9.0 Account Configuration

This page provides information about configuring the administrator and primary user accounts created on Mac devices during the DEP enrollment.

NOTE:

  • It is mandatory to create at least one administrator account when configuring Mac MDM. The administrator account is used to manage the device and its settings.

  • If both the administrator and the primary user accounts are not configured, then the user will be prompted to create an administrator account.

  • It is recommended to configure a unique primary user account against each discovered device as this name is used to configure the hostname of the device.

Table 9-1

Setting

Description

Create Admin Account

Select Yes to create an administrator account on the macOS device.

Hide Account from end user

Select Yes to hide the admin account on the macOS device to non-administrator accounts. Hidden accounts are not visible in the Login Window to end-users.

Select Noto make the admin account visible when a user logs in.

Admin Account Display Name

Enter the full name for the admin account. This name is displayed when logging on to the device.

Admin Account Short Name

Enter the short name for the admin account. The short name is used to create the user's Home folder.

Admin Account Password

Specify the password for the admin account. The admin account password should not be more than 80 characters.

Primary User Account

The primary user account provides access to a local user on the macOS device.

Choose any of the following options:

  • Don’t create the account: Select this option if you do not want to create a primary user account.

  • Create as Local User: Select this option to create a local user account. This option is displayed only when the Create Admin Account is set to Yes.

  • Create as Local Admin: Select this option to create an account for the primary user with administrator privileges.

User Information

Choose any of the following options:

  • Not pre-populated: The end user should specify the display name, short name, and password. The values are not pre-populated.

  • Pre-populated and Editable by end user: The display name and short name is displayed, and the end user can modify the details if required.

  • Pre-populated and non-Editable by end user:The primary user account is created with the specified User Account Display Name, User Account Short Name, and User Account Password. The end user cannot modify these values.

  • Pre-populated, Non-editable and Reserved for end user: Only the Reserved user of the discovered device can configure the User Account Display Name and User Account Short Name. The reserved user's full name is used as display name and Reserved user's login name is used as short name.

    NOTE:Ensure that the Reserved User is available for the DEP device. If the Reserved user is not available, account configuration will fail.

User Account Display Name

Enter the full name for the primary account. This name is displayed when logging on to the device.

User Account Short Name

Enter the short name for the primary account. The short name is used to create the user's Home folder.

User Account Short Name

Specify the password for the primary account. The primary account password should not be more than 80 characters.