Hello:
I am interested in using the "jamf createAccount" script to add an administrator account. However, I have noticed a problem and I am wondering if anyone has suggestions for this.
The problem is with one of the parameters "-password" where you set the password of the new account. When you use this parameter, the password shows up in the Console logs on the machine.
Additionally, I have placed the script into a .pkg installer, but the password still shows up in the log.
I assume that the "-passhash" parameter is to address this problem, but I'm not sure how to use it? Any ideas on how to scrub the password from the logs or prevent it from getting there in the first place?
Many thanks,
Ben
12/29/11 9:37:30 AM sudo[821] root : TTY=unknown ; PWD=/private/tmp/PKInstallSandbox.Y2pxwd/tmp ; USER=root ; COMMAND=/usr/sbin/jamf createAccount -username greenuser -realname Green User -password GreenPassword -home /Users/greenuser -shell /bin/bash -picture /Library/User Pictures/Animals/dog.tif -admin -secureSSH
