ansaurus

Question

Running script with admin permissions on OS X

Answer 1

A:

I don't have a mac handy so I can't verify if this would work.

Try running su -

Then running your script. If that works, try crontab -e

and adding an entry to run that script of yours.

Are you familiar with crontab? well if not google it if need be. But basically to run it every day at midnight you'd have something like 0 * * * * /path/to/script

See: http://en.wikipedia.org/wiki/Cron

Matt H 2009-09-03 02:13:43

Could you construct your answer better? I'm not sure what "su -" is. Is that just sudo for short?

ScottN 2009-09-03 02:16:03

su is short for "substitute user". It allows you to log in as root from a Terminal.

Quartz 2009-09-03 02:25:23

Answer 2

+3 A:

To perform a shell script with sudo or administrator privileges append with administrator privileges to the end of your do shell script line. For example:

do shell script "/path/to/script/file.sh" user name "adminusershortname" password "password" with administrator privileges

You can find more on Apple's technote dealing with do shell script

That said, saving this as a shell script and running the shell script using sudo would work just as well.

#! /bin/sh

for cuser in `/usr/bin/dscl . -list /Users AuthenticationAuthority | grep LocalCachedUser | awk '{print $1}' | tr '/n' ' '`; do
    /usr/bin/dscl . -delete /Users/$cuser
done

Save it as say removeUser.sh, use chmod to set it as executable (chmod 755) and then run it (sudo ./removeUser.sh)

Chealion 2009-09-03 02:20:09

I tried running it in an apple script, but now I get a whole bunch of "delete: Invalid Path", which I assume is for each user it is attempting to delete. The AppleScript file is on the desktop. Does it need to be some other place? Do I need to give the delete command a more valid path?

ScottN 2009-09-03 02:59:58

I removed the "| tr '/n' ' '" from the command as running the list command in Terminal was printing the users very weird. But now I have another problem. When I ran the AppleScript the first time and I didn't get an error, I assumed it worked. Checking the accounts list in system preferences still lists the users, so the delete didn't remove the user accounts completely from the system. But if I run the list command again, no users are printed in the Terminal window, so now the script has nothing to run. What am I doing wrong now? Is the "dscl . -delete" command do the same thing as GUI?

ScottN 2009-09-03 03:26:29

Ok, They were still showing up in system preferences until I rebooted the system, then they were no longer there. I did have to manually remove the user folders. But that requires only a few clicks. I might be satisfied with this. It would be nice to remove the users folder at the same time.

ScottN 2009-09-03 03:40:49

I added "" to the script and it removed the users folder at the same time. Works great, just how I wanted!

ScottN 2009-09-03 03:49:30

Sorry, forgot to paste, I added "rm -rf /Users/$cuser" to the script, after dscl command.

ScottN 2009-09-03 03:50:44

Answer 3

A:

You can do this by editing your system's sudoers file. This will allow the account you use to run this script (via cron, etc.) the ability to run sudo without a password.

To edit the sudoers file you use visudo, but it must be run with admin permission. Try:

$ sudo visudo

Add a line like the following to the end of the file, replacing user_name with the user who will run your script. Note, use tabs between each field.

user_name    ALL=(ALL)     NOPASSWD:ALL

Now user_name should be able to type sudo and will not be prompted for a password.

Also note that visudo is a text editor that mirrors the vi editor and uses the same commands as vi.

jdl2003 2009-09-03 02:24:09

ansaurus

tags:

views:

answers:

Running script with admin permissions on OS X

related questions