Hey guys -
Has anyone built an extension attribute or a shell script to identify users w/ Remote Access capability? I've started on the script below:
#!/bin/bash
#returns com.apple.access_ssh or com.apple.access_ssh-disabled
SSH_users=$(dscl . list /groups | grep -i "com.apple.access_ssh")
#if SSH_users equals com.apple.access_ssh-disabled then all users have access
if [ "$SSH_users" = "com.apple.access_ssh-disabled" ]; then
echo "All users have SSH access"
else
#Identify all users in the
fi;