Does anyone have a good fixlet or task for managing Users on OSX?
I would rather not reinvent the wheel if I don’t need to.
Thanks!
Not sure about the user management tasks that you are looking for. Can you please add an example ? You may want to take a look at the user inspectors at: https://developer.bigfix.com/relevance/guide/client/users.html
Yep. Thanks for the link.
Looking for the following to start with but I am not real familiar with OSX so I am not sure what else there should be.
- Add new user (and specify a password)
- Remove a user
- Add or remove an existing user to the admin roll.
I think the admin roll can be managed via the d or a switch for dseditgroup:
dseditgroup -o edit -n . -d {parameter “UserName” of action} -t user admin
In general you can use the relevance expression to check if a user exists, the group etc. To add or remove a user you must use the OSX native command into a BigFix action. The password can be passed as “secure parameter”. You can find a nice example of action and secure parameter on beigfix.me here:
https://bigfix.me/fixlet/details/6076
Yep. I am using the following to see if the current user is in the admin group. OSX is not really my thing.
((concatenations "; " of strings of values of arrays of values of entries whose(key of it = “users”) of dictionaries of files “/var/db/dslocal/nodes/Default/groups/admin.plist”) contains (name of logged on user))
The other question that I have… What is the best way to embed a command into an action script for OSX?
Would it be:
wait /bin/sh -c command
or
wait #!/bin/sh -c command