Help

What is the best way to configure the option for creating mobile accounts?

bobotech
New Contributor

Posted on ‎05-17-2012 03:41 PM

In the Directory Utility under Advanced Options in the Active Direction settings window, you have the option under the User Experience tab to Create Mobile Account at Login. By default it is turned off.

We wish to know of the best way of turning on that option with a policy within Jamf. We want to force that policy to a bunch of existing macbooks that have that option currently turned off.

What would be the best procedure for doing this? We don't want to set any other option, just to turn on that option to macbooks that are already joined to the domain.

Thanks...

0 Kudos
4 REPLIES 4

ewettach
New Contributor III

Posted on ‎05-17-2012 04:37 PM

At first thought you should be able to write a script to set this. The only thing is I am not sure if it works post-bind, but I believe that it does.

You would need to run this command...

dsconfigad -mobile enable
dsconfigad -mobileconfirm disable

This would set the accounts that login to mobile and not prompt the user if they would like to create a mobile account or not.

Here is an excerpt from the man page...

dsconfigad
..
Advanced Options - User Experience: -mobile flag 'enable' or 'disable' mobile user accounts for offline use -mobileconfirm flag 'enable' or 'disable' warning for mobile account creation

0 Kudos

cbrewer
Valued Contributor II

Posted on ‎05-18-2012 07:28 AM

You can also use the jamf binary. Run "jamf bind help" to see all of the options.

"jamf bind -type ad -cache" should do it.

0 Kudos

dzmudzki
New Contributor

Posted on ‎05-19-2012 12:46 AM

One more option would be using Managed Preferences:

com.apple.MCX
#Create Mobile Account
Domain: ~/Library/Preferences/com.apple.MCX
Key: com.apple.cachedaccounts.CreateAtLogin
Value: True

#Show Mobile Account Dialog
Domain: ~/Library/Preferences/com.apple.MCX
Key: com.apple.cachedaccounts.WarnOnCreate
Value: False

0 Kudos

CypherCookie
Contributor

Posted on ‎07-16-2015 04:07 AM

There is also the ability to create mobile accounts via Configuration Profiles or via using the OD option to create the logging in accounts as mobile.

If you have an AD bind you can set create mobile accounts in the bind itself.

0 Kudos