github SAP/macOS-enterprise-privileges 2.3.0
Privileges 2.3.0
on GitHub

latest releases: 2.4.2, 2.4.1, 2.4.0...
8 months ago

What's new?

  • mTLS is now supported for webhooks. So if you configure your web server to require a client certificate, Privileges will present it if it's found in one of the keychains. Please make sure PrivilegesAgent has access to the corresponding private key to avoid being prompted for access.

    If you want to learn more about mTLS, I highly recommend our colleague Henry Stamerjohann's session "What about mutual TLS?" from the 2021 MacSysadmin conference.

  • Managed settings are now clearly marked as managed as you know it from System Settings.

  • For those who don't like notifications, a new management key RenewalCustomAction has been added, that allows you to run a script or binary before administrator privileges expire. So you can inform your users with a dialog or whatever works best in your environment. Please see the Wiki for detailed information about the new key.
  • Privileges now notices when privileges are changed by another process. To do this, it includes a new daemon called PrivilegesWatcher. The daemon is started whenever the file /var/db/dslocal/nodes/Default/groups/admin.plist is changed. It notifies the PrivilegesAgent of the change, and the agent then determines whether the change was expected or not. Unexpected changes are logged and the UI of all Privileges components are updated to reflect the change. The log message will look like this:



    SAPCorp: Administrator privileges for user xxxx have been changed by another process

  • Added some code to verify group membership after changing it.
  • PrivilegesCLI got a new command line argument -v or --version which displays version information.
  • The syslog code has been rewritten and improved. Now syslog messages can also be sent using octet counting (instead of just non-transparent framing). In addition to this you can now include structured data elements in your syslog message. To configure all this, we introduced the new management keys MessageFormat and StructuredData. Please see the Wiki for detailed information about these new keys.
  • Created a new and improved dynamic JSON Schema manifest for Jamf Pro.
  • Fixed some minor issues.
Check out latest releases or
releases around SAP/macOS-enterprise-privileges 2.3.0

Don't miss a new macOS-enterprise-privileges release

NewReleases is sending notifications on new releases.

Get notifications