Tag: security
-
Updates to the AutoPkgReviewAndRun.py script
3.5 years ago, I created a script to automate running AutoPkg recipes while also verifying trust info and prompting the user to approve or deny any changes. With some prompting from some folks on the #autopkg channel of the MacAdmins Slack, I made a few changes to the script: You can now run the script…
-
Integrating DetectX Swift with Munki
If you like DetectX Swift and want to integrate it with Munki, this is how I did it. Hat tip to Zack McCauley for doing the heavy lifting, which I’m now building on. I’d recommend you read his blog post first. So instead of having an Outset script or separate Launch Agent, I decided to…
-
askForPassword and askForPasswordDelay in macOS 10.13 (High Sierra)
Update: Apparently 10.13.4 just breaks this completely (defaults write commands won’t do anything any more). Thanks to tristan on the MacAdmins Slack for pointing this out. In macOS 10.12 (Sierra) and earlier, you could go to System Preferences > Security & Privacy > General > Require password ________ after sleep or screen saver begins, and…
-
Use the command-line to set a firmware password on macOS
For extra security, you can add a firmware password to Macs, especially since Find My Mac is essentially useless (unlike for iPads, which have an activation lock preventing thieves from reactivating the iPad after a factory reset) and DEP-to-MDM enrollments for Macs can even be avoided by thieves if they’re resourceful enough. If you have…