Skip to content
/ puppet-mac_profiles_handler Public
forked from keeleysam/puppet-mac_profiles_handler

Puppet Module for managing macOS + OS X Configuration Profiles

7 stars 21 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

macadmins/puppet-mac_profiles_handler

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

108 Commits
examples
examples
 
 
lib
lib
 
 
manifests
manifests
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
metadata.json
metadata.json
 
 

Repository files navigation

mac_profiles_handler module for Puppet

Description

This module provides two resource types for interacting with macOS configuration profiles.

The profile_manager resource type is the back-end type that interacts with /usr/bin/profiles for creating, destroying and verifying a resource type. The mac_profiles_handler::manage resource type is user-facing and handles the management of the actual files.

A structured fact is also provided to list installed profiles along with some metadata.

Usage

mac_profiles_handler::manage { 'com.puppetlabs.myprofile':
  ensure  => present,
  file_source => 'puppet:///modules/mymodule/com.puppetlabs.myprofile.mobileconfig',
}

You can use an ERB template instead of a mobileconfig:

mac_profiles_handler::manage { 'com.puppetlabs.myprofile':
  ensure  => present,
  file_source => template('mymodule/com.puppetlabs.myprofile.erb'),
  type => 'template',
}

You can also ensure that a profile is absent by specifying just the identifier:

mac_profiles_handler::manage { '00000000-0000-0000-A000-4A414D460003':
  ensure => absent,
}

You must pass the profilers identifier as your namevar, ensure accepts present or absent and file_source behaves the same way source behaves for file.

Profile installation via MicroMDM and MDMDirector

Profiles can be sent via MDMDirector and compatible tools. Add your configuration to Hiera (eyaml recommended for secrets). Only template style profiles are supported.

# MDMDirector information
mac_profiles_handler::mdmdirector_host: https://mdmdirector.company.com
mac_profiles_handler::mdmdirector_password: secret
mac_profiles_handler::mdmdirector_username: mdmdirector
# Install all profiles via MDM
mac_profiles_handler::method: mdm

Or you can install only some profiles via MDM

mac_profiles_handler::manage { 'com.puppetlabs.myprofile':
  ensure  => present,
  file_source => template('mymodule/com.puppetlabs.myprofile.erb'),
  type => 'template',
  method => 'mdm' # or set this to 'local'
}

Dependencies

To-Do

Improve provider parsing. Handle more types of configuration profiles. Improve documentation when author isn't presenting the next morning.

Contributing

Please do! Create issues in GitHub, Make Pull Requests, Have Fun!

About

Puppet Module for managing macOS + OS X Configuration Profiles

Resources

Readme
Activity
Custom properties

Stars

7 stars

Watchers

2 watching

Forks

6 forks
Report repository

Releases

6 tags

Packages

No packages published

Languages

  • Ruby 61.4%
  • Puppet 38.6%