May 2020 - Mr. Macintosh

10.15.5 & 2020-003 Updates = Changes to softwareupdate –ignore

MrMacintosh.com - Big changes coming to softwareupdate --ignore command after installing the 2020-003 update. — Big changes coming to softwareupage –ignore command after installing the 2020-003 update.

The Catalina 10.15.5 Update & 2020-003 Security Updates remove the software update –ignore ability for Major Updates. The –ignore flag for Minor Updates is now deprecated.

UPDATE 7/16/20 – Apple just released Catalina 10.15.6 and Security Updates 2020-004. Apple listened to us and reverted the changes made in 10.15.5 and 2020-003 (with a caveat). After installing 10.15.6 or the 2020-004 updates, you can once again use softwareupdate --ignore to block minor and major updates. As long as the Mac is enrolled in Apple School Manager, Apple Business Manager or a User Approved MDM.

Catalina 10.15.6 Update – mrmacintosh.com/whats-new-in-the-macos-catalina-10-15-6-update-19g73/

Security Update 2020-004 for 10.13 & 10.14 – mrmacintosh.com/security-update-2020-004-for-mojave-10-14-high-sierra-10-13-released/

Managing macOS in Enterprise or Education is a tough job no matter how you look at it. One of the toughest things that we have to deal with is 3rd party software. On top of that macOS updates & upgrades can cause additional problems. If you are a regular reader of this blog, you know what I’m talking about. 3rd party software is mission critical, and needs to run without issues. We need the ability to test new macOS Software Updates and Upgrades. Any of which could break that critical software, and cause major problems. A few points >

If we find a problem with 3rd party after installing an update, we would need to reach out the vendor. The fix might take longer than 90 days.
A macOS Update causes a big problem, so bad that we immediately need to block it. Sometimes it takes 2-5 months for Apple implement the fix to the next point release update.
Your Mac needs to be Supervised / Enrolled in an MDM, or you won’t be able to hide the Major Update (10.15.4+) update.
MacOS does NOT have an Update Recovery Ability. If something goes wrong after an update, we do NOT have any way to revert back to a previous update!!!

1. UPDATES!
2. 10.15.5 & 2020-003 Update Changes.
3. Right now, this only affects macOS Mojave
4. What about High Sierra 10.13?
5. Blocking the 2020-003 Security Update
6. Catalina 10.15.5 Changes
7. How can we ignore Updates and Upgrades in the future? (10.15.4+)
8. System Preferences Icon Red Dot Notification (How To get rid of it)
9. Don’t like this change? What can you do?

1. UPDATES!

UPDATE 6/9/20 – 10.15.6 Beta 2 (19G46c) was released today. The softwareupdate --ignore flag was changed to include some changes that we asked for! Be sure to check the AppleSeed Beta notes for all the details. I am still checking to see if the change will make it to Mojave 10.14.

UPDATE 5/28/20 – I ran a quick test on a 10.14.6 (2020-002) Mojave Mac. First I used the command softwareupdate --ignore "macOS Catalina" to ignore the macOS Catalina Upgrade. The Upgrade disappeared from System Preferences > Software Update. I then installed a configuration profile that used the restrictions payload that deferred updates for 90 days. I installed the 2020-003 security update. Catalina showed up in System Preferences > Software Update. This can only mean one of two things…

1. A Mojave Mac with 2020-003 installed can now understand the new MDM Profile “Major Update” deferral. The Upgrade shows up because we are more than 90 days away from when Catalina was released.
2. We are taking this sentence literally “Starting with macOS 10.15.4, major releases of macOS can be deferred for up to 90 days using MDM.” Meaning the change was not backported to 10.14 and we will be unable to ignore 10.16 on Mojave.
I have reached out to Apple for clarification on this.

2. 10.15.5 & 2020-003 Update Changes.

Lets jump right in and look at the new changes.

Before I do, I need to do a quick shout out to @bp Balmes Pavlov

Balmes first called this out on April 16th, and really took a deep dive into this upcoming change.

babodee.wordpress.com/2020/04/16/apple-plans-on-removing-enterprise-options-for-macos-software-update/

The changes are here now, so let’s take a look at the 10.15.5 patch notes.

MrMacintosh.com - 10.15.5 Softwareupdate --ignore changes — 10.15.5 Softwareupdate –ignore changes

“Major Releases of macOS are no longer hidden when using the softwareupdate command with the –ignore flag”.

Updates are considered 10.15.4 > 10.15.5.
Major Releases or Upgrades are considered 10.14 > 10.15.

Notice how at the bottom of the note it says, “This change also affects macOS Mojave and macOS High Sierra after installing Security Update 2020-003”.

3. Right now, this only affects macOS Mojave

The direct impact of this update is to macOS Mojave. If you are running 10.14.6 and have the 2020-002 Security update installed, you can block macOS Catalina with softwareupdate --ignore "macOS Catalina"

After running the above command, macOS Catalina will not show up in System Preferences > Software Update.

This is what the Software Update Pane will look like in 10.14.6 before installing 2020-003.

MrMacintosh.com - Looks great! This is after running softwareupdate --ignore "macOS Catalina" on 2020-002. — Looks great! This is after running softwareupdate –ignore “macOS Catalina” on 2020-002

After installing 2020-003, this is what the Software Update pane will look like.

MrMacintosh.com - Not so good. This is after running softwareupdate --ignore "macOS Catalina" on 2020-003. — 10.15.5 2020-003 softwareupdate –ignore. this is what Software Update looks like after 2020-003.

This leaves macOS 10.14.6 with very few options if you want to block users from upgrading to macOS Catalina.

Turn Off Automatic Updates (manually deploy updates)
Hide/Block the Software Update Preference Pane
Software Restrictions on “Install macOS Catalina.app”

4. What about High Sierra 10.13?

The 10.15.5 patch notes specifically mention High Sierra. For Software Updates, 10.13 still uses the App Store Preference Pane. When you click on it, you go right to the App store updates tab. macOS Catalina is NOT listed anywhere in the “updates” Section.

High Sierra and Sierra used notification banners.

MrMacintosh.com - 10.13 and 10.14 macOSInstallerNotification_GM notification dialog. — 10.13 and 10.14 macOSInstallerNotification_GM notification dialog.

If you wanted to block the banners on High Sierra and Sierra, you would run the following command.

sudo softwareupdate --ignore "macOSInstallerNotification_GM"

You will now run into another problem after installing the 2020-003 Update.

Ignoring software updates is deprecated.

The ability to ignore individual updates will be removed in a future release of macOS

Reading that deprecation note, it looks like we will not only lose the ability to use the --ignore for Major updates (Right Now on 10.15.5 & 10.14) but also point updates in the future (10.16).

5. Blocking the 2020-003 Security Update

If you would like to block the 2020-003 Security update, run the following command below.

softwareupdate --ignore "Security Update 2020-003"
The Mac App Store (10.13) & System Preferences > Software Update (10.14) will respect the --ignore option.

6. Catalina 10.15.5 Changes

This change does not really affect Catalina right now. The problem will come when 10.16 is released.

You will not be able to use

softwareupdate --ignore "macOS 10.16"

7. How can we ignore Updates and Upgrades in the future? (10.15.4+)

Apple is providing something for 10.15.4+ users.

Starting with macOS 10.15.4, major releases of macOS can be deferred for up to 90 days using MDM.
Apple Patch Notes

The forceDelayedSoftwareUpdates key in the Restrictions payload will now apply to major OS versions in addition to software updates.
Apple Patch Notes

We already have the MDM Key forceDelayedSoftwareUpdates but after installing 10.15.4 you can now defer Major Upgrades for up to 90 Days.

Once macOS 10.16 is live, you will be able to hide the Major (Upgrade) and Minor (Point Release) Updates for 90 Days.

8. System Preferences Icon Red Dot Notification

MrMacintosh.com - System Preferences Red Dot Notification. — System Preferences Red Dot Notification.

HT goes out to Jeff Johnson who first investigated this earlier today.

lapcatsoftware.com/articles/software-update.html

He called out that even though we can’t block the Catalina Update in System Preferences, we might still want to remove the Red Dot Notification.

Check out his article to find out how disable the notification.

HT also goes out to this guy who first documented the fix.

tinyapps.org/blog/202005070700_remove_catalina_notification_badge.html

UPDATE 5/28/20 – A MacRumors forum user found a new way to block the notification.

I did by editing com.apple.dock.plist
changed “dock-extra” from YES to NO for system preferences and no more red annoyance.
MacRumors Forum User VTRN

9. Don’t like this change? What can you do?

Please let Apple know NOW, not later (10.16 is coming in one month!).

Apple Enterprise Ticket
Apple FeedBack Assistant
If you have an Apple SE assigned to your company, talk to them.
AppleSeed for IT: macOS Deployment & Management Survey (this survey is available for AppleSeed for IT participants and can only be taken in the FeedBack Assistant.app)

10.15.5 2020-003 softwareupdate –ignore

MacOS Mojave & High Sierra 2020-003 Security Updates Released!

MrMacintosh.com - MacOS Security Updates 2020-003 for Mojave 10.14, High Sierra 10.13 and Safari released! — MacOS Security Updates for Mojave 10.14, High Sierra 10.13 and Safari released!

Security Updates 2020-003 for macOS 10.14 Mojave (18G5033) & 10.13 High Sierra (17G13033) are now Available.

Today, Apple released macOS Mojave Security Update 2020-003 and High Sierra Security Update 2020-003. This update also includes a fix for the Intel GPU Freezing Issue! Below you will find Build Versions, Download Links, Update Sizes and previous Security Update Links. MacOS Sierra is no longer supported by Apple for Security Updates.

UPDATE 6/02/20 – Apple has re-released the 2020-003 Security Update! The new update has a fix for CVE-2020-9859, a Kernel Exploit. “An application may be able to execute arbitrary code with kernel privilege“

The new ProductID = 001-12354

New 10.13.6 Build Version of 2020-003 = 17G13035

The Apple download page now shows a June 1st date instead of May 26th.

WARNING!!! – If you use softwareupdate –ignore to block macOS Catalina.

If you use softwareupdate --ignore "macOS Catalina to ignore Catalina, you will need a different plan. I mentioned this in my Catalina 10.15.5 Update Article.

After installing the 2020-003 Security update on Mojave, you will no longer be able to ignore macOS Catalina from showing up in System Preferences > Software Update.

UPDATE: 5/27/20 – I just wrote an article explaining this a little better below.

mrmacintosh.com/10-15-5-2020-003-updates-changes-to-softwareupdate-ignore/

You can read up more on this in the article below.

babodee.wordpress.com/2020/04/16/apple-plans-on-removing-enterprise-options-for-macos-software-update/

How do I keep track of all the macOS Build Versions?

I document all of the macOS Build Versions like the latest Mojave 2020-003 High Sierra 2020-003 along with most Apple Applications, XProtect, Gatekeeper and MRT updates in one database. You can check out the link below.

mrmacintosh.com/macos-system-status-version-info-for-macadmins/

MacOS Mojave Security Update 2020-003 (18G5033)

macOS Mojave Security Update 2020-003
Size = 1.68 GB
Package Download and Information Link
https://support.apple.com/kb/DL2042

Information on the Security fixes included in the 2020-003 Mojave Security Update

https://support.apple.com/en-us/HT211170

MacOS High Sierra Security Update 2020-003 (17G13033)

10.13.6 High Sierra Security Update 2020-003
Size = 2.11 GB
Package Download and Information Link
https://support.apple.com/kb/DL2041

Information on the Security fixes included in the 2020-003 High Sierra Security Update

https://support.apple.com/en-us/HT211170

Safari Update

Safari was updated to version 13.1.1 (13609.2.9.1.3)

Download Size for High Sierra = 66.2mb

Downloads Size for Mojave = 70.6mb

T2 BridgeOS Update

Both the 2020-003 and 2020-003 Security Updates upgrade BridgeOS to version – 17.16.15290

Security Content for Safari 13.1.1

https://support.apple.com/en-us/HT211177

Previous Releases

Security Related Content for 2020-003

https://support.apple.com/en-us/HT211170

Security Updates 2020-003 Mojave

What’s New in the macOS Catalina 10.15.5 Update 19F96?

MrMacintosh.com - macOS Catalina 10.15.5 (19F96) Update — *macOS Catalina 10.15.5 (19F96) Update*

The macOS Catalina 10.15.5 Update 19F96 is now Available.

The much anticipated macOS Catalina 10.15.5 update is live! The update is now available for download as a full installer.app, delta and combo update. This update looks like it includes a fix for the MacBook Pro 16″ wake from sleep Kernel Panic Issue! Let’s take a look at the Catalina 10.15.5 Update 19F96 to find out what’s new. The update also includes a fix for the GPU Freezing issue with some Macs with an Intel Only Graphics Chip.

UPDATE 06/02/20 – Apple just released a 10.15.5 Supplemental Update. I have the info here – https://mrmacintosh.com/macos-catalina-10-15-5-supplemental-update-19f101-cve-2020-9859/

UPDATE 05/27/20 – I wrote an article on the changes to the softwareupdate --ignoreflag and what it means for MacAdmins. mrmacintosh.com/10-15-5-2020-003-updates-changes-to-softwareupdate-ignore/

10.15.5 Patch Notes Summary

2 Announcements
3 New Features
8 Resolved Issues
5 Enterprise Fixes
41 Security Fixes

Apple’s Public Patch Notes / Release Notes Documentation

NOTE: Apple Documentation takes a little while to show up online after release. I will update when the new articles are made available.

https://support.apple.com/en-us/HT210642

developer.apple.com/documentation/macos_release_notes

developer.apple.com/documentation/macos_release_notes/macos_catalina_10_15_5_release_notes

For more detailed information about this update and previous updates, please visit: https://support.apple.com/kb/HT210642

Previous 10.15 Releases + Previous Patch Notes

10. 10.15.5 = (19F96) May 26, 2020
9. 10.15.4 = (19E287) April 8th, 2020
8. 10.15.4 = (19E266) March 24th 2020
7. 10.15.3 = (19D76) January 28th 2020
6. 10.15.2 = (19C57) December 10th 2019
5. 10.15.1 = (19B2106) November 13th 2019
4. 10.15.1 = (19B88) October 29th 2019
3. 10.15.0 = (19A603) October 21st 2019
2. 10.15.0 = (19A602) October 15th 2019
1. 10.15.0 = (19A583) October 7th 2019

Catalina 10.15.5 Info & Download Links

Delta Update

The “Delta” update is smaller in size because it only includes fixes for the previous point release only.

Download Link – https://support.apple.com/kb/DL2039

Size = 2.98 GB

Product ID = 061-78581

Requirements = 10.15.4

Combo Update

The “Combo” update is for all previous versions of Catalina.

Download Link – https://support.apple.com/kb/DL2040

Size = 4.76 GB

Product ID = 061-78580

Requirements = 10.15.0, 10.15.1, 10.15.2, 10.15.3 or 10.15.4

Full Installer.app

Link – Catalina 10.15.5 Mac App Store

Size = 8.73 GB

Product ID = 061-78580

Requirements – 10.15 Catalina Requirements

T2 BridgeOS Update

T2 BridgeOS was updated along with the 10.15.5 update.

Size = 392.8 MB

Product ID = 061-70034

BridgeOS Update Version = 17.16.15290

Security Content for Safari 13.1.1

https://support.apple.com/en-us/HT211177

New Apple Support Documents

Adapters for the Thunderbolt 3 or USB-C port on your Mac or iPad Pro

If the cable from your external device doesn’t connect to the Thunderbolt 3 or USB-C port on your Mac or iPad Pro, you might need an adapter.

https://support.apple.com/en-us/HT207443

About Mac notebook batteries

Learn how to optimize the life of the battery in your Mac notebook, fix battery issues, and get service.

https://support.apple.com/en-us/HT204054

Catalina 10.15.5 Update 19F96 Overview

https://support.apple.com/en-us/HT210642

macOS Catalina 10.15.5 introduces battery health management in the Energy Saver settings for notebooks, an option to control automatic prominence of video tiles on Group FaceTime calls, and controls to fine-tune the built-in calibration of your Pro Display XDR. The update also improves the stability, reliability, and security of your Mac.

Battery Health Management

Battery health management to help maximize battery lifespan for Mac notebooks
Energy Saver preference pane now displays battery condition and recommends if the battery needs to be serviced
Option to disable battery health management

For more information, please visit https://support.apple.com/kb/HT211094

FaceTime Prominence Preference

Option to control automatic prominence on Group FaceTime calls so video tiles do not change size when a participant speaks

Calibration Fine-Tuning for Pro Display XDR

Controls to fine-tune the built-in calibration of your Pro Display XDR by adjusting the white point and luminance for a precise match to your own display calibration target

This update also includes bug fixes and other improvements.

Fixes an issue that may prevent Reminders from sending notifications for recurring reminders
Addresses an issue that may prevent password entry on the login screen
Fixes an issue where System Preferences would continue to show a notification badge even after installing an update
Resolves an issue where the built-in camera may not be detected when trying to use it after using a video conferencing app
Addresses an issue for Mac computers with the Apple T2 Security Chip where internal speakers may not appear as a sound output device in Sound preferences
Fixes a stability issue with uploading and downloading media files from iCloud Photo Library while your Mac is asleep
Resolves a stability issue when transferring large amounts of data to RAID volumes
Fixes an issue where the Reduce Motion Accessibility preference did not reduce the speed of animations in a FaceTime group call

Enterprise Fixes

Improves performance on certain Mac models when enabling hardware acceleration in GPU-intensive apps such as those used for video conferencing.
Addresses an issue where Microsoft Exchange accounts were unable to sign in during account setup when using Conditional Access.
Resolves an issue that prevented some displays connected to MacBook Pro (16-inch, 2019) from waking from sleep when the Mac wakes
Single sign-on (SSO) works immediately after installing an app that contains a third party SSO extension.
Apple Push Notification Service traffic now uses a web proxy when specified in a PAC file via the Proxies payload

Announcements

Software Update
For increased security, major releases of macOS are not hidden when using the --ignore flag and the softwareupdate command starting with macOS 10.15.5. A major release is defined as one which receives a name, such as macOS Catalina.
Starting with macOS 10.15.4, major releases of macOS can be deferred for up to 90 days using MDM.

More on this here – mrmacintosh.com/10-15-5-2020-003-updates-changes-to-softwareupdate-ignore/

networksetup Command
Starting with macOS 10.15.5, the networksetup command behaves differently when run as a standard user versus an admin user. Standard users can do the following:
• 1. Read various network settings
• 2. Turn Wi-Fi power on or off (networksetup -setairportpower en0 on)
• 3. Change the Wi-Fi access point (networksetup -setairportnetwork en0
ExampleWiFiAP)
Other network settings can no longer be modified by standard users via networksetup.
For admin users, networksetup will continue to behave as it has in previous releases of macOS, provided System Preferences > Security & Privacy > Advanced… > “Require an administrator password to access system-wide preferences” is unchecked (which is the default state). If it is checked, admins will be bound by the same constraints as standard users when
using networksetup.

Security Content for 10.15.5

https://support.apple.com/en-us/HT211170

Catalina 10.15.5 Update 19F96

How To Regenerate a New FileVault 2 Personal Recovery Key (PRK)

MrMacintosh.com - How To regenerate a FileVault 2 Personal Recovery Key. — How To reissue a FileVault 2 Personal Recovery Key

It’s good practice to have a backup of important things in your life. You wouldn’t only keep one set of keys to your house or car. The same goes for your FV2 Encrypted Mac. The FileVault Personal Recovery Key is your backup key to your Mac. If your account password is not working or if you can’t remember the password, the Recovery Key will be the only way to get to your data.

Two Different Types of FileVault 2 Recovery Keys

When encrypting your Mac, you have two different types recovery key options.

(PRK) Personal Recovery Key – Every Mac has a unique Recovery Key.
(IRK) Institutional Recovery Key – One Recovery Key for every Mac

While it may be convenient to have one key for every Mac, having a Institutional Recovery Key is like having a Master Key to an Apartment Complex. If that key is stolen or lost, the bad guy has a key to every single apartment unit. The same thing goes for the (IRK) if one user has the key, it’s known for every single Mac.

The PRK is the way to go, as each Mac has a unique key.

I previously wrote about how to use the PRK to recover data from a Mac using Target Disk Mode.

https://mrmacintosh.com/filevault-2-target-disk-mode-unlock-using-the-personal-recovery-key/

Why Would Would I Need to Change my Personal Recovery Key?

Here are a few reasons why you might need to reissue or generate a new FileVault 2 Personal Recovery Key.

1. The Computer Record was deleted from your MDM.
2. The MDM Recovery Key Entry is corrupted.
3. The Recovery Key is not working.
4. The PRK is given to a user and you want to cycle and protect it.
5. The PRK user is missing, or the ? mark is not showing at FV2 login.
6. If you need to reenroll a Mac into a different MDM.

A good example of #2 is when Jamf Pro 10.7.1 screwed up the recovery key display in every computer record. This defect was fixed in Jamf Pro 10.10.

https://www.jamf.com/jamf-nation/discussions/31910/filevault-2-personal-recovery-key-issue

Reissue the FileVault 2 Recovery Key with FV2 Enabled Username and Password

To generate a new FileVault 2 Personal Recovery Key we will be using the fdesetup binary.

First you can check to see if your Mac is using a PRK or IRK.

sudo fdesetup haspersonalrecoverykey = true or false

sudo fdesetup hasinstitutionalrecoverykey= true or false

Now we can change the recovery key using username and password.

sudo fdesetup changerecovery -personal

Enter the user name:mrmacintosh

Enter the password for user 'mrmacintosh':

New personal recovery key = 'Z5V7-K464-PEVT-09OX-Q2EW-8FO8'

This works for 10.13 – 10.15

Reissue the FileVault 2 Recovery Key using the Current Personal Recovery Key (PRK)

Staring in 10.14, you can now use the current Personal Recovery Key to generate a new PRK.

You will be using the UUID of the Personal Recovery User and the current PRK as the password.

Find the UUID of the Personal Recovery Key User

sudo fdesetup list -extended

ESCROW UUID TYPE USER

0A1BCDC3-49BD-4E00-B741-813E143AD1E2 OS User mrmacintosh

EBC6C064-0000-11AA-AA11-00306543ECAC Personal Recovery Record

Note: The UUID of the Personal Recovery User is the same very every FV2 Encrypted Mac.

Let’s change it.

sudo fdesetup changerecovery -personal

Enter the user name:EBC6C064-0000-11AA-AA11-00306543ECAC

Enter the password for user 'EBC6C064-0000-11AA-AA11-00306543ECAC':

New personal recovery key = 'Z5V7-K464-PEVT-09OX-Q2EW-8FO8'

For the password field, all we need to do is enter in the current FV2 PRK.

NOTE: If you want to send the Recovery Key to Jamf Pro, you need to run Recon twice.

Running commands are great for 1 or 2 Macs, but what if I have to fix more than that?

The guys at HCS Technology Group wrote up an excellent article showing us how to create a policy for this. The policy will search for all Macs that do not have a valid recovery key and will remediate with a script kicked off by a Jamf Policy.

https://hcsonline.com/images/PDFs/Jamf_Recovery_key_Filevault.pdf

Credits

Hat Tip goes out to Johan McGwire aka yohan on #MacAdmins. He brought up the 2nd way to reissue the Personal Recovery Key with the current PRK. Johan the expert behind the following projects. Check them out!

Also HCS Technology Group, I can’t say enough about these guys. They have written some of the best MacAdmins guides available today!

Get the full list HCS White Papers, visit this link.

http://hcsonline.com/support/white-papers.

Follow them on Twitter! https://twitter.com/HCSTechnology

Can I Upgrade or Downgrade macOS? Every Mac From 2006-2020

MrMacintosh.com - Can I upgrade or downgrade macOS? What is the minimum or maximum macOS Version my Mac can run? A full index of every Mac from 2006-2020 — What is the minimum and maximum macOS Version my Mac can run?

Do you need to downgrade or upgrade macOS on your Mac? This page will show you the oldest and newest version of macOS that you can install on your Mac.

Can I upgrade or downgrade macOS? How many times has this question come up over the years? Probably hundreds if not thousands of times. Mac Hardware has a minimum and maximum version of macOS that can be installed. MacOS versions that come before or after the minimum and maximum listed OS do not have the correct drivers required. At a certain point Apple will decide that a Mac is no longer supported and will not include drivers.

Internet Recovery Version

If your Mac supports Internet Recovery, you can use this guide to find out which version of macOS you will get using the following options.

Newest OS – Option-⌘-R

This option will be the newest or latest version of macOS that can be installed on your Mac.

Shipping OS (Oldest OS Available) – Shift-Option-⌘-R

The “Shipping OS Version” is the macOS version that your Mac originally shipped with from the factory. This is the IR Version that you will see if you use Shift-Option-⌘-R.

NOTE! The “Shipping OS can change to a newer OS release as the hardware gets older. An example of this is a MacBook Pro released with 10.13 but later is shipped with 10.14.

Fun Hardware Info

As of 5/1/321, Apple has released over 150 different Intel Model Identifiers.

Most Supported Mac =

MacBookPro9,1 (15-inch Mid 2012) – 10.7.3 – 10.15 = 9 OS Versions

Least Supported Mac =

MacBook1,1 (13-inch Core Duo 2006) – 10.4.6 – 10.6.8 = 3 OS Versions

Updates

In the future when Apple releases new hardware or OS, I will update this page. You can keep track of future updates from my Twitter Account @ClassicII_MrMac using the hashtag –

#UpgradeorDowngradeMacOS

Index of Intel-Based Mac Hardware From (2006-2020)

1. MacBook Pro – (2006-2020)
2. MacBook Air – (2008-2020)
3. MacBook – (2006-2017)
4. Mac Pro – (2006-2019)
5. iMac – (2006-2020)
6. iMac Pro – (2017)
7. Mac Mini – (2006-2018)
8. Xserve – (2006-2009)

1. MacBook Pro (2006-2020)

The MacBook Pro was introduced by Steve Jobs at Macworld Conference & Expo on January 10th, 2006. The MacBook Pro has seen five redesigns over the last 15 years. Starting with Gen 1 (2006-2008), Gen 2 Unibody (2008-2012), Gen 3 Retina (2012-2015), Gen 4 Touch Bar (2016-2019) & Gen 5 16″ Scissor (2019).

Model Identifier	Machine Model	T1 T2	Ship OS	Oldest OS	Latest OS
MacBookPro16,2	(13-inch 2020)	T2	10.15.4	10.15 >	11.0 >
MacBookPro16,2	(13-inch 2020)	T2	10.15.4	10.15 >	11.0 >
MacBookPro16,1	(16-inch Late 2019)	T2	10.15.1	10.15 >	11.0 >
MacBookPro15,4	(13-inch Mid 2019)	T2	10.14.5	10.14.6	11.0 >
MacBookPro15,1	(15-inch 2019)	T2	10.14.5	10.14.6	11.0 >
MacBookPro15,3	(15-inch 2019 Vega)	T2	10.14.5	10.14.6	11.0 >
MacBookPro15,3	(15″ Mid 2018 Vega)	T2	10.14.1	10.14.6	11.0 >
MacBookPro15,2	(13-inch Mid 2018)	T2	10.13.6	10.13.6	11.0 >
MacBookPro15,1	(15-inch Mid 2018)	T2	10.13.6	10.13.6	11.0 >
MacBookPro14,3	(15-inch Mid 2017)	T1	10.12.5	10.12.6	11.0 >
MacBookPro14,2	(13-inch Mid 2017)	T1	10.12.5	10.12.6	11.0 >
MacBookPro14,1	(13-inch Mid 2017)	T1	10.12.5	10.12.6	11.0 >
MacBookPro13,3	(15-inch Late 2016)	T1	10.12.1	10.12.6	11.0 >
MacBookPro13,2	(13-inch Late 2016)	T1	10.12.1	10.12.6	11.0 >
MacBookPro13,1	(15-inch Late 2016)	T1	10.12.1	10.12.6	11.0 >
MacBookPro11,5	(15-inch Mid 2015)		10.10.3	10.10.5	11.0 >
MacBookPro11,4	(15-inch Mid 2015)		10.10.3	10.10.5	11.0 >
MacBookPro12,1	(13-inch Early 2015)		10.10.2	10.10.5	11.0 >
MacBookPro11,3	(15-inch Mid 2014)		10.9.4	10.9.5	11.0 >
MacBookPro11,2	(15-inch Late 2013)		10.9.0	10.9.5	11.0 >
MacBookPro11,1	(13-inch Late 2013)		10.9.0	10.9.5	11.0 >
MacBookPro10,2	(13-inch Early 2013)		10.8.2	10.8.5	10.15 >
MacBookPro10,1	(15-inch Early 2013)		10.8.2	10.8.5	10.15 >
MacBookPro10,2	(13-inch Ret 2012)		10.7.4	10.7.5	10.15 >
MacBookPro10.1	(15-inch Ret 2012)		10.7.4	10.7.5	10.15 >
MacBookPro9,2	(13-inch Mid 2012)		10.7.3	10.7.5	10.15 >
MacBookPro9,1	(15-inch Mid 2012)		10.7.3	10.7.5	10.15 >
MacBookPro8,3	(17-inch Late 2011)		10.7.2	10.7.5	10.13.6
MacBookPro8,2	(15-inch Late 2011)		10.7.2	10.7.5	10.13.6
MacBookPro8,1	(13-inch Late 2011)		10.7.2	10.7.5	10.13.6
MacBookPro8,3	(17-inch Early 2011)		10.6.6	10.6.6*	10.13.6
MacBookPro8,2	(15-inch Early 2011)		10.6.6	10.6.6*	10.13.6
MacBookPro8,1	(13-inch Early 2011)		10.6.6	10.6.6*	10.13.6
MacBookPro7,1	(13-inch Mid 2010)		10.6.3	10.6.3*	10.13.6
MacBookPro6,2	(15-inch Mid 2010)		10.6.3	10.6.3*	10.13.6
MacBookPro6,1	(17-inch Early 2010)		10.6.3	10.6.3*	10.12.6
MacBookPro5,5	(13-inch Mid 2009)		10.5.7	10.5.7*	10.11.6
MacBookPro5,4	(15-inch Mid 2009)		10.5.7	10.5.7*	10.11.6
MacBookPro5,3	(15-inch Mid 2009)		10.5.7	10.5.7*	10.11.6
MacBookPro5,2	(17-inch Early 2009)		10.5.6	10.5.6*	10.11.6
MacBookPro5,1	(15-inch Late 2008)		10.5.5	10.5.5*	10.11.6
MacBookPro5,1	(17-inch Late 2008)		10.5.5	10.5.5*	10.11.6
MacBookPro4,1	(15-inch Early 2008)		10.5.2	10.5.2*	10.11.6
MacBookPro4,1	(17-inch Early 2008)		10.5.2	10.5.2*	10.11.6
MacBookPro3,1	(15-inch Late 2007)		10.4.9	10.4.9*	10.11.6
MacBookPro3,1	(17-inch Late 2007)		10.4.9	10.4.9*	10.11.6
MacBookPro2,2	(15-inch Late 2006)		10.4.8	10.4.8*	10.7.5
MacBookPro2,1	(17-inch Late 2006)		10.4.8	10.4.8*	10.7.5
MacBookPro1,2	(17-inch 2006)		10.4.5	10.4.5*	10.6.8
MacBookPro1,1	(15-inch 2006)		10.4.5	10.4.5*	10.6.8
*Available on	Reinstall DVD or CD

2. MacBook Air (2008-2020)

The MacBook Air was first introduced at Macworld San Fransisco by Steve Jobs on January 15th, 2008. For the 1st Generation from 2008-2010 the screen size was or a 13.3″ and included a Intel Core 2 Duo Processor. The Second Generation introduced in 2010 added an 11″ version. From 2017 on you could only get the 13″ Model. The 3rd Generation 13-inch MacBook Air was released in 2018.

Model Identifier	Machine Model	T1 T2	Ship OS	Oldest OS	Latest OS
MacBookAir9,1	(Retina, 13-inch, 2020)	T2	10.15.3	10.15>	10.15>
MacBookAir8,2	(Retina, 13-inch, 2019)	T2	10.14.5	10.14.6	10.15>
MacBookAir8,1	(Retina, 13-inch, 2018)	T2	10.14.1	10.14.6	10.15>
MacBookAir7,2	(Mid 2017)		10.12.6	10.12.6	10.15>
MacBookAir7,2	(13-inch Early 2015)		10.10.2	10.10.5	10.15>
MacBookAir7,1	(11-inch Early 2015)		10.10.2	10.10.5	10.15>
MacBookAir6,2	(13-inch Early 2014)		10.10.2	10.10.5	10.15>
MacBookAir6,1	(11-inch Mid 2013)		10.8.4	10.8.5	10.15 >
MacBookAir6,2	(13-inch Mid 2013 )		10.8.4	10.8.5	10.15 >
MacBookAir6,1	(11-inch Mid 2012)		10.7.4	10.7.5	10.15 >
MacBookAir5,2	(13″ EDU Mid 2012)		10.8.2	10.8.5	10.15 >
MacBookAir5,2	13-inch Mid 2012)		10.7.4	10.7.4*	10.15>
MacBookAir5,1	(11-inch Mid 2012)		10.7.4	10.7.4*	10.15 >
MacBookAir4,2	(13″ EDU Mid 2012)		10.7.3	10.7.4*	10.15 >
MacBookAir4,1	(11-inch Mid 2012)		10.7	10.7.4*	10.15 >
MacBookAir3,2	(13-inch Late 2010)		10.6.4	10.6.4*	10.13.6
MacBookAir3,1	(11-inch Late 2010)		10.6.4	10.6.4*	10.13.6
MacBookAir2,1	(13-inch Mid 2009)		10.5.7	10.5.7	10.11.6
MacBookAir2,1	(13-inch Late 2008)		10.5.5	10.5.5	10.11.6
MacBookAir1,1	(13-inch Early 2008)		10.5.1	10.5.1	10.11.6
*USB Installer

3. MacBook – (2006-2017)

This Section covers the original 2006 13-inch MacBook all the way to the 2017 12″ Version. The MacBook has seen 4 different designs since 2006. Gen 1 Polycarbonate (2006-2008), Gen 2 Aluminum Unibody (2008-2009). Gen 3 Polycarbonate Unibody (2009-2010) & Gen 4 12″ USB-C (2015-2017).

Model Identifier	Machine Model	Ship OS	Oldest OS	Latest OS
MacBook10,1	(Mid 2017)	10.12.5	10.12.6	10.15 >
MacBook9,1	(Early 2016)	10.11.4	10.11.6	10.15 >
MacBook8,1	(Early 2015)	10.10.2	10.10.6	10.15 >
MacBook7,1	(Unibody Mid 2010)	10.6.3	10.6.3 DVD	10.11.6
MacBook6,1	(Unibody Late 2009)	10.6.1	10.6.1 DVD	10.13.6
MacBook5,2	(White Mid 2009)	10.5.7	10.5.7 DVD	10.11.6
MacBook5,2	(13-inch C2D Early 2009)	10.5.6	10.5.6 DVD	10.11.6
MacBook5,1	(13-inch C2D Late 2008 Aluminum)	10.5.5	10.5.5 DVD	10.11.6
MacBook4,1	(13-inch C2D Early 2008)	10.5.2	10.5.2 DVD	10.7.5
MacBook3,1	(13-inch C2D Late 2007)	10.5	10.5 DVD	10.7.5
MacBook2,1	(13-inch C2D Mid 2007)	10.4.9	10.4.9 DVD	10.7.5
MacBook2,1	(13-inch C2D Late 2006)	10.4.8	10.4.8 DVD	10.7.5
MacBook1,1	(13-inch Core Duo 2006)	10.4.6	10.4.6 DVD	10.6.8

4. Mac Pro – (2006-2019)

The Mac Pro was first introduced at WWDC on August 7, 2006. It has seen 3 Generations from 2006-2019. Gen 1 “Cheese Grater” V1 (2006-2012), Gen 2 “Trash Can” (2013) & Gen 3 “Cheese Grater” V2 (2019).

Model Identifier	Machine Model	T1 T2	Ship OS	Oldest OS	Latest OS
MacPro7,1	(2019)	T2	10.5.1	10.15 >	10.15 >
MacPro6,1	(Late 2013)	NA	10.9.1	10.9.5	10.15 >
MacPro5,1	(2012 Server)	NA	10.7.4	10.7.5	10.14.6*
MacPro5,1	(Mid 2010)	NA	10.6.4	10.6.4 DVD	10.14.6*
MacPro4,1	(Nehalem 2009)	NA	10.5.6	10.6.6 DVD	10.11.6
MacPro3,1	(Eight Core 2008)	NA	10.5.1	10.5.1 DVD	10.11.6
MacPro2,1	(Eight Core 2007)	NA	10.4.9	10.4.9 DVD	10.7.5
MacPro1,1	(Quad Core 2006)	NA	10.4.7	10.4.7 DVD	10.7.5
*Metal Graphics	Video Card Required

5. iMac – (2006-2019)

The iMac was first introduced at an Apple Special Event at the Flint Center, Cupertino on May 6, 1998 by Steve Jobs. The First Intel Based iMac was introduced at Macworld Conference and Expo on January 10, 2006 by Steve Jobs. It has seen seven different designs since 1998.

Model Identifier	Machine Model	Ship OS	Oldest OS	Latest OS
iMac20,2	(5K, 2020; 5700/XT)	10.15.6	10.15.6	10.15>
iMac20,1	(27-Inch 5K, 2020)	10.15.6	10.15.6	10.15>
iMac19,2	(21.5-Inch 4k, 2019)	10.14.4	10.14.6	10.15 >
iMac19,1	(27-Inch 5k, 2019)	10.14.4	10.14.6	10.15 >
iMac18,3	(27-Inch 5k Mid-2017)	10.12.4	10.12.6	10.15 >
iMac18,2	(21.5-Inch 4k Mid-2017)	10.12.4	10.12.6	10.15 >
iMac18,1	(21.5-Inch Mid-2017)	10.12.4	10.12.6	10.15 >
iMac17,1	(27-Inch 5k, Late 2015)	10.11	10.11.6	10.15 >
iMac16,2	(21.5-Inch 4k. Late 2015)	10.11	10.11.6	10.15 >
iMac16,2	(21.5-Inch Late 2015)	10.11	10.11.6	10.15 >
iMac16,1	(21.5-Inch Late 2015)	10.11	10.11.6	10.15 >
iMac15,1	(27-Inch 5K, Mid-2015)	10.10.2	10.10.5	10.15 >
iMac15,1	(27-Inch 5k, Late 2014)	10.10	10.10.5	10.15 >
iMac14,4	(21.5-inch Mid 2014)	10.9.3	10.9.5	10.15 >
iMac14,3	(21.5-inch Late 2013)	10.8.4	10.8.5	10.15 >
iMac14,2	(27-inch Late 2013)	10.8.4	10.8.5	10.15 >
iMac14,1	(21.5-inch Late 2013)	10.8.4	10.8.5	10.15 >
iMac13,2	(27-Inch Late 2012)	10.8.2	10.8.5	10.15 >
iMac13,1	(21.5-inch Late 2012)	10.8.2	10.8.5	10.15 >
iMac12,1	(21.5-inch Late 2011)	10.7.2	10.7.5	10.13.6
iMac12,2	(27-inch Mid 2011)	10.6.6	10.6.6 DVD	10.13.6
iMac12,1	(21.5-inch Mid 2011)	10.6.6	10.6.6 DVD	10.13.6
iMac11,3	(27-inch Mid 2010)	10.6.3	10.6.3 DVD	10.13.6
iMac11,2	(21.5-inch Mid 2010)	10.6.3	10.6.3 DVD	10.13.6
iMac11,1	(27-inch Late 2009)	10.6.2	10.6.2 DVD	10.13.6
iMac10,1	(21.5-inch Late 2009)	10.6.1	10.6.1 DVD	10.13.6
iMac10,1	(27-inch Late 2009)	10.6.1	10.6.1 DVD	10.13.6
iMac9,1	(20-inch Mid 2009 EDU)	10.5.8	10.5.8 DVD	10.11.6
iMac9,1	(24-inch Early 2009)	10.5.6	10.5.6 DVD	10.11.6
iMac9,1	(20-inch Early 2009)	10.5.6	10.5.6 DVD	10.11.6
iMac8,1	(24-inch Early 2008)	10.5.2	10.5.2 DVD	10.11.6
iMac8,1	(20-inch Early 2008)	10.5.2	10.5.2 DVD	10.11.6
iMac7,1	(24-inch Mid 2007)	10.4.10	10.4.10 DVD	10.11.6
iMac7,1	(20-inch Mid 2007)	10.4.10	10.4.10 DVD	10.11.6
iMac6,1	(24-inch Late 2006)	10.4.7	10.4.7 DVD	10.7.5
iMac5,2	(17-inch Late 2006)	10.4.7	10.4.7 DVD	10.7.5
iMac5,1	(20-inch Late 2006)	10.4.7	10.4.7 DVD	10.7.5
iMac5,1	(17-inch Late 2006)	10.4.7	10.4.7 DVD	10.7.5
iMac4,2	(17-inch Mid 2006)	10.4.7	10.4.7 DVD	10.6.8
iMac4,1	(20-inch Early 2006)	10.4.4	10.4.4 DVD	10.6.8
iMac4,1	(17-inch Early 2006)	10.4.4	10.4.4 DVD	10.6.8

6. iMac Pro (2018)

The iMac Pro was introduced at WWDC on June 5, 2017.

Model Identifier	Machine Model	T2	Ship OS	Oldest OS	Latest OS
iMacPro1,1	(5k, 27-inch Late 2017)	T2	10.13.2	10.13.6	10.15 >

7. Mac Mini – (2006 -2018)

On January 10, 2005, the Mac mini was announced at the Macworld Conference & Expo by Steve Jobs. He said at the time the Mac Mini was “the cheapest, most affordable Mac ever”. The Intel Version was announced on February 28, 2006.

Model Identifier	Machine Model	T1 T2	Shipping OS	Oldest OS	Latest OS
Macmini8,1	(Late 2018)	T2	10.14	10.14.6	10.15 >
Macmini7,1	(Late 2014)	NA	10.10	10.10.5	10.15 >
Macmini6,2	(Late 2012 Server)	NA	10.8.2	10.8.5	10.15 >
Macmini6,2	(Late 2012)	NA	10.8.1	10.8.5	10.15 >
Macmini6,1	(Late 2012)	NA	10.8.1	10.8.5	10.15 >
Macmini5,3	(Mid 2011 Server)	NA	10.7	10.7.5	10.13.6
Macmini5,2	(Mid 2011)	NA	10.7	10.7.5	10.13.6
Macmini5,1	(Mid 2011)	NA	10.7	10.7.5	10.13.6
Macmini4,1	(Mid 2010 Server)	NA	10.6.4	10.6.4 DVD	10.13.6
Macmini4,1	(Mid 2010)	NA	10.6.4	10.6.4 DVD	10.13.6
Macmini3,1	(Late 2009 Server)	NA	10.6.1	10.6.1 DVD	10.11.6
Macmini3,1	(Late 2009)	NA	10.6.1	10.6.1 DVD	10.11.6
Macmini3,1	(Early 2009)	NA	10.5.6	10.5.6 DVD	10.11.6
Macmini2,1	(Mid 2007)	NA	10.4.10	10.4.10 DVD	10.7.5
Macmini1,1	(Late 2006)	NA	10.4.7	10.4.7 DVD	10.6.8
Macmini1,1	(Early 2006)	NA	10.4.5	10.4.5 DVD	10.6.8

8. Xserve – (2006-2009)

I almost forgot about Xserve. How could I forget about one of my favorite most reliable Macs ever created? The Xserve was introduced on May 14, 2002. The First Generation was based on a G4 Processor. The 2nd Generation was based on the G5 and the 3rd and final Generation was based on Intel’s Xeon Processor.

Model Identifier	Machine Model	Shipping OS	Oldest OS	Latest OS
Xserve3,1	(Quad Core Early 2009)	10.5.6 Server	10.5.6 Server DVD	10.11.6
Xserve2,1	(Eight Core Early 2008)	10.5 Server	10.5.0 Server DVD	10.7.5
Xserve1,1	(Quad Core Late 2006)	10.4.8 Server	10.4.8 Server DVD	10.7.5

If you have information for this page or find an error, please Contact Me.

Thank You!

https://everymac.com is the best source for Macintosh Hardware information on the internet!

upgrade or downgrade macOS

The Catalina 10.15.5 Update & 2020-003 Security Updates remove the software update –ignore ability for Major Updates. The –ignore flag for Minor Updates is now deprecated.

Table of Contents

1. UPDATES!

2. 10.15.5 & 2020-003 Update Changes.

3. Right now, this only affects macOS Mojave

4. What about High Sierra 10.13?

5. Blocking the 2020-003 Security Update

6. Catalina 10.15.5 Changes

7. How can we ignore Updates and Upgrades in the future? (10.15.4+)

8. System Preferences Icon Red Dot Notification

9. Don’t like this change? What can you do?

Security Updates 2020-003 for macOS 10.14 Mojave (18G5033) & 10.13 High Sierra (17G13033) are now Available.

WARNING!!! – If you use softwareupdate –ignore to block macOS Catalina.

How do I keep track of all the macOS Build Versions?

MacOS Mojave Security Update 2020-003 (18G5033)

MacOS High Sierra Security Update 2020-003 (17G13033)

Safari Update

T2 BridgeOS Update

Security Content for Safari 13.1.1

Previous Releases

Security Related Content for 2020-003

The macOS Catalina 10.15.5 Update 19F96 is now Available.

10.15.5 Patch Notes Summary

Apple’s Public Patch Notes / Release Notes Documentation

Previous 10.15 Releases + Previous Patch Notes

Catalina 10.15.5 Info & Download Links

Delta Update

Combo Update

Full Installer.app

T2 BridgeOS Update

Security Content for Safari 13.1.1

New Apple Support Documents

Catalina 10.15.5 Update 19F96 Overview

This update also includes bug fixes and other improvements.

Enterprise Fixes

Announcements

Security Content for 10.15.5

Two Different Types of FileVault 2 Recovery Keys

Why Would Would I Need to Change my Personal Recovery Key?

Reissue the FileVault 2 Recovery Key with FV2 Enabled Username and Password

Reissue the FileVault 2 Recovery Key using the Current Personal Recovery Key (PRK)

Running commands are great for 1 or 2 Macs, but what if I have to fix more than that?

Credits

Do you need to downgrade or upgrade macOS on your Mac? This page will show you the oldest and newest version of macOS that you can install on your Mac.

Internet Recovery Version

Fun Hardware Info

Updates

Index of Intel-Based Mac Hardware From (2006-2020)

1. MacBook Pro (2006-2020)

2. MacBook Air (2008-2020)

3. MacBook – (2006-2017)

4. Mac Pro – (2006-2019)

5. iMac – (2006-2019)

6. iMac Pro (2018)

7. Mac Mini – (2006 -2018)

8. Xserve – (2006-2009)