I was able to get this script to work for me via a
Policy:#!/bin/shloggedInUser=$( echo "show State:/Users/ConsoleUser" |
scutil | awk '/Name :/ && ! /loginwindow/ { print $3 }'
)/usr/sbin/dseditgroup -q -u [enter admin account password already on
ma...