[Macpartners] Macpartners Digest, Vol 50, Issue 5
Mateja Miljacki
mateja at apple.com
Wed Jul 25 12:10:24 EDT 2007
Mark,
Use thre dscl command.
man dscl
DESCRIPTION
dscl is a general-purpose utility for operating on Directory
Service
directory nodes. Its commands allow one to create, read, and
manage
Directory Service data. If invoked without any commands, dscl
runs in an
interactive mode, reading commands from standard input.
Interactive pro-
cessing is terminated by the quit command. Leading dashes
("-") are
optional for all commands.
NAME
dscl -- Directory Service command line utility
SYNOPSIS
dscl [options] [datasource [command]]
options:
-p prompt for password
-u user authenticate as user
-P password authentication password
-raw don't strip off prefix from
DirectoryService API
constants
-url print record attribute values in URL-
style encod-
ing
-q quiet - no interactive prompt
commands:
-read [path [key ...]]
-list path [key]
-search path key val
-create record_path [key [val ...]]
-append record_path key val ...
-merge record_path key val ...
-delete path [key [val ...]]
-change record_path key old_val new_val
-changei record_path key val_index new_val
-passwd user_path [new_password | old_password
new_password]
available only in interactive mode:
-cd dir
-pushd [dir]
-popd
-auth [user [password]]
-authonly [user [password]]
-quit
Mateja.
On Jul 25, 2007, at 12:03 PM, macpartners-request at mit.edu wrote:
> Send Macpartners mailing list submissions to
> macpartners at mit.edu
>
> To subscribe or unsubscribe via the World Wide Web, visit
> http://mailman.mit.edu/mailman/listinfo/macpartners
> or, via email, send a message with subject or body 'help' to
> macpartners-request at mit.edu
>
> You can reach the person managing the list at
> macpartners-owner at mit.edu
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Macpartners digest..."
>
>
> Today's Topics:
>
> 1. OpenDirectory scripting? (Mark Pearrow)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Wed, 25 Jul 2007 10:36:23 -0400
> From: Mark Pearrow <mpearrow at csail.mit.edu>
> Subject: [Macpartners] OpenDirectory scripting?
> To: macpartners at mit.edu
> Message-ID: <F2F90CC6-809F-4E13-B2C1-5C42AF51FDED at csail.mit.edu>
> Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
>
> Hi all,
>
> I'm using an OpenDirectory server to provide authentication for some
> of our lab macintoshes, using the process described in the following
> document:
>
> http://www.afp548.com/filemgmt_data/files/Customizing%20Open%
> 20Directory.pdf
>
> (Which works well, btw) However, Part of the process is that I need
> to set the dsAttrTypeStandard:AuthenticationAuthority attribute for
> each user's record to their CSAIL Kerberos principal, e.g.,
> mpearrow at CSAIL.MIT.EDU.
>
> Since I've imported a ton of user records already (Using Passport,
> since I couldn't quite get the Tiger import wizard to do what I
> needed). I figure there has to be a scriptical way to do this for all
> my existing users, but so far I have to edit each record by hand in
> the Workgroup Manager. Has anyone written scripts, Applescript or
> otherwise, for mass-munging OD records this way?
>
> mjp
>
>
> ------------------------------
>
> _______________________________________________
> Macpartners mailing list
> Macpartners at mit.edu
> http://mailman.mit.edu/mailman/listinfo/macpartners
>
>
> End of Macpartners Digest, Vol 50, Issue 5
> ******************************************
--
Mateja Miljacki, ACSA
mateja at apple.com
Systems Engineer
o: 617-718-9955
http://www.apple.com/education/technicalresources/
--
More information about the Macpartners
mailing list