Final Legacy Version

I know we didn't make it to version 1.0.0 but that is more in part to there now being a Swift version for macOS 10.10+. This version will live on as a legacy version for older versions of macOS

New Features

New in this release you can now specify if you'd like to remove the local administrator's keychain (recommended) as you won't know the old keychain password. You can also specify in a string any characters that you would like to exclude from the random password that is generated. Example '<>'.

Correct setting a default expiration if value is blank in AD

Thanks to @rustymyers, we were able to determine that the default expiration time was not being set if there was no value in Active Directory. This release corrects that issue and should now set a default value of 01/01/2001.

Code Rewrite - Use Open Directory instead of dscl

With this release, I have switched to using Open Directory in Python and removed the dependency for subprocess calling the dscl utility. Feedback is always welcome.

Initial Release

This is the initial release of macOSLAPS as an installable package. The package was built using Packages for macOS. Three files will be installed on the system:

macOSLAPS - Located in /usr/local/laps
edu.psu.macOSLAPS-check.plist - LaunchDaemon located in /Library/LaunchDaemons
laps - To add the executable to path (Located in /etc/paths.d)

To configure macOSLAPS to use different values you can configure /Library/Preferences/edu.psu.macOSLAPS.plist or you can use your MDM. Configure the following values:

LocalAdminAccount - Your local admin account (Default is 'admin')
DaysTillExpiration - How many days till the password expires (Default is 30)
PasswordLength - How long you want the random password to be (Default is 8)

Feedback is very welcome. Please test and let me know the results.