In Server Admin, under the Open Directory service you can archive your LDAP, which does preserve passwords but saves them to an encrypted disk image. I don’t know of anything off hand that will output a password into plain text, that would defeat certain security aspects I am sure.

What is it exactly you need help to accomplish?

[QUOTE][u]Quote by: jeffh[/u][p]Too many students never remember the passwords that you give them and if they create their own, they don’t remember that either and then I or the teacher does not know what it is so there is too much time wasted. I want to print out a list of users and their username and password so the teacher has a list for each class.[/p][/QUOTE]

Jeff, if you are using 10.5 Server then comments and keywords are your best friend for this. For example, when I want to import user accounts into OD I have someone in enrollment send me a spread sheet of every student in the district that will log into my LDAP. Which is only middle and high schools, the elementary and other schools don’t tie into my directory. I have them send me a spread sheet of every students first name, last name, graduation year, building they go to school at, and their 6 digit date of birth. I then create import files off that spread sheet to do the following:

Full Name = First + last

short name = grad year + part of first name + part of last name

password = 6 digit date of birth

Comment = building and grade

Keyword = 6 digit date of birth

So I can see their password in WGM under their account, under the advanced tab in keywords. Their birth date is their password so they should never forget it and since I work in 1:1 Macbook deployment and kids take their laptops home, we need to ensure parent’s can access the student machines whenever they want. So that is why we use their 6 digit birth date as their password. I know it is not the most secure way, but if students set their own passwords they would definitely try to lock their parents out of their laptops.

Comments and Keywords in WGM can be your best friend when it comes to information like that. Then only people who have access to WGM can look that stuff up. Plus if you have the original spread sheets you can parse the data from there and compile it into reports and what not.

Now for faculty and staff they can set their own passwords so I just have to reset it when they forget it, and they hate the 90 day policy to change passwords, but we need their machines to be a bit more secure than the student machines.

[QUOTE][u]Quote by: jeffh[/u][p]I used passenger to import my users from a tab delimited file, but there were duplicates when creating the user name since I used the first initial and last name. In passenger, I set the parameter to append a number and that is the other thing I wanted printed out. It is too bad that WGM can’t export in a “readable” format.[/p][/QUOTE]

You can get a list of user names by using the dscl command, for example:

[code]

dscl . list /Users

[/code]

You would need to do this into your LDAP and you may need to point dscl to the path of your LDAP to get a full list. You could then pipe it out to text files if you wanted to. You could even go further and do it through a UniqueID range, since Open Directory users are typically UID 1000 and greater, thus leaving out all the local users accounts that are n the systems.