Skip to content
This repository has been archived by the owner on Nov 20, 2024. It is now read-only.

50 Options

Tyler Morgan edited this page Apr 23, 2019 · 3 revisions

Options

Expired Screen

These settings will help customize the screen presented to the user when the loaning period expires.

  • logoffTimer: The time in seconds until the user is logged off after screen is presented.
    • Default of 60 seconds
  • logoutMessage: The message given to the user when window is presented
<dict>
  <key>logoffTimer</key>
  <number>600</number>
  <key>logoutMessage</key>
  <string>Please return to your IT gurus</string>
</dict>

Authentication

Authentication is key to ensuring the loaner is not able to be tampered with by unauthorized personal. Below are two methods of authenticating, using Jamf Pro or a shared secret.

Shared Secret (Generic Authentication)

These settings will enable you to use a shared secret, also known as a password to perform authentication. Note: This method of authentication is required if you want to extend loaning periods via. Command Line to prevent admin account details being leaked.

  • sharedSecret: SHA256 hash of a password as a string. You can use this generator to generate a SHA256 hash.
  • sharedSecretAuth: Set this to <true /> or YES depending on your Plist editor. This enables using the Shared Secret as a method of authentication through the UI.

For Shared Secret authentication:

<dict>
  <key>sharedSecret</key>
  <string>3600b504c63606a04b94a0e847d178ae8d43ead170fed1d0e2c2bfee9c14d89f</string>
  <key>sharedSecretAuth</key>
  <true />
</dict>

For just CLI authentication:

<dict>
  <key>sharedSecret</key>
  <string>3600b504c63606a04b94a0e847d178ae8d43ead170fed1d0e2c2bfee9c14d89f</string>
  <key>sharedSecretAuth</key>
  <false />
</dict>

Jamf Pro

These settings will enable you to use Jamf Pro to authenticate users and allow access if they belong in specific group IDs.

  • jamfURL: The URL of your jamf pro server, example: mdm.acme.com
  • authorizedGroupIDs: The group IDs associated with your admin groups.
    • Method of obtaining this coming soon
<dict>
  <key>jamfURL</key>
  <string>mdm.acme.com</string>
  <key>authorizedGroupIDs</key>
  <array>
    <number>1</number>,
    <number>2</number>
  </array>
</dict>

Authenticating to Jamf Cloud

Jamf Cloud doesn't use the default 8443 port, so you will have to let LoanShark know you are using a Jamf Cloud instance by structuring your preference file like below:

<dict>
  <key>jamfURL</key>
  <string>mdm.acme.com</string>
  <key>authorizedGroupIDs</key>
  <array>
    <number>1</number>,
    <number>2</number>
  </array>
  <key>jamfCloud</key>
  <true/>
</dict>

Extension Selections

These settings will help empower your end users in selecting the right extension option.

  • extensionOptions: The options you want to provide to end users for extending loaners.
<dict>
  <key>extensionOptions</key>
  <array>
    <string>1 Day</string>
    <string>2 Days</string>
  <array>
</dict>