Connect
Ask Community
Ask the community
Ask Community

Create macOS Admin userSolved

Profile photo of jonathon
jonathon
Participant
Discussion
Hexnode UEM
1 year ago
Save Saved
Copy link
Report

Hi,
I have seen a few posts around this subject but not really seen an answer for my scenario.

I have a mix of DEP deployed Mac’s and manually enrolled ones. They all have Filevault enabled. For the DEP ones there is a policy which creates the user account. This is an Admin account for the user and uses the %username% variable. We have a default password which the user then changes once they have logged in for the first time.

Now, I want to create an Admin account which will allow us to reset local passwords, because the Local Accounts section will not allow this. If I try and create a new local account it needs the admin credentials for the machine to do this and I’m not about to do this manually for 100+ machines and ask the users for their local passwords, obviously.

So, how can it be done?

Thanks

0 Upvotes
425 Views

Tags

macOS (279)
Reply

Replies (3)

Oldest First
Oldest First
Newest First
Most Upvoted First
Marked SolutionPending Review
Profile photo of audrey-black Hexnode Expert image
audrey-black
Hexnode Expert
1 year ago
Marked SolutionPending Review
Copy link
Report

Hey @Jonathon, thank you for reaching out to us!

Have you tried the Create User Account action? If you haven’t, you can follow these simple steps to create a local admin account on macOS devices.

Step 1: Head on to Manage > Devices and filter out the devices by platform. (The create user action works only on macOS devices.)

Step 2: Now bulk select all your devices.

Step 3: And hit Actions > Create User Account.

Step 4: Fill out all the required fields. Don’t forget to choose Administrator as the Account Type!

Step 5: Uncheck the Grant Secure Token field, and this will exempt you from requiring the admin credentials while creating a new user account.

And if you wish to keep a low profile, simply check the Hide account from Login Window and Users & Groups field. This will keep the account hidden from plain sight. When you wish to log in using this account, choose Other at the login screen, to enter your username and password.

Hope that solved your query.

Best Regards,
Audrey Black
Hexnode UEM

0 Upvotes
Reply
Marked SolutionPending Review
Profile photo of jonathon Novice image
jonathon
Participant
1 year ago
Marked SolutionPending Review
Copy link
Report

I feel like such an idiot. It didn’t occur to me to deselect the Grant Secure token ?‍♂️
Thank you ?

1 Upvotes
Reply
Marked SolutionPending Review
Profile photo of audrey-black Hexnode Expert image
audrey-black
Hexnode Expert
1 year ago
Marked SolutionPending Review
Copy link
Report

No worries! It happens to all of us 😉

I’m just glad to be of help.

0 Upvotes
Reply
Load more
Related Topics

Leaderboard

Profile photo of yuudai Veteran image
yuudai
365 pts
Profile photo of aakash-shah Veteran image
aakash-shah
344 pts
Profile photo of kipp Veteran image
kipp
340 pts
Profile photo of tommy Veteran image
tommy
340 pts
Profile photo of pauel Veteran image
pauel
320 pts
View all

Popular Tags

ABM (25)
Android (284)
iOS (230)
macOS (279)
Windows (156)
Apple TV (15)
App Management (249)
Enrollment (53)
Location (20)
Kiosk (147)
Scripts (60)
DEP (30)
OS Updates (55)
Android Enterprise (67)
View all