About this course

Course type Premium
Duration 5 Days

This five-day course will look at the advanced support topics such as deployment and remote management of OS X Devices, connecting OS X in to an Active Directory environment, managing OS X devices on a Windows network and the security of OS X and iOS.


Delegates should have a good knowledge of OS X and network basics, and will preferably have attended an OS X Support Essentials course.

Important notice:
This course is delivered using digital courseware. Please ensure that each delegate has access to an iPad.
Courses delivered at QA International House (London) and QA Birmingham will use iPads supplied by QA.
For any other location, please speak with your account manager and we will arrange for them to be hired.

Delegates will learn how to

  • Configure basic OS X settings
  • Active Directory
  • Binding OS X to Active Directory
  • User data Management
  • Troubleshooting integration
  • Dual directory integration
  • OS X Server overview
  • Managing OS X server
  • Configuring Profile manager
  • Integrating management with Active Directory
  • Troubleshooting issues
  • Deploying OS X
  • Packaging
  • Apple Remote Desktop
  • Configuring with Terminal
  • Security overview
  • Security planning
  • OS X data security
  • OS X firewalls
  • Secure network access
  • Web, email and data protection
  • App security
  • Internet security
  • Device security



  • Welcome
  • Agenda and Objectives


  • OS X overview
  • Installing OS X locally
  • Configuring basic network settings, computer name and creating (local) user accounts

Active Directory

  • Why Integrate? What does a Directory Service offer?
  • Pre-requisites for AD Integration
  • Preparing AD for OS X Integration
  • local domains and how they may impact on OS X

Binding OS X to Active Directory

  • DNS - recap of what it does and how to check it is correctly set up
  • DNS - testing - Network Utility and Terminal
  • Simple binding
  • Advanced binding options
  • Binding with Terminal
  • Kerberos - overview and testing
  • User Data Management
  • Home directories - Local, Mobile, Network
  • Default behaviour and best practice
  • Deprecated technologies

Troubleshooting Integration Issues

  • Troubleshooting binding and login issues

Dual Directory Integration

  • What are Open Directory and LDAP?
  • 'Magic Triangle'
  • Managing devices in a dual directory environment
  • Brief overview of third party AD plug-in options

OSX Server overview

  • Installing OS X Server - including pre-requisites
  • Configuring OS X Server
  • Understanding and configuring Open Directory Masters and Replicas
  • SSL Certificates - Self Signed vs CA issued
  • Backing up OS X Server

Enabling Profile Manager

  • Introduction to Profile Manager
  • Profile Manager pre-requisites
  • How does APNS work, and what does it need?

Configuring Profile Manager

  • Enrolling Devices to Profile Manager
  • Creating Profiles to manage devices
  • Deploying Profiles
  • Manage, Lock and Wipe devices

Integrating Management with Active Directory

  • Binding OS X Server to AD and managing settings for AD users and groups
  • Enabling AD Single Sign On from OS X Server
  • Managing share points, login window options etc


  • Common issues - how to avoid them and how to resolve them

Deploying OS X

  • Considering the options - local vs network
  • Local Deployment (using Filewave Lightning, Carbon Copy Cloner and Disk Utility)
  • Creating a clean install image using AutoDMG
  • Network Deployment (using NetInstall and DeployStudio)
  • Exploring advanced workflows using DeployStudio


  • Creating software packages with InstallEase, Composer and/or Packages

Apple Remote Desktop

  • Exploring Apple Remote Desktop
  • Deploying packages with Apple Remote Desktop
  • Scheduling tasks with Apple Remote Desktop
  • Gathering reports with Apple Remote Desktop

Security overview

  • Security news
  • Common Vulnerabilities and Exposures
  • OS X Security
  • App updates
  • Caching server

Security Planning

  • Threat modeling
  • Identify Assets and security objectives
  • Infrastructure
  • Mobile Security

OS X Security Architecture

  • OS X architecture
  • Layered security
  • Device security
  • Firmware password
  • Find My Mac/iPhone
  • POSIX permissions
  • Access Control Lists
  • File system protection

Data Security

  • Elliptical Curve Cryptography
  • Encrypted storage
  • Encrypted .pdf files
  • Encrypted backups
  • FileVault
  • Secure Erase/Wipe

OS X Firewalls

  • Firewall options
  • Application firewall
  • IPv6 Firewall
  • Packet filter
  • 3rd Party firewall

Secure Network Protocols

  • Network services
  • Screen sharing
  • File sharing
  • Remote login
  • Remote management
  • Apple Remote Events
  • Internet sharing
  • Bonjour
  • AirDrop
  • VPN
  • 802.1x
  • Certificates

Web and email security

  • Safari security
  • Virus protection
  • Malware protection
  • Email security
  • App Sandboxing
  • App security

iOS System Security

  • iOS secure boot
  • iOS system architecture
  • Secure Boot Chain
  • Hardware encryption
  • Passcodes

Encryption and Data Protection

  • Hardware security
  • Encryption and protection
  • 3rd Party App data protection
  • Protection classes
  • Touch ID
  • Secure Enclave
  • Keychain Data Protection

App Security

  • Code signing
  • Runtime protection
  • Entitlement Declarations
  • Extensions

Network Security

  • Certificates
  • VPN
  • Wi-Fi
  • Bluetooth
  • Single Sign-On
  • AirDrop

Internet Services

  • Apple ID
  • Two factor authentication
  • Cloud services
  • Continuity

Device Security

  • Activation Lock
  • Bypass codes
Premium Course

5 Days


This course is authored by QA

Delivery Method

Delivery method

Classroom / Attend from Anywhere

Receive classroom training at one of our nationwide training centres, or attend remotely via web access from anywhere.

Find dates and prices

Online booking is currently not available for this course, to find out more please call us on 0113 220 7150 or email us at info@qa.com to discuss how we can help.