Help

Changing AD usernames

JZing
New Contributor III

Posted on ‎10-28-2014 07:36 PM

We will be changing the format of our AD usernames in the near future.
This is going the effect about 200 users with Macs with local home directories.
Is there a way to use Casper to automate some of this process?

The main goal is to have the users be able to use a shorter username and we will be changing the AD home folder name as well. Any ideas what a good approach would be?

0 Kudos
1 REPLY 1

stevewood
Honored Contributor II
Honored Contributor II

Posted on ‎10-28-2014 08:06 PM

Are the users mobile accounts on the machines? If so, then I would almost handle this like a domain move. Unless I'm wrong, I think your steps are:

  1. Delete user from dscl
  2. Move home folder to new name format
  3. Change permissions on home folder to new AD account name

I did something close to this when I had to move my users from one domain to another. I deleted the dscl record, changed the permissions on the home folder, and even reset the FileVault2 user for those that were on laptops. You can find the post outlining this, along with my script at this article:

https://jamfnation.jamfsoftware.com/discussion.html?id=11606#respond

You'd need to pick pieces out of the script and test this extensively.

0 Kudos