AppleScript or Terminal Command to allow Managed Users to use new App

actorguy1 · March 7, 2007, 2:05pm

Hi all… I am not sure where to ask this question. I have searched high and low for something about this issue but can’t seem to find a solution. Here is the overview and my question.

Is there a terminal command or AppleScript command that I can issue to a machine that has Managed users that will allow me to to a “Allow All” or Allow a particular newly installed application. Basically, I want to script the System Preferences to go to a managed user account, then to Parental controls and then allow all or allow and application that we just installed via Apple Remote Desktop or FileWave.

Here is our set up so hopefully this will make my request clear.

I administer about 300 Macs at our company. We have Admin accounts on each machine and each user has their own Managed account. We do this so they can’t download and install software or run unapproved apps. This works well for us.

We distribute software via FileWave and occasionally via Apple Remote Desktop packages. Again, this works well. However, the users under managed accounts can’t run the newly pushed software until we log into the machine as an admin and “allow” the new software to run. Otherwise the user gets the “You do not have permission to open the application ‘XX’. Contact your network administrator or the person who administers your computer for assistance.” message.

Is there a terminal command (or Applescript command) that we can run that would “Allow All” or allow the specific app we just installed to be authorized?

Also on the same topic, is there a terminal command (or AppleScript) to add the application to the dock AND is there one to remove an application from the dock that we have removed remotely or via FileWave?

This would really help make our software distribution completely automated.

I have been asking for an OS X server to handle the “authorized apps” but all of our servers here are Windows and I have not been able to get past that battle.

I do use terminal for daily tasks but I only know the commands I find or have had given to me so I apologize for my lack of knowledge in this area. Also, I am an AppleScript novice but am usually pretty good at eventually figuring out what I need to do. this one however has stumped me.

Any help would be greatly appreciated.

James_Nierodzik · March 7, 2007, 2:09pm

I know you just covered this, but I can’t stress enough how much you NEED to get server running somewhere in there and run open directory… If they expect you to manage 300 machines you need the right tools… Hell even if it’s a copy of server running on a desktop.

That said I’m sorry to say I don’t have anything overly productive to add to this… I’m sure there is some way to do this, but off the top of my head I couldn’t begin to tell you.

Sorry man, I feel for ya.

Mikey-San · March 7, 2007, 3:40pm

Agreeing 100% here with putting pressure on the right people to get you running Server and OD.

In the meantime, would an ACL setup be a stopgap solution?