-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathedu.psu.macoslaps.json
224 lines (224 loc) · 5.51 KB
/
edu.psu.macoslaps.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
{
"title": "macOSLAPS Settings",
"description": "Preference Domain: edu.psu.macoslaps",
"__version": "3.0.4",
"__feedback": "josh.miller@outlook.com",
"type": "object",
"options": {
"remove_empty_properties": true
},
"definitions": {
"policy_group": {
"type": "object",
"format": "grid",
"options": {
"collapsed": true,
"disable_properties": true
}
}
},
"properties": {
"LocalAdminAccount": {
"title": "Local Administrator Account",
"description": "The account name of the local administrator account you would like to use with LAPS",
"propertyOrder": 10,
"anyOf": [{
"type": "null",
"title": "Not Configured"
},
{
"title": "Configured",
"type": "string"
}],
"default": "admin"
},
"DaysTillExpiration": {
"title": "Days till Expiration of LAPS Password",
"description": "The amount of time in days until the password is expired and will change on a check-in (Default is 60 days)",
"propertyOrder": 20,
"anyOf": [{
"type": "null",
"title": "Not Configured"
},
{
"title": "Configured",
"type": "integer"
}],
"default": 60
},
"PasswordLength": {
"title": "Length of the generated Password",
"description": "How long the generated password will be (Default is 12 characters)",
"propertyOrder": 30,
"anyOf": [{
"type": "null",
"title": "Not Configured"
},
{
"title": "Configured",
"type": "integer"
}],
"default": 12
},
"PasswordGrouping": {
"title": "Length of each group of characters in password.",
"description": "Like Safari Style passwords, you can specify how many characters are used between each of the separators",
"propertyOrder": 40,
"anyOf": [{
"type": "null",
"title": "Not Configured"
},
{
"title": "Configured",
"type": "integer"
}],
"default": 0
},
"PasswordSeparator": {
"title": "Password Separator to use",
"description": "Sepcify what string character you would like to use to sepearte each character group of passwords. Safari default and macOSLAPS defaults is -",
"propertyOrder": 50,
"anyOf": [{
"type": "null",
"title": "Not Configured"
},
{
"title": "Configured",
"type": "string"
}],
"default": "-"
},
"RemoveKeychain": {
"title": "Remove the keychain for the local administrator",
"description": "If set to Yes, the keychain for the local adminsitrator will be deleted once the password has been changed (Default is Yes)",
"propertyOrder": 60,
"anyOf": [{
"type": "null",
"title": "Not Configured"
},
{
"title": "Configured",
"type": "boolean"
}],
"default": true,
"enum": [false, true],
"options": {
"enum_titles": ["No", "Yes"]
}
},
"RemovePassChars": {
"title": "Remove these characters from the generated password",
"description": "Any characters defined in this field will be removed from any generated password",
"propertyOrder": 70,
"anyOf": [{
"type": "null",
"title": "Not Configured"
},
{
"title": "Configured",
"type": "string"
}]
},
"ExclusionSets": {
"title": "Sets of characters to exclude",
"description": "Any options defined here will remove that entire set of charcters from any generated password",
"propertyOrder": 80,
"anyOf": [{
"type": "null",
"title": "Not Configured"
},
{
"title": "Configured",
"type": "array",
"items": {
"type": "string",
"enum": ["letters", "numbers", "symbols"],
"options": {
"enum_titles": ["Letters", "Numbers", "Symbols"]
}
},
"minItems": 1,
"maxItems": 3
}]
},
"PreferredDC": {
"title": "Preferred Domain Controller",
"description": "If defined, this server will be used when performing password changes. Useful when you have RODC (Read Only Domain Controllers)",
"propertyOrder": 90,
"anyOf": [{
"type": "null",
"title": "Not Configured"
},
{
"title": "Configured",
"type": "string"
}]
},
"FirstPass": {
"title": "First Password",
"description": "Enter the password intially set to your administrator account that you want to use with LAPS that was created with a secureToken",
"propertyOrder": 100,
"anyOf": [{
"type": "null",
"title": "Not Configured"
},
{
"title": "Configured",
"type": "string"
}]
},
"Method": {
"title": "Method",
"description": "Select the preferred method to utilize macOSLAPS",
"propertyOrder": 110,
"anyOf": [{
"type": "null",
"title": "Not Configured"
},
{
"title": "Configured",
"type": "string"
}],
"default": "AD",
"enum": ["AD", "Local"],
"options": {
"enum_titles": ["Active Directory", "Local"]
}
},
"PasswordRequirements": {
"title": "Password Requirements",
"description": "Specify in a dictionary what requirements you would like the password to have",
"propertyOrder": 120,
"anyOf": [{
"type": "null",
"title": "Not Configured"
},
{
"title": "Configured",
"type": "object",
"properties": {
"Lowercase": {
"type": "integer",
"title": "Lowercase Letters",
"description": "Amount of Lowercase Letters"
},
"Uppercase": {
"type": "integer",
"title": "Uppercase Letters",
"description": "Amount of Uppercase Letters"
},
"Number": {
"type": "integer",
"title": "Numbers",
"description": "Amount of Numbers"
},
"Symbol": {
"type": "integer",
"title": "Symbols",
"description": "Amount of Symbols"
}
}
}]
}
}
}