Apple Mac OS X Server (version 10.2.3 or later) User Manual

192

Chapter 3

In addition, you can include

UserShell (the default shell)

NFSHomeDirectory (the path to the user’s home directory on the user’s computer)

Other user data types, described in Appendix A

For group accounts, the list of attributes must include

RecordName (the group name)

PrimaryGroupID (the group ID)

GroupMembership

Here is an example of a record description:

0x0A 0x5C 0x3A 0x2C DSRecTypeStandard:Users 7

RecordName Password UniqueID PrimaryGroupID

RealName NFSHomeDirectory UserShell

Here is an example of a record encoded using the description:

jim:Adl47E$:408:20:J. Smith, Jr., M.D.:/Network/Servers/somemac/Homes/jim:/bin/csh

The record consists of values, delimited by colons. Use a double colon (::) to indicate a value
is missing.

Here is another example, which shows a record description and user records for users whose
passwords are to be validated using the Password Server. The record description should
include a field named dsAttrTypeStandard:AuthMethod, and the value of this field for each
record should be dsAuthMethodStandard:dsAuthClearText:

0x0A 0x5C 0x3A 0x2C dsRecTypeStandard:Users 8

dsAttrTypeStandard:RecordName dsAttrTypeStandard:AuthMethod

dsAttrTypeStandard:Password dsAttrTypeStandard:UniqueID

dsAttrTypeStandard:PrimaryGroupID dsAttrTypeStandard:Comment

dsAttrTypeStandard:RealName dsAttrTypeStandard:UserShell

sk8allday:dsAuthMethodStandard\:dsAuthClearText:pword1:374:11:comment:

Tony Hawk:/bin/csh

mattm:dsAuthMethodStandard\:dsAuthClearText:pword2:453:161::

Matt Mitchell:/bin/tcsh

As these examples illustrate, you can use the prefix “dsAttrTypeStandard:” when referring to
an attribute, or you can omit the prefix. When you use Workgroup Manager to export
character-delimited files, it uses the prefix in the generated file.

LL0395.Book Page 192 Wednesday, November 20, 2002 11:44 AM