Last active
December 15, 2015 00:28
-
-
Save nmcspadden/5172995 to your computer and use it in GitHub Desktop.
ARD installcheck_script to make sure Admin is among the list of ARD users, but not everyone is.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| # Determines if the Remote Management settings are set | |
| # for "All Users" or for "Only these users:" in System | |
| # Preferences' Sharing preference pane | |
| ARD_ALL_LOCAL=`/usr/bin/defaults read /Library/Preferences/com.apple.RemoteManagement ARD_AllLocalUsers` | |
| # Lists all local user accounts on the Mac with a UID | |
| # of greater or equal to 500 and less than 1024. This | |
| # should exclude all system accounts and network accounts | |
| # | |
| # List is displayed if the "All Users" setting is | |
| # set in the Remote Management settings. | |
| ALL_ID500_PLUS_LOCAL_USERS=`/usr/bin/dscl . list /Users UniqueID | awk '$2 >= 500 && $2 < 1024 { print $1; }'` | |
| # Lists all user accounts on the Mac that have been given | |
| # explicit Remote Management rights. List is displayed if | |
| # the "Only these users:" setting is set in the Remote | |
| # Management settings. | |
| REMOTE_MANAGEMENT_ENABLED_USERS=`/usr/bin/dscl . list /Users naprivs | awk '{print $1}'` | |
| if [ "$ARD_ALL_LOCAL" = "1" ]; then | |
| result=$ALL_ID500_PLUS_LOCAL_USERS | |
| elif [ "$ARD_ALL_LOCAL" = "0" ]; then | |
| result=$REMOTE_MANAGEMENT_ENABLED_USERS | |
| fi | |
| if [[ "$result" != *admin* ]]; then | |
| echo "Doesn't contain admin!" | |
| exit 0 | |
| else | |
| if [ "$ARD_ALL_LOCAL" = "1" ]; then | |
| echo "All users enabled - fix!" | |
| exit 0 | |
| fi | |
| fi | |
| exit 1 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment