Skip to main content

New to Dartmouth?

Resources for:

Information Security

Connect with Computing

facebook twitter Wordpress Blog

OpenAFS Client for Mac

 The OpenAFS client for Mac is available for OSX 10.4 onwards.  On this page we provide a download link and instructions for the most recent version that Research Computing has tested. openafs.org/macos.html has the official documentation and possibly newer versions of the software.

Installing the OpenAFS client for Mac

      1. Download OpenAFS, choosing the appropriate installer for your version of OSX.

        This is a disk image file (.dmg). If you aren't sure which version you are running, click the Apple icon always at the top left of the screen, and then About this Mac and look for Version.

      2. If the Disk Image does not automatically mount, find it in your Downloads folder  double-click to mount it as a volume named OpenAFS.
        OpenAFS installer disk image
      3. Double-click the enclosed OpenAFS.pkg file to start the installer. On 10.8/10.9 you may need to Control-click and select Open,  to permit the installer to run. 
      4. You will be asked for your password (you must be logged in as an administrative user) and accept the license agreement. Installation will take about a minute.
        Installer prompts for admin password
      5. When prompted for a default cell name;  enter northstar.dartmouth.edu.  Click through the other screens (OK or Next).
        Entering the cell name
        If it offers to download Xcode, you can decline. On 10.8 and newer, there may be warnings about installing code from unidentified developers. The client will start running immediately.
      6. Eject the OpenAFS volume (drag to trash).
      7. Download afssetup. Unpack the .zip file if your browser doesn't do this automatically
      8. Double-click the resulting afssetup.command script to execute it.  You may need to Control-click and select Open to permit code from unidentified developers.
        Can't open - unidentified developer    or        Are you sure
      9. Enter your password when prompted.  The afssetup script does the following:
        • Configures the computer to see the Dartmouth AFS space.
        • Sets up the recommended client options
        • Enables crypt mode, so that all filesystem traffic to AFS is encrypted. The authentication steps are always encrypted.
        • Creates desktop shortcuts to your AFS space. The shortcuts may be recreated at any time by running the afslink.command script.  You may wish to move afssetup and afslink from your Downloads folder to somehere more accessible.
        afssetup terminal screen
      10. Reboot for the new settings to take effect.

You should now have an AFS 'mounted server' on your desktop (if your Finder preferences include 'show mounted servers'), and a desktop shortcut to your personal space. In the Finder, AFS space appears as afs in your boot volume (e.g. Macintosh HD). In a Terminal window,  AFS space appears under /afs.

The AFS client uses some disk space for file caching. This is 100MB by default, but it may be helpful to increase this. Please ask Research Computing for advice on changing this setting.

To do a clean uninstall of OpenAFS client, use the uninstall program that comes bundled with the installer. 

Top of page

Basic Usage

You now have access to AFS space, but you do not have permission to see your own personal files yet. You need to authenticate to AFS by clicking the padlock iconAFS padlock iconin the top toolbar, and giving it your AFS username and password when prompted. When you are authenticated, the padlock will have no red 'X'. You will now have full access to your files in AFS through the finder or the command line. You now have an AFS token (limited lifetime Kerberos ticket with AFS access privileges).   You also have access to any other parts of AFS which your account has been given permission to see (e.g. research group shared space).  Your token is good for 25 hours.  After that time, the padlock tool will get a red 'X' and you will revert to an unauthenticated user on AFS.  The token can be renewed at any time, and longer lifetimes can be arranged.

The desktop shortcuts created in step 8 above will take the Finder directly to your AFS home.  You can also drag any AFS folder to the left Finder panel to make a shortcut.  This is generally the most convenient way to navigate to shared space.

You can change your AFS password with the kpasswd.afs utility in a Terminal window

% kpasswd.afs afsusername

Top of page

Last Updated: 6/24/14