accountId

accountId

Required. The user’s login name. 

Description

comment

The user’s full name. 

Home directory

dir

The user’s home directory. Any value specified in this account attribute takes precedence over a value specified in the Home Base Directory resource attribute.

Expiration date

expire

Last date the account can be accessed. This attribute is not supported for NIS accounts. 

Primary group

group

The user’s primary group. 

Inactive

inactive

Number of days the account can be inactive before it is locked. Not supported for NIS accounts. 

Secondary groups

secondary_group

A comma-separated list of the user’s secondary group or groups. 

To enable a role to provision this attribute, you must add ’csv=true’ to the RoleAttribute element in the Role object XML.

Login shell

shell

The user’s login shell. 

If you are provisioning to an NIS master, the value of the user shell will be checked on the NIS master only. Checks against other machines the user may log on to will not be performed. 

Last login time

time_last_login

The date and time of the last login. This value is read-only. 

User ID

uid

The user ID, in digit form. 

Authorizations

authorization

A comma-separated list of authorizations. 

Profiles

profile

A comma-separated list of profiles. 

Roles

role

A comma-separated list of roles. 

expirePassword

force_change

Forces the user to supply a new password upon login. This attribute is not listed in the schema map by default.