Account Expiry
Hi there,
I work at a college as the Mac Support Speciallist. We have an OS X server that is integrated with our Active Directory setup. The Library Macs are tied to this server so students can log in with their active directory accounts. This was all set up by my predecessor so I am trying to make sense of everything here so bear with me... it looks like he had configured the server to have accounts be mobile, and expire after 24 hours (meaning the local home folder would be deleted after that time). However, my research indicates that this will not work when using active directory accounts. And as a matter of fact, everyone here was under the impression that it WAS auto deleting the accounts, although all of the Macs have like 400 accounts on them now, apparently over the course of a year since the server was set up.
So my question is this: Is there a way to have the accounts delete on their own? We want the luxury of the students being able to login with their network credentials, but it isn't super important for them to store information for a long duration of time on the library computers, so having them expire/delete is fine even though it is not being synced to a server somewhere. The only option I can think of is to write a startup script to delete the accounts and have the machine auto restart at like 3 AM so it runs everyday. Any other ideas would be much appreciated!