How to reset Profile Manager data
OS X Server 10.8 (Mountain Lion)
To reset the Profile Manager data stored in postgres:
sudo /Applications/Server.app/Contents/ServerRoot/usr/share/devicemgr/backend/wipeDB.sh
From the list below choose one of our FAQs topics, then select a FAQ to read. If you have a question which is not in this section, please contact us .
OS X Server 10.8 (Mountain Lion)
To reset the Profile Manager data stored in postgres:
sudo /Applications/Server.app/Contents/ServerRoot/usr/share/devicemgr/backend/wipeDB.sh
This FAQ is geared towards new administrators looking for guidance on a proper mail server setup.
As a best practice, your mail server should require SSL encryption for IMAP, POP and Webmail. SMTP should have SSL enabled, but not required.
A typical OS X Server mail server for a small business would have these ports open.
Other ports, like imap/143 pop/110, ssh/22, etc should not be opened unless required.
One size does not fit all. You may need to adjust to your needs.
By default, OS X Servers expect a fully qualified domain name (FQDN) as a greeting (helo) for all SMTP connections.
The server expects:
helo mail.mydomain.com
Many apps (Outlook and some phones) don’t send a FQDN and instead send something like:
helo computer1
The server will reject this connection, and you will see this in your server’s mail.log:
Helo command rejected: need fully-qualified hostname
To resolve the issue
OS X Server 10.8
Check your current helo restrictions with:
sudo postconf -c /Library/Server/Mail/Config/postfix/ smtpd_helo_restrictions
Your results will likely be:
smtpd_helo_restrictions = reject_non_fqdn_helo_hostname reject_invalid_helo_hostname
We’d like to allow local-lan and smtp-authenticated users to bypass the restriction, so we allow their access before the reject lines.
Issue this to fix:
postconf -c /Library/Server/Mail/Config/postfix/ -e "smtpd_helo_restrictions = permit_mynetworks permit_sasl_authenticated reject_non_fqdn_helo_hostname reject_invalid_helo_hostname"
Then activate the change with:
sudo postfix reload
OS X Server 10.5 – 10.7
Check your current helo restrictions with:
sudo postconf smtpd_helo_restrictions
Look at your results.. You’ll probably want to keep the same restrictions but add permit_mynetworks and permis_sasl_authenticated before the reject lines.
If you had only these restrictions “reject_non_fqdn_helo_hostname reject_invalid_helo_hostname”, then you would issue:
postconf -e "smtpd_helo_restrictions = permit_mynetworks permit_sasl_authenticated reject_non_fqdn_helo_hostname reject_invalid_helo_hostname"
Then activate the change with:
sudo postfix reload
On a 10.8 Server, if you are seeing: [code]warning: not owned by _postfix: /Library/Server/Mail/Data/mta/./guid_device_maps.plist[/code]
You can safely ignore this error. It’s informational and does not suggest a problem.
The file is not created by Postfix, but by OS X Server, thus the permissions collide and Postfix is not able to fix the permissions.
10.7 – 10.8
sudo killall -HUP mDNSResponder
10.5 – 10.6
sudo dscacheutil -flushcache
10.4
lookupd -flushcache