Directory server external commands
How does one get password server to launch external commands in 10.9 ?
In 10.6, you used to be able to configure the passwordserver.plist file to run external commands each time a password was changed. In 10.7 and 10.8, this was also possible however the configuration had migrated an LDAP node under cn=config.
As of 10.9, however, I can't seem to figure out how to get this working. The configuration key wasn't present in the LDAP directory and re-creating it based off of information from a 10.8 directory server hasn't helped.
If anyone has a clue, I'd me most appreciative. Or perhaps some hidden Apple documentation would be awesome as well.
Our use case for this is pretty simple ... We've a Linux box running Google Directory Sync ( GADS ) which polls OpenDirectory and uses the information contained to create Google accounts or synchronize Google passwords to those we have in OD. To do this, however, the externalcommand is required so that we can add a hashed password in an OpenDirectory LDAP key. Otherwise, the sync tool would have no access to a password hash for the user.
Regards,
- Jonathan.
OS X Mavericks (10.9)