Unbind my mac from ADSolved

Hey @96anneette,
Welcome to the Hexnode community.

Currently, Hexnode doesn’t have an option to unbind a Mac from an Active Directory. However, you can unbind the device by running a Bash script on the device using the Execute Custom Script action. Use the script below to unbind the device.

Replace <username> with the Domain admins username and <password> with the respective password.

You can also unbind AD at the device level. Search for Directory Utility using the Spotlight Search on your macOS device. The Services page lists all of the services to which the device is connected. To make modifications, click the lock symbol and enter the admin credentials. Unbind the service by selecting it and clicking the Unbind option. For further information, follow the link.

Hope that helps your query.

Cheers!
Johan Blake
Hexnode UEM

I have some trouble unbinding mac using the script. Anyone know why this happens and any solution fro this. Only a few macs show this problem

sudo dsconfigad –force -remove -u DomainAdminsUserName -p Password

Running the above command will force remove ad from the device.

I have a doubt regarding the command. If we specify garbage credentials or not give any credentials, the device will be disassociated from the ad. So what difference does it make to specify the username and password correctly.

When giving the username and password, it will initiate a clean unbind of the device from the ad. This would require the user to have appropriate admin rights to remove computer objects completely from the ad. Removing the computer object will delete all details associated with the device in the ad.

Meanwhile, giving wrong credentials just deletes some files on the device saying the device is connected to the ad. This terminates the connection with the ad and no further actions are possible. But device details will remain in the ad.

Thanks for that info.