Leopard Server Install Instructions NOTE: if installing on older hardware onto a RAID, be sure the RAID version is version 2, not version 1 prior to installing the OS. #Install Panther Server off the CDs # - boot normally and select the install CD from the StartupDisk Preference Pane # - once the installer appears, run Disk Utility from the Installer pull-down # menu if you need to modify any RAID configurations before the install # CLI for partitioning 1 drive: diskutil partitionDisk /dev/disk1 2 GPTFormat "Journaled HFS+" OSDisk 20G "Journaled HFS+" DataDisk 1G # - After selecting the drive to install, hit the 'Options' button, and select # 'Erase and Install' not upgrade. # - On the next screen, hit the 'Customize' button, and remove any foreign # language and printer components # - Begin the install #Once the install is complete, the following will appear: For Xserves without video, you can either try the offline configuration method that uses the Auto Server Setup feature, or Find the machine with ARD to get the IP ssh root@the.ip.add.ress /System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Resources/kickstart -configure -access -on -privs -all -users root Then you can finish configuring the machine through ARD using root and the serial number password. Welcome: click continue Server Configuration: Advanced Keyboard: select US Serial Number: enter the serial number for this installation of OSX Server Register the server as LSA / University of Michigan Administrator Account: Name: macroot Short Name: macroot Password: (not included in this document) Verify: retype the same password #Network Names: # Host Name: Type the fully-qualified host name (foo.lsa.umich.edu) # Computer Name: Type the same fully-qualified host name # Rendezvous Name: Type the same fully-qualified host name. It probably # will autofill this with a hyphen-separated name instead of period # separated - this is OK. Network Interfaces: The only box that should remain checked is TCP/IP for Built-in Ethernet TCP/IP Connection: Configure: Manually IP Address: (set appropriately) Subnet Mask: (set appropriately) Router: (set appropriately) DNS Servers: 141.211.211.180 141.211.144.17 141.211.125.17 Search Domains: (leave blank) Directory Usage: Standalone Server Leave the box checked to allow Remote Management Confirm Settings: (click Apply) ...wait for the server while it's being configured Restart when prompted If this machine will have the ARD admin util on it, install it now. Perform a software update and reboot Perform another software update and reboot (if needed) CLI METHOD: ssh macroot@newservername # Install all required software updates softwareupdate -i -r reboot ssh macroot@newservername KERBEROS SECURITY SETTING: If you want to require a password to ssh to the server even if Kerberos is configured and a host principal is present, you must add the following lines to the /etc/sshd_config file: # Disable automatic login if you have a kerberos ticket GssapiAuthentication no ENABLE OUTGOING MAIL We want hardware warnings to be able to get off the box, so we need to enable outgoing mail. In 'Server Admin.app', select Mail, then Settings In the 'General' pane, have ONLY 'Enable SMTP' checked In the 'Relay' pane, only accept SMTP relays from 127.0.0.1/32 Click 'Save', and 'Start Mail' ----------------------------------------------- Install K2Client.mpkg (for software and hardware inventory purposes) Install Kerberos.pkg Install Kerberized-Console-10.5.pkg Install LDAPumich-Leopard.pkg Install date.pkg reboot ----------------------------------------------- System Preferences > Security: Check Require password to wake Uncheck Disable mouse when locked System Preferences > Energy Saver: Be sure 'restart after system freeze/power failure' is checked ------------------------------------------------ Reset the root password. By default the root password is set the same as the first account.