Help

Non Admin users removing SSIDs

Go to solution
mrperrott
New Contributor

Posted on ‎06-06-2017 10:03 AM

Hello,

Just got a question about some users that travel frequently. They would like the ability to remove SSIDs because when they return to a site the WIFI password has changed and since they do not have admin rights, they cannot remove the SSIDs to re-add them with the new credentials.

I've done some research but I have not seen anything with a resolution for this issue.

All feedback is greatly appreciated.

Thank you

Labels:
0 Kudos
1 ACCEPTED SOLUTION

Go to solution
jared_f
Valued Contributor

Posted on ‎06-06-2017 10:52 AM

@mrperrott ,

I use the following commands below to (1) remove all SSID's from the preferred network list in system preferences and (2) then add any networks I like the user to have back. I would add this in Self Service because it does need admin rights to run.

Note the following: - Removes all preffered networks (the user will need to reconnect to their home network overtime after running this). - Then adds a specific network back. Make sure you define SSID, ENCRYPTION, PASSWORD of the network you are adding (quotes are not needed). - Needs administrator rights.

networksetup -removeallpreferredwirelessnetworks en0
networksetup -addpreferredwirelessnetworkatindex en0 SSID 0 ENCRYPTION PASSWORD

Hope this solves your issue,
Jared

View solution in original post

0 Kudos
3 REPLIES 3

Go to solution
mrperrott
New Contributor

Posted on ‎06-06-2017 10:18 AM

 
0 Kudos

Go to solution
jared_f
Valued Contributor

Posted on ‎06-06-2017 10:52 AM

@mrperrott ,

I use the following commands below to (1) remove all SSID's from the preferred network list in system preferences and (2) then add any networks I like the user to have back. I would add this in Self Service because it does need admin rights to run.

Note the following: - Removes all preffered networks (the user will need to reconnect to their home network overtime after running this). - Then adds a specific network back. Make sure you define SSID, ENCRYPTION, PASSWORD of the network you are adding (quotes are not needed). - Needs administrator rights.

networksetup -removeallpreferredwirelessnetworks en0
networksetup -addpreferredwirelessnetworkatindex en0 SSID 0 ENCRYPTION PASSWORD

Hope this solves your issue,
Jared

0 Kudos

Go to solution
easyedc
Valued Contributor II

Posted on ‎06-06-2017 11:46 AM

If this is a known SSID, then I do something similar, that might target what you're looking for. I run a EA that checks against 

#!/bin/sh
wifi=`networksetup -listpreferredwirelessnetworks en0 | grep 'WIRELESS NETWORK NAME' || echo "No"`
echo "<result>$wifi</result>"

and if it's found during a recon, gets added to a smart group tied to an ongoing policy that executes

#!/bin/sh
networksetup -removepreferredwirelessnetwork en0 'WIRELESS NETWORK NAME'
exit 0

But again, assumes you know the SSID. If you don't know the SSID, then yeah, dumping all of them would be the brute force way to do it.

0 Kudos