#!/bin/bash### Script to detect if a user is a member of the admin group.

1. #!/bin/bash
2. #
3. #
4. # Script to detect if a user is a member of the admin group. If not, and they are not a student, it will add them.
5. # LoginHook passes the current username as $1
6. #
7.  
8.  
9. # Check if user is already an admin
10. IsAdmin=$(dseditgroup -o checkmember -n . -u $1 admin)
11.  
12. # echo "$IsAdmin"
13. if [[ $IsAdmin == yes* ]]
14. then
15. # echo "No further action needed"
16. exit
17. else
18. # Domain Admin Member Check
19. DAmember=$(dseditgroup -n /Active\ Directory/DOMAIN/DOMAIN.local -o checkmember -u $1 Domain\ Admins)
20. # All Administrative Staff
21. AAmember=$(dseditgroup -n /Active\ Directory/DOMAIN/DOMAIN.local -o checkmember -u $1 AdminGroup1)
22. # All Teacher Member Check
23. ATmember=$(dseditgroup -n /Active\ Directory/DOMAIN/DOMAIN.local -o checkmember -u $1 AdminGroup2)
24. # All Office Member Check
25. AOmember=$(dseditgroup -n /Active\ Directory/DOMAIN/DOMAIN.local -o checkmember -u $1 AdminGroup3)
26.  
27.  
28. # Adds to local admin if user is a member of Domain Admins, LISD Administrative Staff, LISD All Teacher, or LISD All Office groups
29. if [[ $DAmember == yes* ]] || [[ $AAmember == yes* ]] || [[ $ATmember == yes* ]] || [[ $AOmember == yes* ]]
30. then
31. # echo "User is a member of Domain Admins, All Administrative Staff, All Teachers, or All Office."
32. sudo dscl . append /Groups/admin GroupMembership $1
33. fi
34.  
35. fi
36.  
37. exit