Help

Is there a way to update the Extension Attributes ?

ec11
New Contributor

Posted on ‎08-20-2024 06:22 PM

I am using Jamf cloud and  Microsoft Entra ID to login. User password will expire every 3 months.

currently I run a script in windows to retrieve their password expire day and remind all mac user.

I am thinking to add an user extension attributes and use api to update it daily.

Then, run a policy daily to check if the date is less than 7 days Jamf will prompt a message to ask user to change the password .. Is it the way to go ?

Thanks

Edwin

 

0 Kudos
Reply
1 REPLY 1

AJPinto
Honored Contributor III

Posted on ‎08-21-2024 04:58 AM

If you are using Jamf Connect, Apples Kerberos SSO Extension, or PSSO those tools already alert users on expiring passwords. Ultimately passwords are the responsibility of Identity Management and the User, and using the right tools the right way removes this need all together. 

 

What you are wanting to do is possible so long as the Mac can see AD, just run a script using dhcl to look up the user, grep their last password change date, math it by your password change requirements and an if statement to notify or not notify the user, but this is usually not needed. Myself, I would have email setup to send to users from the IDP when their PW is coming close. 

0 Kudos
Reply