unlimited you know client seats and
that's that's just a phenomenal product
and that's one admin by the way so we
got some really good tools from Apple
that can do can achieve a lot of that
management for a pretty pretty
attractive price price point and by the
way this copy if you're using disk copy
today that's actually part of disk
utility in Panther so don't look for the
disk copy utility application it's now
embedded into disk utility so those are
the three tools that we just talked
about
so we're going to first start with the
92 Mac os10 migration and so what I
wanted to do first is kind of give you a
quick basic implementation and what I
mean by basic implementation is
basically a three-step process all right
I've summarized it into a three step
process to migrate from nine to the Mac
os10 and by the way this is this applies
to jaguar as well so the mac OS 9 to
migration the first thing that users can
do is they can use sherlock to should
remember to roll off to a mac OS 9 and
they can find the users files on the
hard drive right they find their files
on the local hard drive you can do some
of the advanced search capabilities to
do that of course you can right al Apple
script that does that automatically the
second thing is again if you plan your
directory and your desktop management
properly it probably means the user now
has a mac OS 10 home directory waiting
for him right so / asp you can connect
to that user home directory and he would
have you know his document folder his
picture folder his movie folder and he
can then from his OS 9 desktop copy all
those files over to his virtual Mac os10
home directory that's waiting for him
and then the third step is basically as
an admin you've created a custom image
right using the new tools or using
carbon copy cloner you've created your
jaguar image and you've added all your
applications that you use on a regular
basis you've built that image and you're
now ready to deploy it on that desktop
right and so in 10 3 we have a new
feature in disk utility so again you
could boot from a CD go to the restore
tab put in the HTTP URL where that
custom image is located and basically
restore the machine and when the user
comes in and he's at the login window
all he would have to do is love put in
his name and password and get to those
files that he just copied over when he
was still on Mac OS 9 and you can do
that with net restore again today with
one of my colleges tool to achieve the
same thing if you want to migrate from
line to the Jaguar today so what I'd
like to do now is actually introduce
gaben Vanessa it from Pixar and they've
done a phenomenal migration deployment
from nine to ten and Gabe is going to
talk to you about that thank you how's
everybody doing today hope you wouldn't
saw Finding Nemo last night upstairs a
lot of a lot of fun so uh my name is
Gabe benvenuti i'm an admin at Pixar
Animation Studios and I'm going to talk
to you today about how he moves 500 of
our max for most 920 s10 about how we
were able to utilize the UNIX foundation
that OSN has to easily integrate with
our infrastructure and how we were able
to take advantage of how scriptable the
operating system is so we were able to
use tools like Python applescript to
really streamline our whole migration
process the first thing we did is we
created our standard image using carbon
copy cloner with our standard images
called the pop which is short for
Pixar's OSN talks consists of latest
version of Mac OS 10 we did a custom
install and left out the localization
files we installed a standard set of
applications that all of our users get
things like office launch bar is a
utility that we found the users really
responded well to we also made specific
Network and machine configurations we
disabled the accounts pref pain so that
we had control over the creation of
accounts we disabled software update so
that we can control what software and
went gets updated on the machine we also
modified the user template home
directory and this is a really cool tip
because you can go and change what new
home directories will look like by going
to system library user templates English
at El prods you can change things like
how the default browser is set up where
the doc is placed what apps are in the
doc it's really really great so if you
change that template whenever you make a
new user it'll have those changes the
second thing we did is we made a
FileMaker database for planning and
tracking our migration the user goes and
they fill out a web form specifying what
apps they need outside of the standard
Bay
so what printers they need to configure
what peripherals they may have set up
and once once that form is submitted
their scheduled for a migration and when
that time comes the admin goes and grabs
their machines takes it to our lab and
boot it up into OS 9 they make sure that
the data is in the correct place either
in the documents folder or on their
desktop and the user was told on the
migration page to put their data there
we then restart the machine off of a
firewire drive running OS 9 and run this
really cool Python script we made called
roll out what stage 1 of roll out does
is it scans to fire the OS 9 machine for
data matching a certain criteria it
copies that data to the firewire drive
into a folder resembling a home
directory once that's done we take the
firewire drive and we boot the new
machine off of it and we wrote an appt
full script studio program called epoxy
that's a front end for Apple software
store or ASR what it does is on launch
it goes and checks a web server take it
the path to the latest version of our
pox it then boxes the new machine the
admin can enter their email address if
they want to be notified when it's done
and can set the machine to restart
automatically if the machine is new it
doesn't have an ldap record and so we
made another apple script studio
application called host maker to take
care of that it allows the admin to
enter the new machine name and the
primary users name it then goes and
looks up the users name and ldap gets
their information where they fit what
department there in check system
profiler for the machine serial number
and mac address combines that
information and creates a new host
record once the ldap information is up
to date and the machines been pox they
had neurons another program we made in
Apple script studio called configurator
on launch configurator goes and pulls
down the machines IP and the machine
name using the serial number it got from
system profiler it then automatically
sets that information in the machine and
then the admin said what backup settings
are going to be used for the machine so
and once the admin selects that the
backup team is notified
the default user information was also
pulled down automatically on launch the
admin can specify whether or not the
user has administrative privileges can
also specify what mailing list to add
the users to by default when we build
out notice 10 machines we add the user
to an OS 10 announced mailing list so
that they'll get updated automatically
if we need to send out messages the
admin can also download the users
picture from our internet and set it as
their login icon automatically if the
admin wants to create additional users
all they have to do is type in another
log in that information is pulled from
ldap all they have to do is press create
once all the users are created we run
stage two of our Python script rollout
which takes the data off of the firewire
drive and puts it into the newly created
home directories once the user is
created the admin logged in as that user
and runs another apple script studio
application we made called press maker
what press maker does is it
automatically configures mailed out apps
for the user based on their name and
login that it gets from the local net
info database it also imports their
stickies and bookmarks automatically and
once that's done the machine is ready to
be deployed the admin takes it to the
user's desk sets it up powers it on and
launches another applescript studio
application we made called tgif tgif
copies a shortcut to welcome to OS 10 at
Pixar to the users desktop launches a
web page and leaves it up for them when
the user comes in cleans up anything
like clears the recent bookmarks empty
the trash just makes the rinsing really
just ready for the user when they get in
it also synchronizes the ldap passwords
to the local net info password so that
the users have the right account
information it also deletes their
keychain and it also timestamps on
migration record for that machine to
complete so we can see how long it took
to do each migration so we can look for
ways to streamline it and kind of
identify bottlenecks that may exist as
you can see because of OS ends UNIX
foundation we were really able to
integrate our tools with our
infrastructure and really leverage that
power and we're also able to use things
like Python and Apple script ooh really
just streamline the whole process and
with these tools we minimize data entry
which not only takes a lot of time but
also helps prevent machines from being
misconfigured and we were also able to
really maximize on time savings I mean
not only was our process extremely fast
but now from box to desk on a new user
we can have a machine ready for them in
under 15 minutes and we can also now
that we have OS 10 out there on all our
machines we can build new tools to
really assist with our daily
administrative tasks and really just
make everything a lot easier so we can
focus on bigger tasks as opposed to
taking care of little things so that was
our migration process
[Applause]
so now we're going to talk about
migrating Windows clients to Mac os10
Panther so why migrate from windows
clients it was pretty easy so yeah
that's pretty hard isn't it so the first
bullet again is security right I I've
been to some pretty interesting accounts
the very large enterprise accounts and
they're like oh my god we just got the
latest microsoft patch and they apply
the latest microsoft patch and what does
it do it opens a whole bunch of other
holes into their network and they're not
very happy and they're like man every
time you come we have this problem apply
those microsoft security patches my
cream isn't that strange stability right
I mean we know Mac OS 10 is a very
stable operating system and some would
say more stable than windows I would
agree with that ease of use right Mac OS
10 is very easy to use I mean if you've
seen we've seen a lot of people move
from windows even on the consumer side
to Mac OS 10 and it's been it's been
very easy to my grave and they've been
very happy as far as using 10 save money
on licensing costs that's always
interesting let's need to apply security
and virus patches a very interesting
story here very very very large accounts
and when the Code Red virus hit you know
of course all their servers went down
and they were actually using power books
to find the windows 2000 servers that
were affected by the virus which is
pretty funny so they were running around
with Titanium's to find the servers and
to shut down the servers and that was
all done using using power books so that
was pretty pretty interesting ldap an
Active Directory connectivity now that
we have that you'll see in the demo the
process there is pretty streamlined to
actually move a Windows desktop user
over to a Macintosh and then by the way
we also have office
and as you saw in blood tribbles
presentation on Monday we should be
getting a very good exchange client for
Microsoft in in the very near future and
so again there's a for those of you who
have a big exchange infrastructure you
should definitely talk to your microsoft
rep to get on the beta and actually test
that in your environment there's
actually an email address and got got
sent for you to request to be part of
the debate ax and then Java right I mean
Java is a phenomenal cross-platform
development environment to actually make
sure that both your Mac and your Windows
users can actually use the tools that
you develop as an IT environment and we
have some phenomenal new developer tools
with Xcode that really simplify the
whole process and as you saw with Gabe I
mean they wrote some phenomenal Apple
scripts to do front end applications and
in a matter of you know days and so you
should really look at that should relook
at Apple scripts to do and if you were
at the session yesterday the migrating
UNIX to Mac os10 you saw Mike Bamba just
write a few applications very very
quickly and putting a very nice Apple
scripts to do front end and so you
should you should definitely look at
that some of the third-party solutions
for migration to migrate a Windows
desktop or over a really good one from
little machines allows you to migrate
you know your outlook email database
over to mail over to entourage you can
pick one or the other I think it's from
a windows perspective it's much easier
to migrate a Windows user from Outlook
to entourage then I'll look to mail
that's just what I would have noticed
address book and ical of course possibly
and then if you want to move the entire
user's home directory over you know from
a mac to a pc there's also a pretty good
solution from move to mac from detto
software
so this is a very interesting one is
windows 2000 migration to Panther server
and that's something that's really dear
to my heart because I might deal with a
lot of large accounts and they're like
man those cals are just killing us right
the price the pricing and and i met this
customer about what is it about 16
months ago and he has and he has a
thousand windows and key servers and
windows 2000 servers and they're like we
would really like to migrate those
servers over to the mac i mean he's the
CEO of the company and he loves math but
he says i got to make the right decision
for the company right i mean i'm not
going to migrate if it doesn't fit what
we require and we've deployed active
directory and it took us two year to two
years to migrate ad and we're not going
to any other directory you got to work
with us and and we've done that and
that's the reason why we've done you
know such a phenomenal job and Panther
and in Panther server to actually
achieve that and we'll talk about that
in a second so why am I great from
Windows servers well security price
number one it seems like Security's
coming back for the often here ease of
administration again our perspective
from the IT side is people should not be
spending a lot of time troubleshooting
and fixing desktop computers they should
be spending time thinking of what's the
next big thing right what's the next big
thing that can help my end users get
their job done faster and you really
streamline that process and that's what
we do inside of Apple I mean RIT group
doesn't spend a lot of time
troubleshooting desktops on a regular
basis I mean they built the you know the
point of sale system for the apple store
right they built the Apple music store
right all running on on Xers and extra
raid storage so that's what I righty
group spends their time on not you know
fixing desktop computers and having to
manage servers I mean it when you put a
server in place you shouldn't spend a
lot of time troubleshooting
that you should it should be installed
and forget unlimited client access
licensing that's a big one and when we
announced the xserve we had a lot of
calls from from I teashop saying hey
this is a phenomenal product right I
mean four thousand dollars with
unlimited licensing we're very
interested in this and this is a pretty
big one is when Panther ships and
Panther server will be able to host your
windows home directories on our hardware
so basically will show that in a graphic
in a second but basically you can have
an xserve and x-rayed host your windows
home directories on our on our hardware
and that's a fraction of the cost and
again that fits right into the need of
that customer that I mentioned who has a
thousand Windows servers and wants to
get rid of them we're actually actually
at least you know bring them down to a
manageable number running mac OS 10
servers again if you haven't deployed ad
i want to emphasize the fact that you
should be really looking at ldap
solutions either from apple or from
third-party vendors we have a built in
PDC now with with mac OS 10 with panther
server so with thanks to Samba and the
work of the the Samba team we now have
Samba 3 which has built in PDC support
we have Active Directory Integration
which will show in a second and we have
a scalable mail server that's the other
thing that people are looking at is
exchange is nice but we have a we think
we have a pretty good scalable solution
now with Cyrus mail and post six and
Panther and you should relook at that
and again it's all based on standards
which is another huge added value and
then we also have jaybob support
built-in for your j2ee deployments and
over forty percent of the enterprise
accounts out there actually deploy using
j2ee
some of the migration solutions to
migrate from windows NT we have das
technology they actually have a tool to
help you migrate from Windows NT to Mac
os10 server and then again with panther
server what you will bill to do is with
the ad the Active Directory plug-in and
Samba three you can now deploy exurbs
and xserve raids and basically host your
windows users home directories and
windows files on our hardware and save a
lot of money and then the last point I
wanted to make is I've seen a lot of
people deploy activex based web
solutions and that's not a good thing
right those this is totally non-standard
a non w3c compliant and so there's some
really interesting solutions from try on
that actually helps you migrate off of
activex into a Java world and you know
helps you migrate ASP web servers and
activex websites to more of a standard
so what I think is going to hit a home
run in Panther server with people that
have deployed active directory is this
right here where basically you buy an
xserve and an xserve raid and you have
your max you have your Windows desktops
and basically the windows user can log
in authenticate against active directory
because they've deployed active
directory and they're not going back
right but they can still work on the
file server side and save a lot of money
and not have to deploy those thousand a
thousand Windows servers really
consolidate that with xserve and neck
serve raid and so what I'd like to do is
bring up Eric Clemens the open directory
engineer to actually illustrate some of
that today with you Eric
st. Susie so before we get started just
kind of trouble we've got up here we've
actually got a windows laptop running
windows 2000 we've got a Windows 2000
server that's running ad of course and
can't show ed if you don't have an ad
server and also a mac running Panther so
first we're going to start at the
windows 2000 client okay thank you so
obviously we're at the login screen I'm
going to login is my account here pretty
typical environment you're used to it
looks at my virus without the daily need
to update that so you can see here I've
signed in and actually you can see my
network home directory because I've got
a gnome directed program this is running
on Windows 2000 server of course I've
got some files you know I've been
working on my desktop I don't really
save the network is I'm not used to
saving the network so let me copy the
files up to my network goes pretty quick
there so I'm kind of done here and if I
do we sign into Windows 2000 let's
switch over demo machine number two
please thank you so this is the Panthers
client we're actually running and
actually really programmed into active
directory when you have the user list of
course it says another button I
recommend changing that as you deploy so
one thing we did with the ad plugin is
we can actually sign in in a familiar
form you know if I sign it with a short
name there but you know some of you
actually sign in with an email address
you can do that now this seems like a
little bit this first time I've signed
in the computer as you've seen on the
mac on a Windows decline lot of times
when the first sign in the first time
it's creating your local account doing
all your profile settings all those kind
of things we're doing something similar
creating a local home directory caching
the user so you're ready to log in
offline
here we are not declining see my home
doctors are actually mounted on the
desktop here off that sharepoint and see
those demo files that i copied over a
little while ago i can copy doze off if
i wanted to leave them on the network
work with them on the network directly
so it's very familiar environment that
you would have seen on a pc one of the
things that we're going to highlight
here is i've also programmed it to look
at ad for the address book if you go to
the address book you'll see a
directories tab and I actually George
your services and I don't have it I know
JT's in here somewhere there is so I can
actually drag him over to my address
book click on the address book now I've
got his complete information his phone
number cell phone whatever it's been
programmed into the active directory so
it's a very handy feature and of course
i can continue search for other users i
can search myself for the first time and
if I try to drag that over and actually
notices already got a V car because the
first time I signed in we generate one
automatically I can just merge that so
I'm go to my v card now I've got a fully
populated v card with my information out
of the directory so it's very handy as
you eat send out emails within the mail
application so let me go to how this is
all configured to go to the local hard
drive here go to applications go to
utilities you'll see this directory
access application so this is what your
admins would do the first time it did
require administrative access to the
computer so I will sign it with an admin
account so i can look at this you see
the active directory tap i can pull that
down any time actually bound to the
DeForest and the domain now one thing
for those that you're going to try this
you do need to use the fully qualified
dns name of the domain you can't use the
ad some people were very tried to plug
and i heard and they couldnt get to work
as they typed in the short name we're
completely based on dns no RPC so we
can't locate the mains automatically
based on that they're going to turn the
Advanced Options you've got the multi
domain authentication caching as i said
the caching was turned on so they had to
do that caching to actually authenticate
i actually did a custom search path here
this allows me to plug into multiple
directories sara had an ldap server and
an active directory I can actually
program both of those directories in
there to authenticate against it's a
very nice feature
for the address book to actually do the
same thing on the Contacts tab add
active directory on the search path for
the context so that's kind of what it
takes to actually configure for Active
Directory now the other thing we've done
is we've actually got an xserve that
actually has the plugin already
installed frolic let me connect to that
xserve also and it's positive for name
is password type in the same name that I
used same password as you connect to a
shared volume so this is an AFP server
Heather Eddie Capra files up so I can
actually drag files from my windows 2000
server straight over to an ASP server so
now I've got all my files on the AFP
server using Active Directory in all the
cases here signing into the next serve
over Apple file protocol and signing
into the windows 2000 server give you a
little example of the tools here I can
actually manage the users on that server
remotely we have you give you some tools
with the xserve one in particular were
called workgroup manager
so you see lists of 80 users and if you
look at the top here is the Active
Directory ad domain so I can click on my
user I can click on JD other test users
etc admin users now what we actually
wanna show is something the actual true
integration here we've actually got
remote desktop on this client there is a
remote desktop client for Windows
terminal services for the mac so let me
go and connect over to the one to 2000
server
and I've got the users and groups
computers up now I can actually create a
new user
something very familiar with doing on
the windows side and I can actually go
over here and do a refresh NEC comes
from one already showed up just
completely integrated with the directory
[Applause]
I can actually edit some users if I
wanted to but I do most administration
from the windows side the other thing I
want to highlight here is we actually
got a user JD happens to be on our
connect friend here you'll notice his
account is set to change is passed on
this next log on something we really
want to show let me get out of the minor
bug with remote desktop on Panther so we
sign out I'm try signing on JD so you
can see my new cash to count is very set
up if I'd like you log into that real
quick if I wanted to I notice the login
will be a lot faster than it was a
minute ago because everything has
already been done that is still
verifying against the network so it is
still making sure your passwords insane
but let me log in to JD SOPs passwords
expired so I wants me to change my
password this is very unfortunately a
bug in the current feed so even though i
promise you to change it won't let you
change it bring type faster that's it so
in summary what did you see well we had
a Windows user right running on his
windows computer and we've now moved
this Windows user / to Mac and basically
all his files that were in his home
directory are now on his new apple
desktop and all its cause it was a
seamless transition right because we
have ad integration all you have to do
is configure this new computer with ad
and all the users files that were in his
home directory are now over to use to
his Macintosh so very soon with
transition on the desktop side on the
server side again the point is is xserve
xserve raid with the ad plugin now
allows you to totally manage and create
shares and host windows home directories
on the x server and the extra raid and
basically migrate off save money on cal
and have a much easier time
administrating those servers with our
phenomenal tools as you saw even the UI
looks a little bit better to me don't
you think so as a wrap-up it's not just
all about Panther and Panther server
it's about enterprise solutions and we
have some phenomenal third-party
solutions that are out there phenomenal
enterprise solutions I mean apples runs
ASAP as an example right so we have a
phenomenal ASAP java GUI for the
macintosh but we have a whole bunch of
really phenomenal third-party enterprise
solutions on the mac and as time goes by
we'll get more and more i mean this is a
phenomenal solution right the xserve I
four thousand dollars and the xserve
raid for eleven thousand dollars no one
no one can come close to this right this
is like the airport base station three
years ago when we basically ship the
first wireless solution for three
hundred dollars and everyone else was a
thousand all dollars the storage
solution no one can come close to what
we have and when we go and talk to
developers it really resonates right
they don't want to spend they don't
wanna have to convince a customer to
basically by you know very expensive
servers they want to sell their software
solution right they don't want to fight
for the hardware and here you know
basically the heart you've got a
five-thousand-dollar server that can do
as well as you know a very expensive
server from from other vendors and do
the same thing and that's why we're
getting you know solutions like Oracle
and sybase and you know basically SI p
clients and tivoli clients and
webmethods over to the macintosh because
those developers are actually seeing
that same vision that that we have
around the enterprise and so what I'd
like to do in summary is basically tell
you that we worked really hard the
engineers have worked really really hard
to make sure that Panther and Panthers
server are built with your enterprise
requirements in mind and as you saw with
a demo we think we're coming really
close to that and so we really want your
feedback as well
we'll have my email address up there as
well but the other thing I wanted to
leave you with is pick your directory
strategy wisely right if you have a
large amount of Max and a small amount
of pcs Windows desktops you definitely
should not be you know move to a B you
should look at our solution or
third-party ldap solution if you have a
mix and you haven't deployed a directory
solution you should really look at you
know standard based solutions right meta
directories are also a great thing to
look at so again deploy solutions and
deploy technologies based around open
standards around Java you know don't
deploy anything around activex and some
of those proprietary solutions it's a
nightmare to move off of them afterwards
let us know how we can help deploy more
max in your enterprise again that's
really very key we'd love to help you do
this and we want your feedback so again
I'll have my email address in a second
we'd love to help you as a roadmap some
of the sessions that are pretty
interesting this afternoon deploying
xserve there is a feedback form on the
enterprise there's network security best
practices so again we talked a lot about
security today but there's a really good
session on Friday Apple script for
sysadmin again that relates to what Gabe
showed you today with Apple scripts to
do Souths ago ian is going to do a
phenomenal job you know he's a
phenomenal presenter and then deploying
xserve raid Alex Grossman the xserve
raid product manager will actually show
you how to actually scale the xserve
raid from 1x of ray to 20 30 terabytes
right and he'll show you that on friday
on friday at three-thirty due to contact
myself very simple email address JD
apple com and skip 11s levin's at apple
com and so for more information there's
some good documentation I mean again the
mac OS x server documentation if you're
not familiar with 10 server you can
download the manual for free it's right
off our website and the schema
modifications and some of the security
api's are as well up there