I’m right now working through our Ubuntu desktop provisioning system, and added a few tricks to save some time. I’ll list some of them here, especially those where I couldn’t find any help on google.
Preconfiguring email accounts for Thunderbird
I couldn’t pull this one out. I have something close, which is called autoconfiguration, and is well documented. This is a feature from Thunderbird and other mail clients used to fill various fields during account creation. You might have seen it at work when registering your Gmail account. Setting this up for your organization is pretty straightforward, you’ll just have to setup a web server or place the files in /usr/lib/thunderbird-3.1.7/isp/ (this will most likely be altered with the next version, but I couldn’t find a more generic place). Check that your file is correct by running Thunderbird from the command line, you’ll get error messages for syntax errors that way.
Adding certificate authorities in Thunderbird and Firefox
All I found on the web on this topic was that :
- The default CAs are built-in, located in a compiled binary ;
- the only tricks I found were based on running login scripts which will only work once the profile is created.
This is not good, especially for Thunderbird, where you create the profile and connect to your mail server at the same time. If the certificate is not trusted, then you will have to manually trust it, which is exactly what we do not want. The solution is to alter the new profile skeleton and provide an already trusted CA certificate in the default database. This is easily done with the certutil tool. On Ubuntu, the following path holds the default profiles :
I couldn’t find a generic path for Thunderbird, and the Firefox profile directory is also the place to store default bookmarks. I suppose I should find out if /etc/thunderbird/profile/ is checked.
Customizing Ubuntu and Thunderbird preferences
This one is easy, just put your scripts in /etc/firefox/pref and /etc/thunderbird/pref. The only problem is adding relevant configuration. For example, I could setup de LDAP server for Thunderbird, but could not enable it by default …