Mailing Lists: Apple Mailing Lists
Image of Mac OS face in stamp
 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Diradmin logging in as a user

Hi David,

Welcome back :-).

On 18 Jul 2006, at 21:01, David Buck wrote:

I'm new to the list (well, returning from a long absence) so sorry if this has been discussed recently, though I checked the archives.

Why exactly is there no masquerading function to allow a diradmin to log in as a managed user. I know there is an AFP masquerading function but it would be useful to have the same functionality via a checkbox in WGM.

FWIW, I long ago accepted this change and moved on after switching from Macintosh Manager x years ago. Right now I could do with a good reason to pass on to someone who the lack of masqueraging is dumb.

I guess the obvious reason is that OS X is designed for heterogeneous environments. Since the masquerading would need to be respected by all authentication mechanisms involved, it becomes impossible in anything other than a pure OD setup. How would you masquerade as a user logging in to an Active Directory, with 801.x wireless, for example?

If you are in a pure OD environment, some of the functionality you might want can be obtained by temporarily replacing the user's AuthAuthority with that of a user with a known password, but i wouldn't bother myself. I haven't seen an scenario where this is ever really necessary.




matt jenns



Thanks,

David. 


_______________________________________________
Do not post admin requests to the list. They will be ignored.
Client-management mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/client-management/email@hidden

This email sent to email@hidden
References: 
 >Diradmin logging in as a user (From: David Buck <email@hidden>)



Visit the Apple Store online or at retail locations.
1-800-MY-APPLE

Contact Apple | Terms of Use | Privacy Policy

Copyright © 2007 Apple Inc. All rights reserved.