St. Ignatius College Prep Tech Blog
SI's blog about technology
Acknowledgements: Thanks to Roger Sprik on the PowerSchool forums for this tip.
I have a custom page that uses the last name field:
Apparently, you can strip out the variable to show only the letters and numbers:
We had a user whose unread emails were appearing as bold in Safari (with an ugly font) and not bold at all in Chrome (font looked okay), and we did some digging and found the solution was to enable the Arial Bold font in Font Book on the user's Mac, and it was all good.
Our best guess is that Safari couldn't find the font it wanted so substituted an ugly font but kept it bold, and Chrome couldn't find the font it wanted so substituted a decent-looking font but not bold.
A user wasn't able to draw (with a finger) using the pen tool in Notability. Highlighting and erasing were also not working (just seemed to move the note about in Notability).
We worked with the user on the usual troubleshooting steps (kill the app, do the home–power button reset, make sure iOS and Notability are both updated) to no avail.
The solution that ended up working—double-checking the notes were all backed up, and the uninstalling the app... and reinstalling the app.
If you come across a message that Google Sheets can't save your sheets and you need to revert to an earlier version, but even the earlier version can't save, don't bother doing any of these suggested steps. Clearing cookies won't help. Disabling extensions won't help.
Instead, try this (as counterintuitive as it seems): copy and paste your Google Sheets cells into a new Excel workbook. Save the Excel workbook and upload it to Google Drive. Open it with Google Sheets. Save that sheet. Delete your old, non-working sheet.
Acknowledgements: Hat tip to Eric Hemmeter on the MacAdmins Slack for this command.
If you want a command that will add back the Wi-Fi service if you deleted it and now want it back, here it is:
You may sometimes script preferences using defaults write commands (don't edit the .plist files with a text editor directly). For example, you might change Munki client preferences using a command like:
There are several methods to get or generate .mobileconfig profiles. I'm listing them below in order of preference from top recs to not-to-top recs.
Chances are if you want to manage a setting, someone else has also wanted at some point to manage that setting. site:github.com mobileconfig is a great Google search for finding those.
You can create .mobileconfig profiles from existing .plist preference files you already have on a sample client machine. Just download Tim Sutton's mcxToProfile.
Then you can run something like
Apple Configurator is another option.
Just click File and select New Profile.
Once you've selected everything you want to configure, click Save.
The code it produces is (like mcxToProfile's) clean and easy to edit. And, yes, you usually want to edit down .mobileconfig profiles to be only the things you actually want to manage. Omit (i.e., delete) anything that you want your users to be able to manage themselves.
If you're using Server.app, there's a built-in way to generate profiles.
I usually create a test device group with no actual devices in it.
Then, under Settings, select Edit.
Find the type of setting you want to edit (there are some generic settings and then others specific to iOS or macOS). and click Configure and check off all the stuff you want configured.
Then once you've closed out of the editing settings space, click Save for the whole device group. This will allow you to download the settings.
Click the Download button and select macOS.
Now we're getting to why I seldom use Profile Manager. It adds in a bunch of binary gobbledygook and shoves all of the tags together so it's not easy to read. So, yeah, you can use it... but not fun.
Update: Apparently, you can tidy up the XML fairly easily if you want. Thanks to Ian Vonesh for the tip.
Whichever method you use, though, you can just import the .mobileconfig directly into Munki and push it out to your clients (be sure to test for unexpected behavior first before moving to production).
Follett/Destiny has its own documentation on the process of importing patrons into its online database, which is not very helpful.
Below are instructions on how you actually do it, based on trial and error and various calls to customer service for more details on the process that aren't actually documented anywhere.
First of all, log in as the administrator for your account and click on List all sites, and then select the site you want to import into.
Click Back Office, and then on the left side bar that appears, click Site Configuration. On the row of tabs, find and click Site Info.
You should find your site's Short Name there. You will need to note that name for later.
Here's where things get confusing.
Even though you'll see an Import Patrons option on the left sidebar, apparently (according to customer service) you're not supposed to use that to import patrons.
You may want to do method 2 first so you can see what an example XML file looks like, but once you do that, you can also just create the XML directly out of PowerSchool to save you steps (and so you don't need a Windows machine every time you want to do an export/import). Here's an example PowerSchool custom page that creates the XML. Obviously, tweak to suit your own school's needs.
Note that you may see in your web browser what appear to be extra spaces in the XML file. Once you download it to your computer and open it with a text editor, the spaces should be gone, though.
This is the long method, but you may want to do this at least once so you have a template for the shorter method mentioned above.
First, you want to create a .csv file like this:
For some reason, though, you can't just straight upload the .csv—you have to convert it to XML first using a special converter application that runs only on Windows. You can find the converter in this bundle. In order for it to run, you'll have to download and install the latest Java.
When you launch up the converter, click the Browse button next to Choose CSV file to transform and find your .csv file.
You will likely have a header row (and should), so be sure to change Data begins on row to 2 instead of 1.
In the Field Mapping tab, you'll unfortunately have to manually map each field, even though your column headers match exactly what the Destiny field names are. Just pick the appropriate field for each one in the drop-down menu for the CSV Input Field column.
In the Patron Matching tab, select Site short name & Barcode for Math patrons using their.
Then click the Save button so you won't have to re-match the fields every time you want to do an upload.
Finally, click Run, and it will create an uploadable .xml file.
One more counterintuitive thing: you don't upload through your administrator login. There's a separate login just for importing, which you'll have to get from Follett/Destiny. Log in with that login and click on District. Then click on Back Office. On the sidebar, find and click on Update Patrons.
Then, next to Update File, click Choose File and find your .xml file. Click Update Patrons and then wait for the upload to finish. To check on the progress, continually click Job Manager (on the sidebar).
Sadly, my 250th blog post isn't fully an original post but just a link to an awesome blog post someone else wrote, but it's a good read:
Find My Mac
The only two things I'll add are these:
If you want to clear everything out (say, if you're re-imaging a machine... not sure why you'd want to keep any firmware variables around), you can run
If a user signs out of her iCloud account before you re-image a machine, it will clear out the fmm-mobileme-token-FMM firmware variable but not the fmm-computer-name. That's likely sufficient to prevent a future lockout, but you may want to run the previous command to clear out all firmware variables just in case.
If you want to see what the current Startup Disk is on your macOS installation, you can certainly go to System Preferences > Startup Disk.
But if you want to use the terminal instead of the GUI, this command will return the current Startup Disk:
For extra security, you can add a firmware password to Macs, especially since Find My Mac is essentially useless (unlike for iPads, which have an activation lock preventing thieves from reactivating the iPad after a factory reset) and DEP-to-MDM enrollments for Macs can even be avoided by thieves if they're resourceful enough.
If you have a laptop with a firmware password, you need that password to boot from anything except the startup disk. Combine that with FileVault encryption, and a stolen Mac is pretty much useless. Doesn't mean that you'll necessarily get it back, but the likelihood is higher if the device is useless to thieves.
You can, of course, enable the firmware password via Recovery Mode, but it's easier to do it from the command line:
There are two modes for a firmware password: command and full. By default, the firmware password mode will be command, which means you'll be prompted for the password only if you boot from something other than the startup disk. If, for some strange reason, you want the mode to be full, it would mean you'd be prompted for a firmware password at every boot, regardless of what you're booting to.
A few other commands you might find useful...
If you want to script firmware password setting, someone wrote a fairly simple script that does it. There's also firmware password manager, which is a far more sophisticated way to manage firmware passwords.
Nota Bene: If you enable a firmware password, you can get into target disk mode by holding down the Alt/Option key at boot, typing in the firmware password, and then holding down the T key. However, you will be unable to boot into Safe Mode unless you delete the firmware password.