: Centrify Identity Service, Mac EditionQuestion:
Can an administrator convert a Network/Managed user profile to a local user profile after unbinding a Mac computer from Active Directory and uninstalling Centrify?Answer:
Yes. After unbinding a Mac from Active Directory and uninstalling Centrify, an administrator may perform the following steps to convert the network user profile to a local user profile. Following this process will retain the user profile and all data/settings.Note:
If FileVault is in use on the Mac computer, the administrator should first disable FileVault and decrypt the disk before performing the below steps.How to convert a Managed Mobile network user profile to a local user profile:
1. Log in to the Mac as local admin and navigate to System Preferences > Users and Groups
2. Unlock the padlock and highlight the desired user account (example: Mobile User, Managed, Mobile) and then click the "-" to delete.
3. When prompted what to do with the current profile, select "Don't change the home folder" (middle option) and proceed.
4. Next, in Spot Light
, look for /Users/
and it will load the User profile folders, The User we just deleted should show '(Deleted)' after the Username now. (ie. "Mobile User (Deleted)" )
5. Right click and rename to the exact username that will be used moving forward. (ie change 'Mobile User (Deleted)' to show only 'Mobile User')
6. Now go back to "Users and Groups" and click the '+' to create a new User. Be sure the "Account Name" matches the spelling used in the profile after "(Deleted)" was removed.
7. When prompted, please select to "Use Existing folder"
8. Log in as the new local User, and if prompted, select to update Keychain. You will need the old AD password for this one last time. After, it will be updated with your new local user.How to convert Managed (non-Mobile) network user profile to a local user profile:
1. Log in as local admin>Go to "System Preferences>Users and Groups"
2. Unlock the padlock, and then click the '+' to add a new User.*The Account Name MUST be identical to the former Network Username in order to take back the associated Network User Home profile.
3. To confirm,
in Spot Light
, look for /Users/
and it will load the User profile folders, Match the Account Name to the name of the profile folder.
4. When prompted that an identical profile already exists, please select to "Use Existing Folder"
5. Log in as the new local User, and if prompted, select to update Keychain. You will need the old AD password for this one last time. After, it will be updated with your new local user.
*If an error is shown regarding conflicting UID, please refer to the following article for additional steps: KB-2940: Creating a new local account after doing an Account Migration may create a conflicting local UIDFor additional information not covered in this guide or troubleshooting assistance, please review Centrify Online Help or visit the Customer Support Portal at https://www.centrify.com/support/customer-support-portal/