Chapter 8 Managing User and Group Accounts 105
Replace username with the name of an administrator user on the remote server and
replace server with the name or IP address of the server.
13 Create the home folder for the new user.
Use the -s option if you are using a network directory domain or the -c option if you
are using a local directory domain. You must run the command to create the home
folder with root privileges.
$ sudo createhomedir -s -u
ajohnson
To create a group account for the user, see “Creating a Group Account” on page 111
before doing this step.
The user account is now complete and can be used for logging in. For more
information, see the dscl man page.
Retrieving a User’s GUID
When a user account is created, the computer generates a 128-bit integer called a
GUID. This is stored in the LDAP directory.
The GUID is used for permissions and for associating users with group memberships. In
command-line tools, you might see a GUID referred to as a GeneratedUID.
To retrieve a user’s GUID:
1 Start the dscl tool in interactive mode, specifying the computer you are using as the
source of directory service data:
$ dscl localhost
>
2 Change the current folder to /LDAPv3/ipaddress/Users by entering the path at the
prompt:
> cd /LDAPv3/
ipaddress
/Users
Replace
ipaddress
with the IP address of your directory server.
3 Authenticate as an administrator by entering the following command, replacing
adminusername with an administrator’s user name, and entering an administrator’s
password when prompted:
> auth
adminusername
4 Review the GUID for a user.
> read
username
GeneratedUID
5 Quit dscl by entering:
> quit
Comments to this Manuals