How to manage user account and management through AMS

Similar Messages

• How to delete user accounts and free up space on my macbook air?

  How can I delete a user account and free up space on my macbook air ridding of all their details/info/app/software?

  Go into system preferences and click on users & groups click the lock icon to unlock it, then select the user click the minus sign. 

• How to recover user accounts and email after clean (not upgrade) server reinstall

  I  have a OSX Mavericks Server 3.1.2 that has developed issues than only a clean install will resolve. I have a large number of user accounts and email data that needs to be reinstated after the the clean install and I am not sure if Migration from a backup is the best way to reover the  user data. Someone p[lease tell me that I dont have to recreate all the user accounts and restore the email directories manually! Any help would be greatly appreciated.

  Helloo,
  I know that it is not the same issue but you might try the steps below listed since it is the same error message and there seems to be a fault in the registery of XP
  http://support.microsoft.com/default.aspx?scid=kb;en-us;314060
  hope it helps
  Cheers

• How close an user account and maintain the accessibility of orders

  Hello,
  I have a question about HRMS.
  I would like to close a user while still being able to see the commands created by this user.
  For example, I have a user "A", he created orders "COM_01", "COM_02" and "COM_03". I fill out an end date for closing this user.
  Then, in a second time with the user "B" (user still active) I want to see the orders "COM_01", "COM_02" and "COM_03".
  But, it's not possible.
  What should I do to enable the consultation of these orders?
  Thank you in advance for your help.
  regards,
  Antoine.

  That's what I meant. My original plan was:
  1) Create a new account with admin privileges.
  2) Make the original account a standard account.
  Unfortunately, this does not work because the name of the original account is: "admin". And for whatever reason, it is impossible to remove admin privileges from an account named: "admin". The checkbox for doing so is grayed out.

• How to Design User Accounts and Groups for Human Task

  Hi All,
  I have a requirement wherein we have a group of people to whom tasks get assigned. Details are below
  Assume
  PO- Purchase Order
  IN- Invoice
  CL1 - Client 1
  CL2 - Client 2
  CL3 - Client 3
  REP1 - User 1
  REP2 - User 2
  REP3 - User 3
  APP1 - Approver 1
  APP2 - Approver 2
  APP3 - Approver 3
  1. There are two groups of people say PO_Team and IN_Team.
  2. REPx are the folks who are in the IN_Team. They handle monitor invoices and run reports on them (READ - Only)
  3. APPx are the folks who are in the PO_team. They approve order and sometimes modify them (READ-WRITE)
  4. CLIx are the clients each of whom send PO and expect IN in return
  5. CLI1 - APP1- REP1 together handle one client.
  Now the requirement is something like this
  1. APP1 must be able to see the PO and IN only from CLI1
  2. APP1 must be able to see editable view of PO from CLI1
  3. APP1 must be able to see red only view of IN from CLI1
  4. REP1 must be able to see the PO and IN only from CLI1
  5. REP1 must be able to see read only view of IN from CLI1
  6. REP1 must be able to see read only view of PO from CLI1
  7. In exception cases APP1 can assign a PO from CLI1 to APP2
  Can someone help me in the design of groups and permissions for this?
  TIA

  Groups are the way to go. Every Human Task can be assigned to either a user or a group or a user and a group. Select the last option so that it goes to a particular user but also to a group. That way anyone in the group can approve these tasks though it is sent to one particular users list. Anyone from that group can pick that task up and approve it

• Mac app store will not connect under a managed user account but will under admin. Please help clear this up?

  After I have installed OSX Mountain lion I clicked on the app store to buy an app. Only one problem, it says it "cannot connect", I then tried under the admin account and it worked no problem. I log back into the managed user account and disable any parental controls that might be interferring, I try again and it worked. I need the mac app store to work under the managed user with parental controls on. I cleared the iTunes store cache and reset the warnings just to see if that might do the trick but no luck. When the latest update was availble I updated immediatly in hopes of that might fixing the problem but again it did not work.  I would really appreciate if anyone had any ideas on how to help solve this issue.
  -Thanks

  Back up all data before proceeding.
  Step 1
  Triple-click anywhere in the line below on this page to select it:
  /Library/Preferences/SystemConfiguration/NetworkInterfaces.plist
  Right-click or control-click the line and select
            Services ▹ Reveal in Finder (or just Reveal)
  from the contextual menu.* A folder should open with an item selected. Move the selected item to the Trash. You may be prompted for your administrator login password. Restart the computer and test.
  *If you don't see the contextual menu item, copy the selected text to the Clipboard by pressing the key combination  command-C. In the Finder, select
            Go ▹ Go to Folder...
  from the menu bar and paste into the box that opens by pressing command-V. You won't see what you pasted because a line break is included. Press return.
  Log out, log back in, and test. If there's no improvement, continue.
  Step 2
  Reset your computer’s PRAM.

• How do you reset or find your security question answers? I dont have the option to send a rescue email in manage your account, and i cant find a fix! I have tried so many things.!! Help this is annoying because i cant get anything from the appstore

  I. Forgot the answers to my apple id security questions. I cant buy anything from the app store. I have tried manage your account and tried to send a rescue email but i dont have the option. This is so annoying and i have tried many things, help!

  Have you tried contacting the owner of the iPhone?

• Standard Versus Managed User Accounts

  Simple question -
  What is the difference between a Standard and a Managed user account? Essentially, I would like to set up an user account that has all the functionality but does not have the ability to install software or applications - similar to how one can set up a Limited user account in Windows.

  No worries. Figured this one on my own. Setting Parental Controls created the "Managed" user account. Also, setting the options within the Parental Controls section allowed for me to prevent installation of applications since the Application folder cannot be modified.

• Managed user account can't be accessed thru admin account

  In trying to get a handle on my 14 year old son's computer habits I established myself with an administrator account and his user account is managed by me through parental controls.
  When in my Admin account I go through System Preferences> Accounts. My son's account (and mine) appear on the left however I cannot get into his account. I created a test user and it does allow me to enter into it to create parental controls.

  Is the son's account logged out? Parental controls can't be applied to an account that is logged in.

• Managing users, groups and shares with Mavervicks server

  I recently upgraded from Snow Leopard Server to Mavericks.
  In Snow Leopard, WorkGroup manager was the primary way to create shares, users and groups. Now it would seem that it is optional and in fact, I do not even see how to create a share in WorkGroup except for perhaps a group share which I'm not quite sure how to do.
  For my setup, I have setup Open Directory and create a few Local Network users. DHCP is managed via my airport and the DNS is on but only for server and points to my Airport IP address.
  QUESTIONS:
  Should I be managing users with WorkGroup manager or server app, Whats the advantage? 
  I don't have user profiles (files) stored on the server they are local. That being the case, why does each user have a network folder on the server?
  Thanks!

  Workgroup Manager and MCX are deprecated.  These technologies should only be used if you can not accomplish your tasks with Server.app and Profile Manager.  If you have specific requirements that can not be satisfied in Server.app and Profile Manager you should send feedback to Apple.
  So to your questions:
  Should I be managing users with WorkGroup manager or server app, Whats the advantage?
  I don't have user profiles (files) stored on the server they are local. That being the case, why does each user have a network folder on the server?
  1:  Ideally, no.  Unless...  You are supporting machines prior to 10.8.5 or can not find an equivalent function in Server.app and Profile Manager.  There is no advantage to using it.  Apple will eventually stop distributing it.  It is available now for legacy support only.  If you have a need for MCX management then WGM remains viable.  But, ideally, you should be looking to Profile Manager.
  2:  This is because you created your accounts using Local Home Folder template instead of None - Services Only.  The Local Home Folder template has the unfortunate side-effect of creating a user home folder on the server.  I too dislike this.  If you only want to use the accounts for services, then you should create the accounts using None - Services Only.  By the way, it is safe to delete these home folders if you would like.
  Reid
  Apple Consultants Network
  Apple Professional Services
  Author "Mavericks Server – Foundation Services" :: Exclusively available in Apple's iBooks Store

• Safari can't establish secure connection in parental controls managed user account

  Hi,
  Safari can't establish any secure connection in parental controls managed user account. Normal web sites open OK, but secure connections, like Gmail which requires https doesn't work. This is what I get instead:
  Safari can’t open the page “https://www.google.com/accounts/ServiceLogin?service=mail&passive=true&rm=false& continue=http%3A%2F%2Fmail.google.com%2Fmail%2F%3Fui%3Dhtml%26zy%3Dl&bsv=llya694 le36z&scc=1&ltmpl=default&ltmplcache=2&from=login” because Safari can’t establish a secure connection to the server “www.google.com”.
  Any ideas how to overcome this?

  Do you have anti virus software installed, or Peer Guardian?
  "https note: For websites that use SSL encryption (the URL will usually begin with https), the Internet content filter is unable to examine the encrypted content of the page. For this reason, encrypted websites must be explicitly allowed using the Always Allow list. Encrypted websites that are not on the Always Allow list will be blocked by the automatic Internet content filter."
  From here:  
  Mac OS X v10.5, 10.6: About the Parental Controls Internet content filter

• How do I find out and manage which devices I installed Adobe Creative Suite on?

  I need to activate Adobe Creative Suite on a second computer, but a window comes up saying that I already have installed Creative Suite on a maximumo of 2 computers. I know that I can only download on 2 computers, but I have no idea where I downloaded it the second time. I need to find that device and deactivate it so that I can use my real 2nd computer.
  So, how do I find out and manage which devices I installed Adobe Creative Suite on?
  And if I deactivate it, can I activate my 2nd computer?

  Yes the End User License Agreement is the same for the Student and Teacher edition.  You can find more details at http://www.adobe.com/products/eulas/#desktop.

• Managing User Accounts

  Hi,
  I am reviewing current security policies in my organisation.
  Developers currently log on to schemas using the same username and password and don't have individual accounts.
  These accounts were created during an initially open policy but I have pared this back to least privilege.
  Is it enough to use these single accounts with least privilege or should I set up individual user accounts for each developer and then use roles to manage collaboration? My understanding is that individual accounts best serve auditing but when I audit I can still see the osuser (we all have our own machines).
  What way are other DBA's managing user accounts?

  This approach I follow most of the time. I find it a reasonable balance of flexibility for developers and quality control for me.
  For an application (data-owning) schema, I am OK with developers having that account's password in a development database, and working directly in it. They are responsible for keeping track of what changes they make, and coordinating with each other. I maintain a different password for the application schema in each environment. In other test environments, and in production, the password for that schema is not given to them, so any changes must be scripted and applied in a controlled manner, ensuring everything needed to deploy a change is in place early in the life cycle. In those controlled environments, developers' personal IDs may have read access to the data in the application schema, so they can research and troubleshoot as needed.

• HT4796 I used migration to transfer iTunes from pc to mac book. It had me set up another user account. Now i have 2 user accounts and i have the iTunes on the wrong one. How do i get the iTunes on the original account.

  I used migration to transfer iTunes from pc to mac book. It had me set up another user account. Now i have 2 user accounts and i have the iTunes on the wrong one. How do i get the iTunes on the original account.

  In Mail Preferences/Accounts/each GMail account, set up the SMTP Outgoing Server for each account separately, going into SMTP name/edit/Advanced and specify the Username of each account.  The Outgoing servers must be two different servers, authenticated by the Username and Password of each.
  Otherwise, the GMail SMTP server will change the from address to that of the account where the SMTP server was setup.
  Ernie

• How can I find the user that created a user account and the user who last updated the account

  How can I find out who created a user account and who last updated the account. I think that this is the same information that is displayed in the description field on the General tab.
  I am using ADO commands and vbscript
  ug3j

  I should point out that there are two attributes of all AD objects that can help you track down the correct information in the system logs. These are the whenCreated and whenChanged attributes. This will tell when the object was created and when it was last
  modified, which should help when you search the logs. Also, while whenCreated is replicated to all DC's, so they will all have the exact same creation time, the whenChanged attribute is technically not replicated. The date/time on each DC reflects when
  the last modification was replicated to that DC. The values will differ slightly on each DC, reflecting how long it took for the change to replicate.
  Richard Mueller - MVP Directory Services