Jamf Nation Community

woojo · ‎05-11-2015

I'm in the process of replicating functionality from a Mountain Lion OD server with WGS, to JSS' configuration profiles.

Most of the functionality I need is there, with the exception of passing on the network users credentials to the login mount of an SMB share.

Am I missing a setting or does this need a script?

Next, I have to migrate several 10.6.8 servers with WGS and OD running with this same idea.

davidacland · ‎05-11-2015

I normally do this with kerberos. As long as the client, server and user are all in the same realm it should work fine. I haven't heard of a way to capture the users name and password to pass to the share mount any other way.

I have tried mounting shares using config profiles a few times and found it to be quite unreliable. I'm still sticking to a login script for now.

calumhunter · ‎05-11-2015

Are the machines bound to AD?
AD accounts logging in?

Best thing about AD logins is you get Kerberos SSO for free. You should be able to mount the SMB share without needing to pass any authentication details, it should just get a kerberos ticket and use that.

Otherwise you're going to need a method to prompt the user to enter their password so you can pass that to your SMB server.

woojo · ‎05-12-2015

Yup, all of the machines are AD bound & logging in properly. I'll have to check the kerberos realm of my test mac and see if it's the same.

Thanks!

RogerH · ‎05-12-2015

you may have to have your sharepoint admins set up kerberos login. We are currently working on this here.

Plan for Kerberos authentication in SharePoint 2013

GaToRAiD · ‎05-12-2015

@woojo have you looked at macmule's article on this?

Jamf Nation Community

Configuration Profiles - Authenticate share point with user's login and password?