Jamf Nation Community

Are you trying to have the user info added to JSS?

On our Windows computers, when a user logs in a script runs that updates the AD computer object's Description field with the user's username, a time stamp, IP address and other information. We want to replicate that with our Macs.

I have been playing with the dscl command all day but can't seem to get it to update the computer objects description field.

Hmm. I'm not sure you'll be able to get that to work. Although some people have been successful in updating fields in AD using dscl, its not really the tool for the job, so any success you have may be limited or short lived. I don't have much of a suggestion for you unfortunately, because we don't do anything like that. Personally, trying to modify AD records in a script run from a client system doesn't sound like a great idea to me.

But just for kicks, what is the exact field name or names that you're trying to make the changes to? I just looked at my own computer record in AD using dscl and I'm not seeing anything that looks like a description. is it a custom field?

It appears that the field is called Comment in dscl

Keep us posted if you find something. I could use that in my environment.

As an alternative I have worked in schools where a login script appended the information to the end of a text file in a hidden share. Not the most secure option but worked well as it keep a history.

Regards
Graeme