Understanding password validation – Apple Mac OS X Server (Administrator’s Guide) User Manual

Users and Groups

189

jim:Adl47E$:408:20:J. Smith, Jr., M.D.:/Network/Servers/somemac/Homes/jim:/bin/csh

Using the StandardUserRecord Shorthand

When the first record in a character-delimited import file contains “StandardUserRecord,” the
record description assumed is

0x0A 0x5C 0x3A 0x2C DSRecTypeStandard:Users 7

RecordName Password UniqueID PrimaryGroupID

RealName NFSHomeDirectory UserShell

An example user account looks like this:

jim:Adl47E$:408:20:J. Smith, Jr., M.D.:/Network/Servers/somemac/Homes/jim:/bin/csh

Using the StandardGroupRecord Shorthand

When the first record in a character-delimited import file contains “StandardGroupRecord,”
the record description assumed is

0x0A 0x5C 0x3A 0x2C DSRecTypeStandard:Groups 4

Record Name PrimaryGroupID GroupMembership

Here is an example of a record encoded using the description:

students:Ad147:88:jones,thomas,smith,wong

Understanding Password Validation

A user’s password can be validated using one of these options:

m Using a value stored as a readable attribute in the user’s account. The account can be

stored in a directory domain residing on Mac OS X Server or on another vendor’s
directory server, such as an LDAP or Active Directory server.

m Using a value stored in the Open Directory Password Server.

m Using a Kerberos server.