Infusion Technology Solutions Blog
Technology related solutions, tips, tricks, and other interesting topics
How to Reset the Password for an OS X Open Directory Mobile Account
In: Apple
1 Sep 2009An OS X Open Directory account which is set to be a mobile account will cache its password locally in the event the computer cannot communicate with the Open Directory server. You can reset this locally cached password by doing the following:
- Note: The following instructions work for local accounts AND mobile Open Directory accounts which have locally cached passwords.
- Boot into single user mode (press Command-S at power on)
- Type fsck -fy
- Type mount -uw /
- Type launchctl load /System/Library/LaunchDaemons/com.apple.DirectoryServices.plist
- Type dscl . -passwd /Users/username password, replacing username with the targeted user and password with the desired password.
- Reboot
- If you do this for an account that has its home directory encrypted with FileVault, then you’ll still be prompted to enter the old account password since that is what the encrypted FileVault file is using. After entering the old FileVault password, the password on the encrypted archive will be updated to the new account password so they are in sync.
- If you do this on a mobile Open Directory account, then the user account password on the computer will be out of sync with what is stored on the Open Directory server and the computer won’t authenticate against the Open Directory server for that user account. To fix this, you need to delete the locally cached password for the user account on the computer. To do this make sure the computer is connected to the network in such a way that it can connect to the Open Directory server. Then issue the following command on the computer that you reset the account password on: dscl . -delete /Users/userName
- NOTE: If the user account is using FileVault, then this will break that feature. When you log into the account after doing the “dscl -delete” command, the FileVault archive containing the user’s home folder contents will not mount. You can still manually mount the encrypted archive which is in their home folder.
- To fix this problem in Leopard, you need to readd the user account setting that lets OS X know to use a FileVault encrypted archive as the user’s home folder. Run the following terminal command:
sudo dscl . -create /Users/userName HomeDirectory '<home_dir><url>file://localhost/Users/userName/userName.sparsebundle</url></home_dir>'
- NOTE: If the user account is using FileVault, then this will break that feature. When you log into the account after doing the “dscl -delete” command, the FileVault archive containing the user’s home folder contents will not mount. You can still manually mount the encrypted archive which is in their home folder.
Comment Form
About this blog
This blog is about technology related topics. It will primarily contain problems and solutions to IT problems that I encounter on a day-to-day basis. In addition interesting things I come across either on or off the internet will be posted here as well. I will also include step-by-step tutorials to common tasks people may need to do with their computers.
Web Hosting Discount
-
Get the first month for only $0.01 using coupon code HGCOUPONBLOG. No contracts, cancel anytime.
Categories
- Apple (30)
- Electronics (10)
- Games (1)
- General IT Info (47)
- Information Security (12)
- Microsoft (11)
- Ramblings (3)
- The Net (5)
- Tutorials (3)
- Web Development (12)
- Don Farland: The http_proxy environment variable is case sensitive and should be all lowercase. I dropped it in [...]
- brad: I can confirm that this works for the newest 3.0+ software. works like a charm thanks to the creator [...]
- Jim Tidmore: Hello, I believe I followed everything but doesn't connect, don't get me wrong I am not complaining [...]
- Tom: Thanks for the clear and concise information. Tom [...]
- JAUHDIMATA: good solved.. thx [...]
- How to Reset the Password for an OS X Open Directory Mobile Account
- Terminal Command for Xserve Intel Hardware RAID Card
- How to Fix a Corrupted OS X Open Directory Account Password
- How to Configure Splunk to use a Web Proxy Server
- How to Get Trixbox Working Behind a NAT Firewall
- How to Backup and Restore a MySQL Database Using mysqldump
- How to Reset the Admin Password in ColdFusion MX 6
- How to Enable ReadyBoost for an ExpressCard SSD in Vista
- Sendmail Hangs When Starting Up or When Using It with PHP
- Mysqldump Error 29
Revolutionary One Time Password Device
