Chapter 7 Working With Users and Groups 59
MCXFlags:
If present, MCXSettings is
loaded; if absent,
MCXSettings isn’t loaded;
required for a managed user.
UTF-8 XML
plist, single
value
MCXSettings:
A user’s managed
preferences
UTF-8 XML
plist, single
value
AdminLimits
The privileges allowed by
Workgroup Manager to a
user that can administer the
directory domain
UTF-8 XML
plist, single
value
Password:
The user’s password
UNIX crypt
Picture:
File path to a recognized
graphic file to be used as a
display picture for the user
UTF-8 text Maximum 32,676 bytes.
Comment:
Any documentation you like
UTF-8 text John is in charge of product
marketing.
UserShell:
The location of the default
shell for command-line
interactions with the server
Path name /bin/tcsh
/bin/sh
None (this value prevents users with accounts in the
directory domain from accessing the server remotely
via a command line)
Non-zero length.
Authentication
Authority:
Describes the user’s
authentication methods,
such as Open Directory or
crypt password; not required
for a user with only a crypt
password; absence of this
attribute signifies legacy
authentication (crypt with
Authentication Manager, if
it’s available).
ASCII text Values describe the user’s authentication methods.
Can be multivalued (for example, basic and
ShadowHash).
Each value has the format vers; tag; data (where vers
and data may be blank).
Crypt password: ;basic;
Open Directory
authentication: ;ApplePasswordServer; HexID, server’s
public key IPaddress:port
Shadow password (local directory domain
only): ;ShadowHash;
AuthenticationHint:
Text set by the user to be
displayed as a password
reminder
UTF-8 text Your guess is as good as mine.
Maximum 255 bytes.
Attribute Format Sample values
LL2354.book Page 59 Monday, October 20, 2003 9:47 AM