Chapter 8 Managing User and Group Accounts 113
Adding a User to a Group
You can add users to a group using the dscl tool.
To add a user to a group:
1 Start the dscl tool in interactive mode, specifying the computer you are using as the
source of directory service data:
$ dscl localhost
>
2 Change the current folder to /LDAPv3/ipaddress/Groups by entering the path at the
prompt:
> cd /LDAPv3/
ipaddress
/Groups
Replace
ipaddress
with the IP address of your directory server.
3 Authenticate as an administrator by entering the following command, replacing
adminusername with your administrator user name, and entering your administrator
password when prompted:
> auth
adminusername
4 Add the user to the group by entering the following command, replacing
groupPath
with the group’s path relative to the current folder, and
userName
with the user’s short
name:
> append
groupPath
GroupMembership
userName
For example, if the group’s folder is in the /Groups folder, replace
groupPath
with the
group’s short name. However, if the group’s folder is in the /Groups/building1/ folder,
replace
groupPath
with building1/shortName, where shortName is the group’s short
name.
5 Review the settings of the group by entering the following command, replacing
groupShortName
with the group account’s short name:
> read
groupShortName
dscl displays the settings for the group account, similar to the following output:
dsAttrTypeNative:apple-generateduid:4B3A5678-E9C1-2EC3-4567-891D234E5678
dsAttrTypeNative:cn: officegroup
dsAttrTypeNative:gidNumber: 600
dsAttrTypeNative:memberUid: mchen ajohnson bmiller
dsAttrTypeNative:objectClass: posixGroup apple-group extensibleObject top
AppleMetaNodeLocation: /LDAPv3/ipaddress
GeneratedUID:4B3A5678-E9C1-2EC3-4567-891D234E5678
GroupMembership: mchen ajohnson bmiller
Member: mchen ajohnson bmiller
PasswordPlus:********
PrimaryGroupID: 600
RecordName: officegroup
RecordType: dsRecTypeStandard:Groups
Comments to this Manuals