Skip to main content
Jamf Nation, hosted by Jamf, is a dynamic and knowledgeable community of Apple-focused IT admins and Jamf Pro users. Join us in person, in October, for the annual Jamf Nation User Conference (JNUC) to discover new and better ways to manage Apple devices.

limitSSHScope.sh -- Limit access to SSH to a single account

Synopsis

sudo limitSSHScope.sh
sudo limitSSHScope.sh <mountPoint> <computerName> <currentUsername> <targetUsername>

If the $targetUsername parameter is specified (parameter 4), this is the account that will be granted access to SSH.

If no parameter is specified for parameter 4, the hardcoded value in the script will be used.

Description

This script grants SSH access to an individual account on computers running Mac OS X 10.5 and later. It can be used with a hardcoded value in the script, or read in as a parameter. Since the Casper Suite defines the first three parameters as (1) Mount Point, (2) Computer Name and (3) username, we are using the forth parameter ($4) as the passable parameter. We do not use $3 since it may not match up to the username that we want to grant access for.

Download

Preview

Generating Preview...