Prevent File Sharing via Apple ID?

[Davoud]

Six Macs running El Capitan on my network. In some instances I am
automatically connected with my Apple ID rather than the name and
password of the remote Mac. When this happens I am "connected," but I
can't access files. How do I prevent log-in with the Apple ID are
require a system name and password? Can't find it in System
Preferences.

TIA!

--
I agree with almost everything that you have said and almost everything that
you will say in your entire life.

usenet *at* davidillig dawt cawm

[Jolly Roger]

On 2016-06-03, Davoud <st...@sky.net> wrote:
> Six Macs running El Capitan on my network. In some instances I am
> automatically connected with my Apple ID rather than the name and
> password of the remote Mac. When this happens I am "connected," but I
> can't access files. How do I prevent log-in with the Apple ID are
> require a system name and password? Can't find it in System
> Preferences.

This drives me nuts as well. It's a pain in the ass because even if
you've stored the proper credentials in your key chain, the default
behavior is to automatically connect with your Apple ID, which is
*never* what I want. The only way I've found to stop it (temporarily) is
to go into System Preferences > Users & Groups, right-click the account
in question, choose Advanced, and then remove the Apple ID shown there.
The problem is it gets added back later on. I'd love to know a more
permanent solution.

--
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR

[David Ritz]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Friday, 04 June 2016 00:05 -0000,
in article <drek9o...@mid.individual.net>,

Jolly Roger <jolly...@pobox.com> wrote:

> On 2016-06-03, Davoud <st...@sky.net> wrote:

>> Six Macs running El Capitan on my network. In some instances I am
>> automatically connected with my Apple ID rather than the name and
>> password of the remote Mac. When this happens I am "connected," but
>> I can't access files. How do I prevent log-in with the Apple ID are
>> require a system name and password? Can't find it in System
>> Preferences.

> This drives me nuts as well. It's a pain in the ass because even if
> you've stored the proper credentials in your key chain, the default
> behavior is to automatically connect with your Apple ID, which is
> *never* what I want. The only way I've found to stop it
> (temporarily) is to go into System Preferences > Users & Groups,
> right-click the account in question, choose Advanced, and then
> remove the Apple ID shown there. The problem is it gets added back
> later on. I'd love to know a more permanent solution.

Never having used my Apple ID, to connect from one machine to another,
using any protocol, my preference to use a user:pass combination is
offered by default. I've never had a remote volume mount without my
requesting it to do so. I understand this isn't going to help you
with your current situation, but your issue appears to be far from
universal.

- --
David Ritz <dr...@mindspring.com>
Be kind to animals; kiss a shark.

-----BEGIN PGP SIGNATURE-----

iEYEARECAAYFAldSIlkACgkQUrwpmRoS3utmLgCg2YUd2CdP1f8JJnTIDPHcAppF
nKsAoOeAYM9dtTcrrbV26bYyI/Wh/z6s
=tInV
-----END PGP SIGNATURE-----

[Jolly Roger]

On 2016-06-04, David Ritz <dr...@mindspring.com> wrote:
>
> On Friday, 04 June 2016 00:05 -0000,
> in article <drek9o...@mid.individual.net>,
> Jolly Roger <jolly...@pobox.com> wrote:
>
>> On 2016-06-03, Davoud <st...@sky.net> wrote:
>
>>> Six Macs running El Capitan on my network. In some instances I am
>>> automatically connected with my Apple ID rather than the name and
>>> password of the remote Mac. When this happens I am "connected," but
>>> I can't access files. How do I prevent log-in with the Apple ID are
>>> require a system name and password? Can't find it in System
>>> Preferences.
>
>> This drives me nuts as well. It's a pain in the ass because even if
>> you've stored the proper credentials in your key chain, the default
>> behavior is to automatically connect with your Apple ID, which is
>> *never* what I want. The only way I've found to stop it
>> (temporarily) is to go into System Preferences > Users & Groups,
>> right-click the account in question, choose Advanced, and then
>> remove the Apple ID shown there. The problem is it gets added back
>> later on. I'd love to know a more permanent solution.
>
> Never having used my Apple ID, to connect from one machine to another,
> using any protocol, my preference to use a user:pass combination is
> offered by default.

Same here.

> I've never had a remote volume mount without my requesting it to do
> so.

That's not what is being discussed here, AFAIK.

> I understand this isn't going to help you with your current situation,
> but your issue appears to be far from universal.

I don't have the issue on all machines - only one in particular, a
MacBook Pro.

[JF Mezei]

On 2016-06-03 18:59, Davoud wrote:
> Six Macs running El Capitan on my network. In some instances I am
> automatically connected with my Apple ID rather than the name and
> password of the remote Mac. When this happens I am "connected," but I
> can't access files. How do I prevent log-in with the Apple ID are
> require a system name and password? Can't find it in System
> Preferences.

Finder -> Go -> Connect to Server

afp://<username>@<host>

where <host> is either IP address or host name.

This will then prompt you for the password and offer you mount points
cvalid for the user you specified.

[Jolly Roger]

That doesn't solve the actual problem. And I'm betting Davoud, like me,
knows full well there are alternate ways to connect to shared volumes.

You should be able to select a shared volume in the Finder side bar and
login with user name and password. On some systems instead you are
automatically logged in by your Apple ID, which means some shared
volumes are not listed. When this happens, the fastest and easiest way
to connect properly is to simply click the Disconnect button in the
Finder window, and quickly click Connect once the button name changes.
Then you are presented with the credentials dialog box.

Like I said, removing the Apple ID from System Preferences > Users &
Groups > {account in question} > Advanced > Apple ID will revert to the
normal behavior temporarily (the Apple ID setting gets automatically
restored by the system later, IME).

[Davoud]

Davoud:

> >> Six Macs running El Capitan on my network. In some instances I am
> >> automatically connected with my Apple ID rather than the name and
> >> password of the remote Mac. When this happens I am "connected," but
> >> I can't access files. How do I prevent log-in with the Apple ID are
> >> require a system name and password? Can't find it in System
> >> Preferences.

David Ritz:

> Never having used my Apple ID, to connect from one machine to another,
> using any protocol, my preference to use a user:pass combination is
> offered by default.

That's my preference, as well. I have never knowingly authorized use of
my Apple ID to connect on my network. I have no idea how this started
or how to stop it. That's why I asked my question. If I accidentally
ticked a checkbox at some time to allow this, I want to find that
checkbox and un-tick it.

That should have read "How do I prevent log-in with the Apple ID *and*

require a system name and password?"

[JF Mezei]

On 2016-06-04 16:37, Davoud wrote:

> That's my preference, as well. I have never knowingly authorized use of
> my Apple ID to connect on my network.

Oh, you mean an Apple account name used for iCloud, Itunes store etc ?
I was under impression you were talking about either an LDAP or local
usernames to access remote systems. (LDAP when you have an Xserve).


I could see how a Mac could use an Apple ID to access a remote Apple
provided service. But how would it authenticate to access your own files
on your own system ?

(I have all those iCloud things disabled)

[Jolly Roger]

On 2016-06-04, JF Mezei <jfmezei...@vaxination.ca> wrote:

> On 2016-06-04 16:37, Davoud wrote:
>
>> That's my preference, as well. I have never knowingly authorized use of
>> my Apple ID to connect on my network.
>
> Oh, you mean an Apple account name used for iCloud, Itunes store etc ?

As usual, you respond without fully understanding what is being asked.

> I could see how a Mac could use an Apple ID to access a remote Apple
> provided service. But how would it authenticate to access your own files
> on your own system ?

*WHOOSH*

*smh*

[Davoud]

Davoud:

> > That's my preference, as well. I have never knowingly authorized use of
> > my Apple ID to connect on my network.

JF Mezei:

> Oh, you mean an Apple account name used for iCloud, Itunes store etc ?

I wonder if maybe that's not why I called it the "Apple ID" in the
subject. And then wrote "I am automatically connected with my Apple
ID."

> I could see how a Mac could use an Apple ID to access a remote Apple
> provided service. But how would it authenticate to access your own files
> on your own system ?

This isn't a trick question that I meant to trip someone up, or to
gloat about knowing an answer that you don't know.

> (I have all those iCloud things disabled)

Good for you! Two busy people here, six Macs, two iPhones, four iPads.
We need iCloud to sync the calendar, contacts, and what-not. It works.
And has aught to do with connecting to another Mac with an Apple ID.

[JF Mezei]

On 2016-06-04 20:36, Davoud wrote:

> This isn't a trick question that I meant to trip someone up, or to
> gloat about knowing an answer that you don't know.

You used the term "file sharing" which is generally though of
tranditional AFP, NFS, SMF protrocola that are local. I didn't realise
it also meant cloud access.

[Jolly Roger]

You are very confused, as usual. It doesn't mean cloud access; it means
rather than using the credentials of a local user account for AFP/SMB
connections, your Apple ID is used instead - automatically, with no
prompt.

[Lewis]

In message <57534446$0$62745$c3e8da3$f017...@news.astraweb.com>

JF Mezei <jfmezei...@vaxination.ca> wrote:
> I could see how a Mac could use an Apple ID to access a remote Apple
> provided service. But how would it authenticate to access your own files
> on your own system ?

Easily and seamlessly.

--
<http://www.pvponline.com/comic/2004/01/14/wed-jan-14/>

[Lewis]

In message <57538f60$0$22511$b1db1813$1459...@news.astraweb.com>

Because you are a moron who knows next to nothing about OS X and even
less about computers in general.

The AppleID that is used with icloud is associated with your accounts on
your macs, and allows for quick and secure access to all your computers.

There *used* to be a checkbox in the Users & Groups to allow the AppleID
to be used for accessing other computers, but once Apple figured out
that it works very well, they just connect to the network that way.

To use a username/password you have to disconnect and reconnect
manually.

--
Oh, he's just like any other man, only more so.

[JF Mezei]

On 2016-06-05 00:32, Lewis wrote:

> Because you are a moron who knows next to nothing about OS X and even
> less about computers in general.
>
> The AppleID that is used with icloud is associated with your accounts

*File Sharing* is one folder/icon in the System Preferences. There are
no options to share files on iCloud, and the permissions are
user/group/everyone.

iCloud is a totally different option in system preferences and that is
the one that has the Apple ID associated with iCloud storage.

The subject of this thread says "file sharing". So I apologuze for being
confused.

[Lewis]

In message <5753ad61$0$62125$b1db1813$19ac...@news.astraweb.com>

JF Mezei <jfmezei...@vaxination.ca> wrote:
> On 2016-06-05 00:32, Lewis wrote:

>> Because you are a moron who knows next to nothing about OS X and even
>> less about computers in general.
>>
>> The AppleID that is used with icloud is associated with your accounts

> *File Sharing* is one folder/icon in the System Preferences. There are
> no options to share files on iCloud, and the permissions are
> user/group/everyone.

Once again, you prove you are incapable of reading for comprehension.

> iCloud is a totally different option in system preferences and that is
> the one that has the Apple ID associated with iCloud storage.

You are a moron. You are wrong.

<https://www.dropbox.com/s/ilucdptbhzcwco3/Screenshot%202016-06-05%2015.56.54.jpg?dl=0>

> The subject of this thread says "file sharing". So I apologuze for being
> confused.

Apologize for being willfully ignorant.

--
U is for UNA who slipped down a drain
V is for VICTOR squashed by a train

[JF Mezei]

On 2016-06-05 17:59, Lewis wrote:
>
> You are a moron. You are wrong.
>
> <https://www.dropbox.com/s/ilucdptbhzcwco3/Screenshot%202016-06-05%2015.56.54.jpg?dl=0>

Not available on my system. Perhaps because I have iCloud disabled. (and
am on Yosemite).

The security implications of authenticating against a foreign LDAP
server (iCloud server) are interesting.

Does OS-X have mapping between AppleID and OS-X usernames and when you
trying to access a file based on AppleID, it maps it to a local username
and uses its GID/UID to test access to files ?

In users/group for Yosemite, there is no association between usename and
AppleID made (but there is checkbox that allows resetting of password
using AppleID).

I assume some asociation with AppleID is stored elsewhere.

[David Empson]

JF Mezei <jfmezei...@vaxination.ca> wrote:

> On 2016-06-05 17:59, Lewis wrote:
> >
> > You are a moron. You are wrong.
> >
>><https://www.dropbox.com/s/ilucdptbhzcwco3/Screenshot%202016-06-05%2015.56.54.jpg?dl=0>
>
> Not available on my system. Perhaps because I have iCloud disabled. (and
> am on Yosemite).

The setting in question is only loosely connected to iCloud. If you
don't set up an iCloud account you can still assign an Apple ID to the
Mac user account.

I was able to get the mechanism working for connecting via an Apple ID
if both computers are running 10.7 Lion or later. Some combinations
didn't work: for some reason my 10.9 VM and main 10.11 system always
reject incoming connections using my Apple ID. Incoming connections
using Apple ID to 10.7, 10.8 and 10.10 were OK (including from 10.9 and
10.11).

Of those, only 10.11 was signed into iCloud. (I had been signed into
iCloud on the earlier systems but signed out for this test, and added my
Apple ID back to the user account.)

10.6 won't work because it can't assign an Apple ID to an account (only
a MobileMe account, which is no longer going to work). If I use the
"Connect to server" dialog from later systems to pick a 10.6 system, the
"Using an Apple ID" option isn't offered.

The user interface to assign an Apple ID to the account was in the main
Password pane of System Preferences > Users & Groups from 10.7 Lion to
10.9 Mavericks, but in 10.10 Yosemite it shifted into the hidden
Advanced Options (still there in 10.11 El Capitan).

If you sign in to iCloud it appears that the user account's Apple ID is
filled in automatically, but you can also set it there (or during
initial account creation) without signing in to iCloud.

> The security implications of authenticating against a foreign LDAP
> server (iCloud server) are interesting.

Apple ID server, not iCloud server. It probably isn't LDAP either. It
will be using authentication keys from the keychain, associated with
your Apple ID, that are veriifed by Apple's server.

With both computers signed in to the same Apple ID, no password needs to
be entered for file sharing connections, and in general they connect
automatically if you click on the computer in the sidebar. This looks
like it could be annoying if you have multiple accounts on the server,
as I wasn't able to find a reliable way to disconnect using the Apple ID
without it reconnecting again immediately.

> Does OS-X have mapping between AppleID and OS-X usernames and when you
> trying to access a file based on AppleID, it maps it to a local username
> and uses its GID/UID to test access to files ?

Files are only associated with UID/GID. The Apple ID is used to
authenticate via Apple that you have access to the user account on the
server. Once logged in, everything proceeds as if you had logged in
using the account username.

> In users/group for Yosemite, there is no association between usename and
> AppleID made (but there is checkbox that allows resetting of password
> using AppleID).

It is hidden: click the padlock to unlock, then Ctrl-click your account
name and choose Advanced Options.

--
David Empson
dem...@actrix.gen.nz

[Jolly Roger]

On 2016-06-06, David Empson <dem...@actrix.gen.nz> wrote:
>
> If you sign in to iCloud it appears that the user account's Apple ID is
> filled in automatically, but you can also set it there (or during
> initial account creation) without signing in to iCloud.

Yes, and if you do use iCloud and you delete the Apple ID from the Users
& Group panel, the system will automatically restore it there later on -
which is why removing it from there is a temporary work-around solution
for anyone who makes use of iCloud. : (

>> The security implications of authenticating against a foreign LDAP
>> server (iCloud server) are interesting.
>
> Apple ID server, not iCloud server. It probably isn't LDAP either. It
> will be using authentication keys from the keychain, associated with
> your Apple ID, that are veriifed by Apple's server.
>
> With both computers signed in to the same Apple ID, no password needs to
> be entered for file sharing connections, and in general they connect
> automatically if you click on the computer in the sidebar. This looks
> like it could be annoying if you have multiple accounts on the server,

It's annoying, but is not insurmountable.

> as I wasn't able to find a reliable way to disconnect using the Apple ID
> without it reconnecting again immediately.

IME it's not immediate. When the system automatically connects with my
Apple ID, I just click the Connect button again immediately after
clicking Disconnect (same button - just changes names). Typically when I
do that, I'm presented with the standard credentials dialog box.

> It is hidden: click the padlock to unlock, then Ctrl-click your account
> name and choose Advanced Options.

I mentioned that yesterday in this thread; but I don't expect JF Mezei
to actually read details before forming his opinions.

[Jolly Roger]

On 2016-06-06, Jolly Roger <jolly...@pobox.com> wrote:
> On 2016-06-06, David Empson <dem...@actrix.gen.nz> wrote:
>>
>> as I wasn't able to find a reliable way to disconnect using the Apple ID
>> without it reconnecting again immediately.
>
> IME it's not immediate. When the system automatically connects with my
> Apple ID, I just click the Connect button again immediately after
> clicking Disconnect (same button - just changes names). Typically when I
> do that, I'm presented with the standard credentials dialog box.

Another work around is to use the Go > Connect to Server command, and
specify both the user name and password [1] of the target account:

afp://username:password@servername

One has to wonder how many Apple employees have to deal with this on a
regular basis, and whether there is some well-known yet unpublished
fix for it.

1: If you do not specify the password, it still connects with the Apple
ID, IME.

[JF Mezei]

On 2016-06-05 22:18, David Empson wrote:

> The setting in question is only loosely connected to iCloud. If you
> don't set up an iCloud account you can still assign an Apple ID to the
> Mac user account.

But i assume there is a single authentication server at Apple for all
the services (or multiple that are synched). iCloud, iTunes, developper
etc.

> 10.6 won't work because it can't assign an Apple ID to an account

Which is perhaps why my Yosemite machine doesn't give AppleID options
when I tried to AFP connect to the SnowLeopard server. Will have to see
what happens if I try to connect from laptop to desktop (both are Yosemite).

> 10.9 Mavericks, but in 10.10 Yosemite it shifted into the hidden
> Advanced Options (still there in 10.11 El Capitan).

Wow. Apple has a knack to hide stuff. I had wondered where the options
to edit accounts had gone. (on Snow Leppard server, there is the
workgroup manager app which has all the data on an account).

Even though I do not use iCloud, my account had my AppleID already
associated (likely due to iTunes, iMessage, facetime).

> With both computers signed in to the same Apple ID, no password needs to
> be entered for file sharing connections,

"signed in to the same Apple ID" You mean each computer signed on to
some userID that happens to be associated with the same appleID ?

say you have the following:
computer1 -> user=empson1
computer2 -> user=empson2
AppleID for both is emp...@empson.com

Is this a case of computer1 gettiong a token from Apple,
then connects to computer2 as emp...@empson.com + token
computer 2 then sends those to Apple which responds with "OK" ?

So this is built into AFP for a while now ? It,s the first time I hear
of it.



What happens when computer2 has 3 different usernames, all pointing to
the same AppleID. (empson_work, empson_play, empson_photos) ?

When computer1 identifies itself to computer2 with emp...@empson.com to
which of the 3 local accounts will that AppleID be mapped in terms of
file access ?


Or can it only be mapped to the account that is currently logged in ?
(whereas normal afp with username/pasword can use any account).

[JF Mezei]

On 2016-06-05 22:36, Jolly Roger wrote:

> Another work around is to use the Go > Connect to Server command, and
> specify both the user name and password [1] of the target account:
>
> afp://username:password@servername

And you had read my messages you woudl have seen that this is what I had
suggested in the first place, launching a series of attacks against me.

[David Empson]

JF Mezei <jfmezei...@vaxination.ca> wrote:

> On 2016-06-05 22:18, David Empson wrote:
>
> > With both computers signed in to the same Apple ID, no password needs to
> > be entered for file sharing connections,
>
> "signed in to the same Apple ID" You mean each computer signed on to
> some userID that happens to be associated with the same appleID ?

Each computer is configured with a Mac user account that is linked to
the same Apple ID via System Preferences.

The "server" computer does NOT need to be logged in to its Mac user
account.

> say you have the following:
> computer1 -> user=empson1
> computer2 -> user=empson2
> AppleID for both is emp...@empson.com

Yes. (In my case the usernames are also the same but I doubt that
matters - I expect only the Apple ID needs to be the same.)

> Is this a case of computer1 gettiong a token from Apple,
> then connects to computer2 as emp...@empson.com + token
> computer 2 then sends those to Apple which responds with "OK" ?

I expect it works by something being stored persistently for the user
account to which the Apple ID has been linked, and that can be
authenticated at the point a file sharing connection is made. I expect
that authentication involves Apple's servers, and public key
cryptography.

It could also be the computer signing in to Apple's servers during
startup (before any user account has logged in), which I expect would be
needed for other functions relating to the Apple ID, e.g. Find my Mac,
Back to my Mac.

I haven't gone hunting for the details.

While testing this I noticed that it was possible to add multiple Apple
IDs to a user account: once one is assigned, you get a list of Apple IDs
with + and - buttons to add/remove them.

Presumably that would allow any of the Apple IDs to be picked when
logging in to other computers, and any of them to be used to accept
incoming connections.

> So this is built into AFP for a while now ? It,s the first time I hear
> of it.

Works for AFP all the way back to OS X 10.7. As you avoided upgrading
from 10.6 for so long you missed out on learning about it earlier.

It also works for SMB.

> What happens when computer2 has 3 different usernames, all pointing to
> the same AppleID. (empson_work, empson_play, empson_photos) ?

No idea, haven't tried, and that case doesn't interest me as I'm not
likely to ever need to have two user accounts on one computer linked to
the same Apple ID.

If you want to find out, try it yourself.

> When computer1 identifies itself to computer2 with emp...@empson.com to
> which of the 3 local accounts will that AppleID be mapped in terms of
> file access ?
>
>
> Or can it only be mapped to the account that is currently logged in ?
> (whereas normal afp with username/pasword can use any account).

--
David Empson
dem...@actrix.gen.nz

[Jolly Roger]

JF Mezei <jfmezei...@vaxination.ca> wrote:
> On 2016-06-05 22:36, Jolly Roger wrote:
>
>> Another work around is to use the Go > Connect to Server command, and
>> specify both the user name and password [1] of the target account:
>>
>> afp://username:password@servername

> And you had read my messages

I read it. And you clearly didn't read mine since you left this part out:

>> 1: If you do not specify the password, it still connects with the Apple ID, IME.

Ponder on that for a bit.

> you woudl have seen that this is what I had
> suggested in the first place

Nope. Your suggestion omitted the password, which doesn't work as I said
above. Yet again you probe you don't read.

> launching a series of attacks against me.

Oh BOO FUCKING HOO lets all cry for the poor mistreated FUDster!

*crickets chirping*...

[Jolly Roger]

On 2016-06-06, JF Mezei <jfmezei...@vaxination.ca> wrote:
> On 2016-06-05 22:18, David Empson wrote:
>
>> 10.9 Mavericks, but in 10.10 Yosemite it shifted into the hidden
>> Advanced Options (still there in 10.11 El Capitan).
>
> Wow. Apple has a knack to hide stuff. I had wondered where the options
> to edit accounts had gone.

Such ignorance. System Preferences > Accounts > Advanced has been around
for a long, long time (Snow Leopard included).

[JF Mezei]

On 2016-06-06 03:07, David Empson wrote:

> Works for AFP all the way back to OS X 10.7. As you avoided upgrading
> from 10.6 for so long you missed out on learning about it earlier.
>
> It also works for SMB.

Would be interesting to find out how apple ID authentication works. Is
it just AFP/SMB that were patched to support it, or is this at a much
lower level which makes it usable by a whole lot more services that
normally require autnentication ?

> If you want to find out, try it yourself.

I did last night. It only works on the "connect" button when you select
a remote server on the left panel of a finder window.


I always use "connect to server" from GO menu in finder hence why I
never saw it. As I have multiple accounts on server, I have gotten used
to always connecting this way.

I've watched the keynotes over the years and don't remember learning
about authentication between 2 mac using Apple ID credentials.

[Davoud]

David Empson:

> It is hidden: click the padlock to unlock, then Ctrl-click your account
> name and choose Advanced Options.

Well! Why didn't you say so? Away from home with one of the MBP's in
question, so I won't mess with it now because none of the other Macs
are available to connect to.

Oh, and it says "WARNING: Changing these settings might damage this
account and prevent the user from loggin in..."

Must mean the top part, not the Apple ID part, right?

[Jolly Roger]

On 2016-06-06, Davoud <st...@sky.net> wrote:
> David Empson:
>> It is hidden: click the padlock to unlock, then Ctrl-click your account
>> name and choose Advanced Options.
>
> Well! Why didn't you say so?

I mentioned it several times...

> Oh, and it says "WARNING: Changing these settings might damage this
> account and prevent the user from loggin in..."
>
> Must mean the top part, not the Apple ID part, right?

It applies to everything there, but changing the Apple ID doesn't break
anything, IME.

[David Empson]

Jolly Roger <jolly...@pobox.com> wrote:

> On 2016-06-06, JF Mezei <jfmezei...@vaxination.ca> wrote:
> > On 2016-06-05 22:18, David Empson wrote:
> >
> >> 10.9 Mavericks, but in 10.10 Yosemite it shifted into the hidden
> >> Advanced Options (still there in 10.11 El Capitan).
> >
> > Wow. Apple has a knack to hide stuff. I had wondered where the options
> > to edit accounts had gone.
>
> Such ignorance. System Preferences > Accounts > Advanced has been around
> for a long, long time (Snow Leopard included).

I have a vague recollection it was introduced in Leopard. (Certainly is
there in my Leopard Server VM, for local but not network accounts, I
don't have anything older handy to test.)

--
David Empson
dem...@actrix.gen.nz

[Lewis]

In message <5755172f$0$7243$c3e8da3$66d3...@news.astraweb.com>

JF Mezei <jfmezei...@vaxination.ca> wrote:
> On 2016-06-05 22:18, David Empson wrote:

>> The setting in question is only loosely connected to iCloud. If you
>> don't set up an iCloud account you can still assign an Apple ID to the
>> Mac user account.

> But i assume there is a single authentication server at Apple for all
> the services (or multiple that are synched). iCloud, iTunes, developper
> etc.

Nope. That is *obviously* not the case.

--
Penny, I'm a physicist. I have a working knowledge of the entire
universe and everything it contains.