Help

Standard account to Admin account

agakhan_admin
New Contributor II

Posted on ‎01-14-2021 02:56 AM

Hi There,

I am using ongoing policy to have Admin account on all MacBook in my organisation that has frequency of everyday. The account is made manually sometimes and also I have made an another policy to make local admin account. What happened, one of the IT Support person created local admin account manually and the name of the account was changed mistakenly. Because of the policy that I have which is to make every account as standard apart from the main local admin account, caused the account as standard. Now, I have two local account with standard privileges. If the Mac has no internet, how could it be manually done?

0 Kudos
Reply
4 REPLIES 4

Tangentism
Contributor III

Posted on ‎01-14-2021 03:58 AM

If you have physical access to the machine, you can use the below Terminal commands. Replace [username] with the account name to elevate.

sudo /usr/sbin/dseditgroup -o edit -a "[username]" -t user admin
sudo dscl . -append /groups/admin GroupMembership "[username]"
0 Kudos
Reply

agakhan_admin
New Contributor II

Posted on ‎01-14-2021 04:41 AM

Will it ask for Admin password through terminal? Because there are none if it asks.

0 Kudos
Reply

Tangentism
Contributor III

Posted on ‎01-14-2021 06:28 AM

Then you need to boot into the machine in single user mode then run the following commands. This will run the set up assistant at the next normal boot.

/sbin/fsck -fy
/sbin/mount -uw / 
rm /var/db/.AppleSetupDone
0 Kudos
Reply

agakhan_admin
New Contributor II

Posted on ‎01-15-2021 01:50 AM

Thank you, I will try. But, just in case, If the Apple Mac is encrypted, Do I push "S" button from the start of booting or after I put the user account password?

0 Kudos
Reply