How to Prevent Users from Upgrading to macOS® Catalina™

On October 7, 2019, Apple® released their latest operating system, Catalina™. While many users are eager to run the newest version of macOS® on their Macbooks®, IT admins know that there is reason for caution. Zero day security vulnerabilities and lost functionality have followed Apple OS upgrades in the past – leaving IT teams working overtime to compensate. Below, we’ll explain below how it’s possible to prevent your users from upgrading to macOS Catalina programmatically and at scale, using JumpCloud® Directory-as-a-Service®.

Note: If you don’t have Directory-as-a-Service currently, you can get a free account here, no credit card required.

How to Prevent Users from Upgrading to macOS Catalina

You can use Commands and the JumpCloud PowerShell Module to prevent users from updating their operating system to Catalina. You can find the instructions for using the command to block Catalina specifically in this JumpCloud Help Center article. This command will make the software update system preference pane ignore the macOS Catalina installation media. You can revert this command at any time by running another command (also explained in the documentation).

JumpCloud’s Commands feature lets you run commands using a number of languages, including PowerShell, Bash, and Shell. Commands can be executed across any number of systems (Windows® / Mac® / Linux®) or System Groups. Visit our Getting Started with Commands documentation to understand how to use this feature and see our Commands Gallery for a list of commonly used Commands.

Why Block Users from Upgrading to Catalina?

The simple answer is that OS upgrades can come with unintended consequences and they’re also fairly permanent. While Apple tests all of their new operating systems thoroughly, it’s impossible to catch every issue, every time. The two principle reasons to hold off on allowing users to upgrade are as follows:

  •       Security:  Zero days are opportunities for both hackers and bug bounty hunters around the world to test brand-new software for security vulnerabilities. By waiting a few days or weeks before upgrading, your organization can avoid the majority of these security (Read more…)

*** This is a Security Bloggers Network syndicated blog from Blog – JumpCloud authored by Nick Scheidies. Read the original post at: