RE: Access control plugin in Git 5572 add page not displayed

@Thiago-Moraes What is it you’re trying to achieve with access control? be aware it’s not implemented to configure from the web gui but it’s functional

as tom says it is quite difficult to explain entirely, but if you understand how hooks work, then access control works in the exact same way. take a look at /$webroot/fog/lib/plugins/accesscontrol/hooks

Access Control works by “UserType” and at the moment the only way you can set this is via database

the idea would be

User Type 0 = Admin
1 = Creator
2 = Editor
3 = Engineer/User

What you are trying to achieve to stop users imaging from one location when they’re at another, would get complex. unless you have certain engineers who will only ever image from one location then you could go down the route of

Type 0 = Image From any location
Type 1 = Can only image from location A
Type 2 = Can only image from location B

Hope this all makes sense

@Robx64 what do you mean by examples? enabling the hostmodel hook is an example?

@Robx64 This is already possible with hooks, for example in the hooks folder (webroot/lib/hooks) edit AddHostModel.hook.php and change it from public $active = false; to public $active = true;

albeit that will be the model but you can do the same for brand if needs be. this will add model in list all hosts view and is also searchable and can be sorted etc…and if you used the new search filter in model/brand field for just for example Samsung, it will display just the samsung devices again can even sort the filtered results.

Hope this helps

then create a new file in the same location as fog.postdownload called fog.ad and you can edit the sysprep file however you would like - this changes the unattend.xml AFTER the machine is imaged and pulls the info for that host from fog, making the unattend.xml unique and set with the info for that host.

using the below you could use sed command to edit the local admin password set in your unattend.xml to match what you want it to be, just follow how below works.

#!/bin/sh

hostadpwd="password-to-join-domain";
panther="/ntfs/Windows/Panther/unattend.xml";
if [ -f "$panther" ]; then
	unattend="/ntfs/Windows/Panther/unattend.xml";
else
	if [ $osid == "9" ]; then
		unattend="/ntfs/Windows/System32/Sysprep/unattend.xml";
	else
		unattend="/ntfs/Windows/System32/sysprep/unattend.xml";
	fi
fi

if [ -f "$unattend" ]; then
	dots "Writing Computer Name";
	sed -i "/ComputerName/s/*/$hostname/g" $unattend
	echo "Done";
	dots "ComputerName Set To";
	echo $hostname
	dots "Set PC To Join The Domain";
	if [ "$addomain" != "" ]; then
		sed -i "/<JoinWorkgroup>/d" $unattend
		sed -i -e "s|<Password></Password>|<Password>${hostadpwd}</Password>|g" \
			-e "s|<Username></Username>|<Username>${addomain}\\\\${aduser}</Username>|g" \
			-e "s|<MachineObjectOU></MachineObjectOU>|<MachineObjectOU>${adou}</MachineObjectOU>|g" \
			-e "s|<JoinDomain></JoinDomain>|<JoinDomain>${addomain}</JoinDomain>|g" $unattend
		echo "Done";
	else
		echo "Skipped";
	fi

fi

add this code into /images/postscripts/fog.postdownload

clearScreen;
mkdir /ntfs &>/dev/null
ntfs-3g -o force,rw $part /ntfs
dots "Mounting Device";
if [ "$?" = "0" ]; then
	echo "Done";
	. ${postdownpath}fog.ad
	umount /ntfs;
else
	echo "Failed To Mount Device";
	sleep 30;
fi

update to latest version - this has been fixed recently, as sourceforge is STILL down you’re going to have to use github or wait for sourceforge to come back up and code updated

@Wayne-Workman

can you turn on display_errors in apache (php.ini) and goto the same pages / do same process where you get blank white screen and post error

@tlawson you have hosts and/or hostMacs with an ID of 0 in your database, delete them from your database and you should then be ok

This has been resolved in the latest revision - update using github to resolve this issue

https://wiki.fogproject.org/wiki/index.php/SVN

sourceforge site is down atm (SVN) and is out of our control however rest assured git is the latest version, if unsure just run git pull.

the version detail will be back in the gui if you install SVN Version, when it’s back up.

“SF.net Operations
‏@sfnet_ops
#SourceForge down due to storage platform bug, working 24x7 on recovery and data validation, service restoral. Slashdot restored”

https://support.microsoft.com/en-gb/kb/922976#/en-gb/kb/922976 - quick fix to tackle switching to AHCI easily, might be worth setting image for AHCI?

also regarding setting Dell BIOS options via script/automatically

http://en.community.dell.com/techcenter/enterprise-client/w/wiki/7532.dell-command-configure

Hope this helps

as Wayne said it’s not built-in oob but it’s easier to implement, you can even use postscripts which is very powerful - only restriction is your creativity

https://forums.fogproject.org/topic/4278/utilizing-postscripts-rename-joindomain-drivers-snapins

you could also set variables at registration stage in autoregister in the sense of if you know which OU a machine should go in by it’s naming convention (or by location if using location plugin) you could set it there and it gets set during registration then you never need to think about it and if it doesn’t match criteria revert back to defaultOU field… this potentially could be bundled into a simple plugin to hand OU … the limit really is endless (and i’m sure this code could be cleaned up a lot (Tom’d) and it’s quick and dirty but just so it’s simpler to follow…
for example:

		if($_REQUEST['doad'] == '1') {
		//Room/Location 1 Example Handler
			$r1chk = strpos($realhost, 'R1-');
			if ($r1chk !== false) {
				$r1 = "1";
		}
		//Room/Location 2 Example Handler
			$r2chk = strpos($realhost, 'R2-');
			if ($r2chk !== false) {
				$r2 = "1";
		}
		//Room/Location 3 Example Handler
			$r3chk = strpos($realhost, 'R3-');
			if ($r3chk !== false) {
				$r3 = "1";
		}
		//Room/Location 4 Example Handler etc...etc...
			$r4chk = strpos($realhost, 'R4-');
			if ($r4chk !== false) {
				$r4 = "1";
		}

		if ($reallocid == "10" && $r1 != "1" && $r2 != "1" && $r3 != "1" && $r4 != "1") {
			$OUs = "OU=Location10,OU=Workstations,OU=Domain,DC=com";
		} else if if ($reallocid == "15" && $r1 != "1" && $r2 != "1" && $r3 != "1" && $r4 != "1")  {
			$OUs = "OU=Location15,OU=Workstations,OU=Domain,DC=com";
		} else if ($r1 == "1") {
			$OUs = "OU=Room1,OU=Workstations,OU=Domain,DC=com";
		} else if ($r2 == "1") {
			$OUs = "OU=Room2,OU=Workstations,OU=Domain,DC=com";
		} else if ($r3 == "1") {
			$OUs = "OU=Room3,OU=Workstations,OU=Domain,DC=com";
		} else if ($r4 == "1") {
			$OUs = "OU=Room4,OU=Workstations,OU=Domain,DC=com";
		} else {
			$OUs = explode('|',$FOGCore->getSetting('FOG_AD_DEFAULT_OU'));
		}

quickest fix rather than re-installing everything is: on the server rename /var/www/fog/lib/plugins/LDAP to something else like: LDAP1

this will essentially stop the LDAP Plugin “loading”

now you have access back - login to the GUI, deactivate/remove the LDAP plugin (under installed plugins) then rename /var/www/fog/lib/plugins/LDAP1 back to LDAP

if you want to try again and re-check your setting you can now enable LDAP plugin again and if it fails follow the process above again to regain access…logs will be your friend here to figure out what’s wrong

@Alex-Grier we have multiple sites across the UK utilizing the Multiple TFTP servers, Location Plugin (where you can also specify that the node is TFTP if you do not want to use multiple tftp servers) and imaging is as quick on remote sites as it is local (since Junkhackers speed increases - 1GB LAN 14.68gb/min averaging out at 8.58gb/min!!) and images sync pretty quick thanks to Tom’s awesome addition to the replication allowing multiple streams and you can also control the bandwidth by adding bandwidth limits.

we have it working here with Windows DHCP 2012 - as Junkhacker said really is simple process just create the vendor class then setup the DHCP policy and specify bootfile (option 67 and don’t need to specify option 66 in the policy as it will pick this up from already defined option in the scope)

Congrats junk on the breakthru!

Hi wayne,

sorted this out in the end through chat - was down to link to /fog… used existing location instead and change script to match and all working but ur response was my first response too

remove/hash these lines:

mkdir /fog &>/dev/null
mount -o nolock,proto=tcp $storageip:/fog/ /fog
dots “Mounting Device”;