SlideShare a Scribd company logo

Hyper-Efficient Mac Deployment

N
Nick McSpadden

The document describes the benefits of thin imaging and software deployment over traditional golden master imaging for managing Mac devices. It outlines the workflow using tools like createOSXInstallPkg to build a base OS layer, DeployStudio for network booting and initial deployment, Reposado to host software updates, and Munki for software deployment and management. The thin imaging approach allows modular, flexible updates where only changed components need to be updated, while golden imaging requires rebuilding the entire image for any change. Munki in particular allows simple, centralized updating of all Macs from a single command.

Technology
1 of 32
Downloaded 32 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
Hyper-Efficient Mac Deployment Light-touch tools to automate Mac management Nick McSpadden Client Systems Manager Schools of the Sacred Heart, San Francisco
Old and Busted: "Golden Master imaging" Golden Master: create one perfect Mac, clone it to all machines.
Sometimes unexpected problems occur with different hardware. ByHost preferences, correct boot cache, hardware-specific OS builds - these are all issues with golden master imaging.
The second a new update comes out, the image is outdated - and so are all the devices cloned from it. This requires fully rebuilding the image every time you want to update anything.
Golden master imaging has no good method for ongoing management or updates. How do you update end nodes? Re-imaging them every time an update comes out?
New Hotness: "Thin imaging" Thin imaging: Lay down a never-booted base OS layer, and then granularly install software on top of it. Base Mac OS OS Software Updates 3rd-Party Software: Office, Adobe
 iLife/iWork, etc. Profiles, config. mgmt
Highly modular and adaptable to any configuration. Easily updated, as only the individual piece of software has to be touched. Base Mac OS OS Software Updates 3rd-Party Software: Office only Profiles, config. mgmt Base Mac OS OS Software Updates 3rd-Party Software: Office, Adobe Profiles, config. mgmt
Hotter Hotness: "No imaging" No imaging: For new Macs out of the box, the OS is already installed. Don't remove and reattach the wheel. OS Software Updates 3rd-Party Software: Office, Adobe
 iLife/iWork, etc. Profiles, config. mgmt
Thin Imaging Workflow: Preparation 1. Create the base OS layer - never-booted OS X install.
 createOSXInstallPkg 2. Set up initial install mechanism - NetBoot server.
 DeployStudio 3. Set up Apple software updates - local update server.
 Reposado 4. Set up software deployment mechanism - something to install packages.
 Munki
Building A Never-Booted OS X Install CreateOSXInstallPkg:
 https://github.com/munki/ createOSXinstallPkg • Creates a standard Apple pkg that installs OS X. • Can be installed with any tool or mechanism that supports installing standard Apple packages. • Supports adding other .pkgs to install process. • We use this to Install the OS.
Setting up DeployStudio DeployStudio:
 http://www.deploystudio.com/ Home.html • With OS X Server, can boot up Macs over the network via NetBoot. • Set up workflows to install packages. • Use this to install OS X + Munki + initial setup configuration on client machines.
Setting up OS X Software Updates Reposado:
 https://github.com/wdas/ reposado • Can run on any server platform - Windows, OS X, Linux. • Hosts a local copy of Apple's software update catalog. • Requires about ~200 GB of disk space.
Setting up Software Deployment Mechanism Munki:
 https://github.com/munki/ munki • Can run on any web server platform - Windows, OS X, Linux. • Requires software installed on clients, which pull from the server periodically. • Installs packages, disk images, and Apple software updates from local server.
Munki - Quick primer Munki:
 Munki will install/update all software on first boot (and every ~2 hours). Each client machine has a manifest, which specifies what software should be installed. The latest version of the imported software is always installed.
Thin Imaging Workflow: Deployment 1. Use NetBoot to boot to DeployStudio. 2. Install the base Mac OS 10.10.3 installer package - createOSXInstallPkg. 3. Install Munki client software package. 4. Install local admin account, bypass initial setup screens. 5. On boot, Munki triggers and installs all software & updates from Reposado.
DeployStudio in action
29 minutes later...
On first boot, Munki triggers
We installed 10.10.3. What happens when 10.10.4 comes out in a month or two? What happens when OS X 10.11 comes out in November?
Modularity of Thin Imaging Only individual pieces require updating. Total time to update the workflow for new items: • If a new OS comes out:
 Run CreateOSXInstallPkg again. 
 Total time: ~7 minutes. • If a new Firefox or Chrome comes out:
 Import new version into Munki.
 Total time: ~30 seconds.
Monolithic aspect of Golden Master Imaging Total time to update the workflow if a new OS comes out: 1. Install image on fresh machine.
 Time dependent on transfer speed - at gigabit, with SSD:
 Estimated time: ~20 minutes for a 15 GB image. 2. Install new OS. 
 Estimated time: ~30 minutes. 3. Capture new image.
 Estimated time: ~40-60 minutes.
Modularity of Software Deployment with Munki: Use AutoPkg (https:// github.com/autopkg/autopkg) to get common updates. Total admin effort for me to update Firefox on all machines:
 autopkg run Firefox.munki MakeCatalogs.munki or: munkiimport ~/Downloads/ Firefox.dmg Munki will ensure all clients will receive the update. 
 Within 24 hours, 80% of my fleet will have the new update of Firefox. Within 48 hours, 99+% of my fleet will have it. Total admin time involved:
 5 seconds
Why Use Munki for Deployment? Scenario: 
 New Firefox update comes out. Admin imports into Munki. Machines that will receive update: • All new machines that are deployed from now on. • All existing machines with Munki. Scenario: 
 New Firefox update comes out. Admin recreates golden master. Machines that will receive update: • All new machines that are deployed from now on. • ????

Total cost of all of these tools?
$0
One method, one command, to update all existing and new machines. No need to reinvent the wheel.
Thin imaging gives you unlimited flexibility and control. Thin imaging gives you, the admin, your time back.
Hyper-Efficient Mac Deployment
Where do I go from here? • Consider adding some kind of MDM / Configuration Management tool. • Profiles for configuring OS X settings (Profile Manager not required). • Find/Write/Share AutoPkg recipes for your common installs. • Join the OS X Admin community!
Resources • Going MAD - Munki, AutoPkg, and DeployStudio by Steve Yuroff, PSU Mac 2014:
 https://youtu.be/UG84nedo4ag • You Oughta Check Out AutoPkg by Greg Neagle, PSU Mac 2014:
 https://youtu.be/mqK-MAEZekI • What's New With Munki? by Greg Neagle, MacSysAdmin 2014:
 http://docs.macsysadmin.se/2014/pdf/What_is_new_with_Munki.pdf
 http://docs.macsysadmin.se/2014/video/Day2Session3.mp4 • Setting Up Munki with OS X Yosemite Server, by Nick McSpadden
 https://osxdominion.wordpress.com/2015/02/26/setting-up-munki- with-os-x-yosemite-server/
More Advanced Resources • Munki-In-A-Box
 https://github.com/tbridge/munki-in-a-box
 Helpful setup script for Munki & Autopkg • AutoNBI
 https://bitbucket.org/bruienne/autonbi
 Generate DeployStudio NetBoot images automatically • BSDPy
 https://bitbucket.org/bruienne/bsdpy
 Python-based NetBoot server (cross-platform)
More Resources • MacBrained.org
 Local Mac admin user group, meeting monthly in the Bay Area - join now! • IRC channel for OS X admins: ##osx-server on FreeNode • Mac Enterprise mailing list, hosted by PSU:
 http://www.macenterprise.org/mailing-list • AFP548, a site for Mac admins:
 http://www.afp548.com/

More Related Content

PPTX
Virtualization
Yansi Keim
 
PPTX
Automating your mac farm for iOS build and automation
Mikhail Advani
 
PPT
Apache Flink Crash Course by Slim Baltagi and Srini Palthepu
Slim Baltagi
 
PPTX
Nimbix execution steps and sample exercise
Ganesan Narayanasamy
 
ODT
openQRM how-to: Setup UEC and openQRM cloud
openQRM Enterprise GmbH
 
PDF
High Stakes Continuous Delivery in the Real World #OpenWest
Joshua Warren
 
PDF
Automated everything - Setting up an openQRM Cloud
openQRM Enterprise GmbH
 
ODP
System Imager.20051215
guest95b42b
 
Virtualization
Yansi Keim
 
Automating your mac farm for iOS build and automation
Mikhail Advani
 
Apache Flink Crash Course by Slim Baltagi and Srini Palthepu
Slim Baltagi
 
Nimbix execution steps and sample exercise
Ganesan Narayanasamy
 
openQRM how-to: Setup UEC and openQRM cloud
openQRM Enterprise GmbH
 
High Stakes Continuous Delivery in the Real World #OpenWest
Joshua Warren
 
Automated everything - Setting up an openQRM Cloud
openQRM Enterprise GmbH
 
System Imager.20051215
guest95b42b
 

What's hot (20)

PPTX
ASP.NET 5 auf Raspberry PI & docker
Jürgen Gutsch
 
PDF
Continuous Integration with Hackintosh
David Ventura, M.E.T.
 
PDF
Ci For The Web 2.0 Guy Or Gal
Chad Woolley
 
PDF
Automated Amazon EC2 Cloud deployments with openQRM
openQRM Enterprise GmbH
 
PPTX
Any point on mac
Manav Prasad
 
PPT
Prepping software for w7 deployment
Concentrated Technology
 
ODP
OpenSolaris 2009.06 Workshop
Iban Nieto Castillero
 
PPTX
Kaseya Connect 2011 - Imaging & Deployment
Kaseya
 
DOC
Virtualization.pdf
मयंक वर्मा 🇮🇳
 
ODP
Automated Deployment using Open Source
duskglow
 
PPTX
ELC-E 2010: The Right Approach to Minimal Boot Times
andrewmurraympc
 
PPTX
Java and other open source solutions on windows azure
Patriek van Dorp
 
PDF
12 Lessons Learnt in Boot Time Reduction
andrewmurraympc
 
PPT
Free tools for rapidly deploying software
Concentrated Technology
 
PDF
Windows 10: all you need to know!
Microsoft TechNet - Belgium and Luxembourg
 
ODP
FIWARE Lab Cloud Portal
José Ignacio Carretero Guarde
 
PPTX
Installation of Windows & Linux operating system
Sathishnkl561998
 
PDF
install CentOS 6.3 minimal on Hyper-V
Tũi Wichets
 
PDF
VMworld 2013: What's New with VMware Workstation
VMworld
 
PDF
OpenNebula Conf 2014 | OpenNebula and MooseFS for disaster recovery: real clo...
NETWAYS
 
ASP.NET 5 auf Raspberry PI & docker
Jürgen Gutsch
 
Continuous Integration with Hackintosh
David Ventura, M.E.T.
 
Ci For The Web 2.0 Guy Or Gal
Chad Woolley
 
Automated Amazon EC2 Cloud deployments with openQRM
openQRM Enterprise GmbH
 
Any point on mac
Manav Prasad
 
Prepping software for w7 deployment
Concentrated Technology
 
OpenSolaris 2009.06 Workshop
Iban Nieto Castillero
 
Kaseya Connect 2011 - Imaging & Deployment
Kaseya
 
Virtualization.pdf
मयंक वर्मा 🇮🇳
 
Automated Deployment using Open Source
duskglow
 
ELC-E 2010: The Right Approach to Minimal Boot Times
andrewmurraympc
 
Java and other open source solutions on windows azure
Patriek van Dorp
 
12 Lessons Learnt in Boot Time Reduction
andrewmurraympc
 
Free tools for rapidly deploying software
Concentrated Technology
 
Windows 10: all you need to know!
Microsoft TechNet - Belgium and Luxembourg
 
FIWARE Lab Cloud Portal
José Ignacio Carretero Guarde
 
Installation of Windows & Linux operating system
Sathishnkl561998
 
install CentOS 6.3 minimal on Hyper-V
Tũi Wichets
 
VMworld 2013: What's New with VMware Workstation
VMworld
 
OpenNebula Conf 2014 | OpenNebula and MooseFS for disaster recovery: real clo...
NETWAYS
 
Ad

Viewers also liked (17)

PPTX
Peritraumatic Dissociation in Labour: Is it a sentinel signal of mothers at r...
BASPCAN
 
PPTX
Brain Behind, Body Forward
BASPCAN
 
PDF
Gurushant H Portfolio
gurushant hiremath
 
DOCX
Muhammad Ramzan CV
muhammad ramzan
 
DOCX
Brophy CV 12_27_15
Lynne Brophy
 
PPT
'With knowledge comes responsibility'? International social policy responses ...
BASPCAN
 
PPTX
Social Networking for Surgeons
Andrew Wright
 
PPTX
Supporting children and families returning home from care: Counting the costs
BASPCAN
 
DOCX
Redes sociales
Kary Alexandra Gonzales Castro
 
PDF
Certificates and CV
Simon Tundua
 
PPT
A perenting programme for parents with learning disabilities and/or difficulties
BASPCAN
 
PPT
Stop it Now
BASPCAN
 
PPTX
Pre-Birth Risk Assessment
BASPCAN
 
PPTX
An Evaluation of Practice within the Northern Ireland Guardian ad Litem Agenc...
BASPCAN
 
PPTX
Rise High Performance Presents - Strenght & Conditioning to Improve YOUR Golf...
Rise Health Group
 
PDF
Get Your Board to Say "Yes" to a BSIMM Assessment
Cigital
 
PDF
Kristalia interiors pre qualification 16 05 15
Kristalia Interiors L.L.C
 
Peritraumatic Dissociation in Labour: Is it a sentinel signal of mothers at r...
BASPCAN
 
Brain Behind, Body Forward
BASPCAN
 
Gurushant H Portfolio
gurushant hiremath
 
Muhammad Ramzan CV
muhammad ramzan
 
Brophy CV 12_27_15
Lynne Brophy
 
'With knowledge comes responsibility'? International social policy responses ...
BASPCAN
 
Social Networking for Surgeons
Andrew Wright
 
Supporting children and families returning home from care: Counting the costs
BASPCAN
 
Redes sociales
Kary Alexandra Gonzales Castro
 
Certificates and CV
Simon Tundua
 
A perenting programme for parents with learning disabilities and/or difficulties
BASPCAN
 
Stop it Now
BASPCAN
 
Pre-Birth Risk Assessment
BASPCAN
 
An Evaluation of Practice within the Northern Ireland Guardian ad Litem Agenc...
BASPCAN
 
Rise High Performance Presents - Strenght & Conditioning to Improve YOUR Golf...
Rise Health Group
 
Get Your Board to Say "Yes" to a BSIMM Assessment
Cigital
 
Kristalia interiors pre qualification 16 05 15
Kristalia Interiors L.L.C
 
Ad

Similar to Hyper-Efficient Mac Deployment (20)

DOCX
MDT Step public
Jonathan Reckner
 
PPTX
TDF Professional Conf 2010 - Rapid Windows 7 Deployments
jimboks
 
PPTX
Introduction to Jenkins X
Faithlin Paul
 
PPTX
System adminstration Workstations work.pptx
johnrains584
 
PDF
Suse Studio: "How to create a live openSUSE image with OpenFOAM® and CFD tools"
Baltasar Ortega
 
PDF
Howto Pxeboot
Rogério Sampaio
 
PDF
Why Mac Sysadmins Love Python
Timothy Sutton
 
PPTX
Atea sccm parallels
Per Larsen
 
PPTX
K2000 Mac Imaging
Dell World
 
PPTX
How to Develop Progressive Web Apps in Flutter – Step by Step Guide.pptx
BOSC Tech Labs
 
PDF
Lesson 02 - React Native Development Environment Setup
University of Catania
 
DOCX
Prizm Installation Guide
vjvarenya
 
PPTX
Building an iOS Build Server
Attila Tamás Zimler
 
PDF
Quickstart: Qt for Windows, Symbian and Maemo / Meego v2.0.8 (January 10th, 2...
Andreas Jakl
 
PDF
Compile open cpn on windows
randikaucsc
 
PDF
Chocolatey - making the process of installing software on windows easy as pie
Justin James
 
PDF
Packer by HashiCorp
Łukasz Cieśluk
 
PDF
How to use TripleO tools for your own project
Gonéri Le Bouder
 
PPTX
Automation testing on ios platform using appium
Ambreen Khan
 
DOCX
BLCN532 Lab 1Set up your development environmentV2.0.docx
moirarandell
 
MDT Step public
Jonathan Reckner
 
TDF Professional Conf 2010 - Rapid Windows 7 Deployments
jimboks
 
Introduction to Jenkins X
Faithlin Paul
 
System adminstration Workstations work.pptx
johnrains584
 
Suse Studio: "How to create a live openSUSE image with OpenFOAM® and CFD tools"
Baltasar Ortega
 
Howto Pxeboot
Rogério Sampaio
 
Why Mac Sysadmins Love Python
Timothy Sutton
 
Atea sccm parallels
Per Larsen
 
K2000 Mac Imaging
Dell World
 
How to Develop Progressive Web Apps in Flutter – Step by Step Guide.pptx
BOSC Tech Labs
 
Lesson 02 - React Native Development Environment Setup
University of Catania
 
Prizm Installation Guide
vjvarenya
 
Building an iOS Build Server
Attila Tamás Zimler
 
Quickstart: Qt for Windows, Symbian and Maemo / Meego v2.0.8 (January 10th, 2...
Andreas Jakl
 
Compile open cpn on windows
randikaucsc
 
Chocolatey - making the process of installing software on windows easy as pie
Justin James
 
Packer by HashiCorp
Łukasz Cieśluk
 
How to use TripleO tools for your own project
Gonéri Le Bouder
 
Automation testing on ios platform using appium
Ambreen Khan
 
BLCN532 Lab 1Set up your development environmentV2.0.docx
moirarandell
 

Recently uploaded (20)

PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
KodekX | Application Modernization Development
KodekX
 
PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PPTX
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Approach and Philosophy of On baking technology
30anthuong17
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
KodekX | Application Modernization Development
KodekX
 
A Presentation on Artificial Intelligence
memembruh336
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
Encapsulation theory and applications.pdf
gurumoop
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 

Hyper-Efficient Mac Deployment

  • 1. Hyper-Efficient Mac Deployment Light-touch tools to automate Mac management Nick McSpadden Client Systems Manager Schools of the Sacred Heart, San Francisco
  • 2. Old and Busted: "Golden Master imaging" Golden Master: create one perfect Mac, clone it to all machines.
  • 3. Sometimes unexpected problems occur with different hardware. ByHost preferences, correct boot cache, hardware-specific OS builds - these are all issues with golden master imaging.
  • 4. The second a new update comes out, the image is outdated - and so are all the devices cloned from it. This requires fully rebuilding the image every time you want to update anything.
  • 5. Golden master imaging has no good method for ongoing management or updates. How do you update end nodes? Re-imaging them every time an update comes out?
  • 6. New Hotness: "Thin imaging" Thin imaging: Lay down a never-booted base OS layer, and then granularly install software on top of it. Base Mac OS OS Software Updates 3rd-Party Software: Office, Adobe
 iLife/iWork, etc. Profiles, config. mgmt
  • 7. Highly modular and adaptable to any configuration. Easily updated, as only the individual piece of software has to be touched. Base Mac OS OS Software Updates 3rd-Party Software: Office only Profiles, config. mgmt Base Mac OS OS Software Updates 3rd-Party Software: Office, Adobe Profiles, config. mgmt
  • 8. Hotter Hotness: "No imaging" No imaging: For new Macs out of the box, the OS is already installed. Don't remove and reattach the wheel. OS Software Updates 3rd-Party Software: Office, Adobe
 iLife/iWork, etc. Profiles, config. mgmt
  • 9. Thin Imaging Workflow: Preparation 1. Create the base OS layer - never-booted OS X install.
 createOSXInstallPkg 2. Set up initial install mechanism - NetBoot server.
 DeployStudio 3. Set up Apple software updates - local update server.
 Reposado 4. Set up software deployment mechanism - something to install packages.
 Munki
  • 10. Building A Never-Booted OS X Install CreateOSXInstallPkg:
 https://github.com/munki/ createOSXinstallPkg • Creates a standard Apple pkg that installs OS X. • Can be installed with any tool or mechanism that supports installing standard Apple packages. • Supports adding other .pkgs to install process. • We use this to Install the OS.
  • 11. Setting up DeployStudio DeployStudio:
 http://www.deploystudio.com/ Home.html • With OS X Server, can boot up Macs over the network via NetBoot. • Set up workflows to install packages. • Use this to install OS X + Munki + initial setup configuration on client machines.
  • 12. Setting up OS X Software Updates Reposado:
 https://github.com/wdas/ reposado • Can run on any server platform - Windows, OS X, Linux. • Hosts a local copy of Apple's software update catalog. • Requires about ~200 GB of disk space.
  • 13. Setting up Software Deployment Mechanism Munki:
 https://github.com/munki/ munki • Can run on any web server platform - Windows, OS X, Linux. • Requires software installed on clients, which pull from the server periodically. • Installs packages, disk images, and Apple software updates from local server.
  • 14. Munki - Quick primer Munki:
 Munki will install/update all software on first boot (and every ~2 hours). Each client machine has a manifest, which specifies what software should be installed. The latest version of the imported software is always installed.
  • 15. Thin Imaging Workflow: Deployment 1. Use NetBoot to boot to DeployStudio. 2. Install the base Mac OS 10.10.3 installer package - createOSXInstallPkg. 3. Install Munki client software package. 4. Install local admin account, bypass initial setup screens. 5. On boot, Munki triggers and installs all software & updates from Reposado.
  • 18. On first boot, Munki triggers
  • 19. We installed 10.10.3. What happens when 10.10.4 comes out in a month or two? What happens when OS X 10.11 comes out in November?
  • 20. Modularity of Thin Imaging Only individual pieces require updating. Total time to update the workflow for new items: • If a new OS comes out:
 Run CreateOSXInstallPkg again. 
 Total time: ~7 minutes. • If a new Firefox or Chrome comes out:
 Import new version into Munki.
 Total time: ~30 seconds.
  • 21. Monolithic aspect of Golden Master Imaging Total time to update the workflow if a new OS comes out: 1. Install image on fresh machine.
 Time dependent on transfer speed - at gigabit, with SSD:
 Estimated time: ~20 minutes for a 15 GB image. 2. Install new OS. 
 Estimated time: ~30 minutes. 3. Capture new image.
 Estimated time: ~40-60 minutes.
  • 22. Modularity of Software Deployment with Munki: Use AutoPkg (https:// github.com/autopkg/autopkg) to get common updates. Total admin effort for me to update Firefox on all machines:
 autopkg run Firefox.munki MakeCatalogs.munki or: munkiimport ~/Downloads/ Firefox.dmg Munki will ensure all clients will receive the update. 
 Within 24 hours, 80% of my fleet will have the new update of Firefox. Within 48 hours, 99+% of my fleet will have it. Total admin time involved:
 5 seconds
  • 23. Why Use Munki for Deployment? Scenario: 
 New Firefox update comes out. Admin imports into Munki. Machines that will receive update: • All new machines that are deployed from now on. • All existing machines with Munki. Scenario: 
 New Firefox update comes out. Admin recreates golden master. Machines that will receive update: • All new machines that are deployed from now on. • ????

  • 24. Total cost of all of these tools?
  • 25. $0
  • 26. One method, one command, to update all existing and new machines. No need to reinvent the wheel.
  • 27. Thin imaging gives you unlimited flexibility and control. Thin imaging gives you, the admin, your time back.
  • 29. Where do I go from here? • Consider adding some kind of MDM / Configuration Management tool. • Profiles for configuring OS X settings (Profile Manager not required). • Find/Write/Share AutoPkg recipes for your common installs. • Join the OS X Admin community!
  • 30. Resources • Going MAD - Munki, AutoPkg, and DeployStudio by Steve Yuroff, PSU Mac 2014:
 https://youtu.be/UG84nedo4ag • You Oughta Check Out AutoPkg by Greg Neagle, PSU Mac 2014:
 https://youtu.be/mqK-MAEZekI • What's New With Munki? by Greg Neagle, MacSysAdmin 2014:
 http://docs.macsysadmin.se/2014/pdf/What_is_new_with_Munki.pdf
 http://docs.macsysadmin.se/2014/video/Day2Session3.mp4 • Setting Up Munki with OS X Yosemite Server, by Nick McSpadden
 https://osxdominion.wordpress.com/2015/02/26/setting-up-munki- with-os-x-yosemite-server/
  • 31. More Advanced Resources • Munki-In-A-Box
 https://github.com/tbridge/munki-in-a-box
 Helpful setup script for Munki & Autopkg • AutoNBI
 https://bitbucket.org/bruienne/autonbi
 Generate DeployStudio NetBoot images automatically • BSDPy
 https://bitbucket.org/bruienne/bsdpy
 Python-based NetBoot server (cross-platform)
  • 32. More Resources • MacBrained.org
 Local Mac admin user group, meeting monthly in the Bay Area - join now! • IRC channel for OS X admins: ##osx-server on FreeNode • Mac Enterprise mailing list, hosted by PSU:
 http://www.macenterprise.org/mailing-list • AFP548, a site for Mac admins:
 http://www.afp548.com/