From 88a380c8f00e97119f10879d36324a0324eefe4e Mon Sep 17 00:00:00 2001 From: Sviatoslav Sydorenko Date: Thu, 6 Apr 2023 19:08:24 +0200 Subject: [PATCH] =?UTF-8?q?=F0=9F=93=9D=20Document=20macOS=20user=20deleti?= =?UTF-8?q?on=20over=20SSH=20(#80358)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Co-authored-by: Matt Clay Co-authored-by: Don Naro --- docs/docsite/rst/reference_appendices/faq.rst | 23 +++++++++++++++++-- lib/ansible/modules/user.py | 2 ++ 2 files changed, 23 insertions(+), 2 deletions(-) diff --git a/docs/docsite/rst/reference_appendices/faq.rst b/docs/docsite/rst/reference_appendices/faq.rst index d81ec0d0bd5..49bf7453841 100644 --- a/docs/docsite/rst/reference_appendices/faq.rst +++ b/docs/docsite/rst/reference_appendices/faq.rst @@ -245,8 +245,8 @@ need to install them into the virtualenv. There are two methods: $ cp -v /usr/lib64/python3.*/site-packages/*selinux*.so ./py3-ansible/lib64/python3.*/site-packages/ -Running on macOS ----------------- +Running on macOS as a controller +-------------------------------- When executing Ansible on a system with macOS as a controller machine one might encounter the following error: @@ -261,6 +261,25 @@ In general the recommended workaround is to set the following environment variab $ export OBJC_DISABLE_INITIALIZE_FORK_SAFETY=YES +.. _macos_as_a_target_faq: + +Running on macOS as a target +---------------------------- + +When managing a system with macOS Monterey 12, macOS Ventura +13 or above over SSH, the following error can occur: + + .. error:: + "eDSPermissionError" DS Error: -14120 (eDSPermissionError) + +This is a good indication that *Allow full disk access for remote users* has not been enabled. + +.. seealso:: + + For more details, check out `the official Apple user guide article + `_. + + Running on BSD -------------- diff --git a/lib/ansible/modules/user.py b/lib/ansible/modules/user.py index a8199628d25..0c26cc28bdf 100644 --- a/lib/ansible/modules/user.py +++ b/lib/ansible/modules/user.py @@ -97,6 +97,8 @@ options: state: description: - Whether the account should exist or not, taking action if the state is different from what is stated. + - See this L(FAQ entry,https://docs.ansible.com/ansible/latest/reference_appendices/faq.html#running-on-macos-as-a-target) + for additional requirements when removing users on macOS systems. type: str choices: [ absent, present ] default: present