How to convert a local user account to a network user account?

@ahmaduhhs I do this all the time. Usually in the opposite direction but the long and short of it is the same.

1.) Delete either local account or cached mobile account, keep home folder.
2.) Make sure original home folder's name matches new account's short name and rename if necessary. 3.) Make sure permissions on home folder match new user account's UID using the chown command.

You can script this or do some other more fancy things but those are the basic steps.

I have a script that is designed to help migrate a local user to an Active Directory account. It's available via the link below:

https://github.com/rtrouton/rtrouton_scripts/tree/master/rtrouton_scripts/migrate_local_user_to_AD_domain

@chriscollins Thank you for the reply. How do I make sure permissions on home folder match new user account's AD UID?

@rtrouton love it! Thank you man!
What is the best way to run it? Terminal > Local admin account?

@ahmaduhhs, it's a .command file so it's designed to be double-clicked on to launch. It'll open a Terminal window and then the script's prompts will walk you through the process of migrating a local account to the equivalent AD account.

This script is also interactive, so you'll need to provide responses to questions and the script will then use that information to move the selected local account to the equivalent AD account. Once you've moved finished moving the accounts, select FINISHED from the script's menu and the script will exit and say Process Completed. It is safe at that point to close that Terminal window.

@rtrouton I must be missing something here :(
If I drag and drop into terminal i get this:
-bash: /Users/ad/Desktop/MigrateLocalUserToADDomainAcct.command: Permission denied

@ahmaduhhs I haven't read Rich's post, but if the file is saved as a .command file, then you double click it to run it. You don't pull it into Terminal.

@mm2270 yeah i tried both ways and the s.s. i posted what comes up when i clicked on it, i also tried running through terminal for good measure.

@ahmaduhhs you may need to set the execute permissions on the file.

@mpermann sorry not sure how to execute permissions on the file :( sorry for being dense today.

@ahmaduhhs try the following:

chmod ugo+x /path/to/file.command

Then hopefully you can double-click the command file and have it run.

the script is a .sh, no?

for the netIDprompt, do I put in the user account I'm trying to fix or an account with domain joining permissions?

Hey guys!

I am using a script pretty similar to this, but configured to run at next boot, so the current user (e.g. local) is the one that is converted from local to network user (e.g. uid0414).

Nevertheless, every once in a while, the whole thing is failing because the command (mv) that moves from the local to the network user finds that there's a folder with that name already, so it moves the whole tree below that old folder… the problem is that this is a freshly formatted machine!!! So I don´t know where this folder is coming from.

As a workaround I am copying (cp) instead of moving, but this is of course inefficient and slow.

Does any of you have a clue about how a clean install of Sierra might have a folder existing under /Users? Maybe after binding with the AD the machine gets information of previously existing users?

Thanks!