Share this page!

timo Profile picture
Twitter logo
29 Apr, 9 tweets, 2 min read
Some very interesting findings for installing macOS on an M1 today by @RandomApps. As you may know, we lost the ability to run startosinstall in recovery on an M1. It turns out you can get back almost all the automation with a couple of carefully placed files. #macadmins
Turns out that the trick is getting the macOS installer to think it is migrate / install versus a fresh installation so that it will leave the first boot installers and scripts in place. Here is how it works:
Step 1: Erase M1 Mac. Boot to recovery and select Erase Mac…(if FV) or use Disk Utility to “Erase Mac” by deleting apfs container. Mac then reboots, erases the drive and boots back to recovery with empty apfs volumes. Prompts to activate Mac. Do so.
Step 2: Make the installer think it is an install/migrate. To do this, create 1 empty file and 1 empty folder on the empty target partition:

/S/L/CS/SystemVersion.plist
/var/db/dslocal/nodes/Default

Copy packages / launch daemon to install needed software at first boot.
Step 3: Run installer. This can be via the main recovery window with the macOS installer (slow) or an installer on an external drive (fast). Installer will see the file/folder and do a migrate instead of a new fresh install. It will also leave the packages/LaunchDaemon in place.
That’s it. When the installer completes, the mac will reboot and the first boot scripts will install packages, scripts, customization, configuration, whatever.
Note that this is a big change from using startosinstall in the booted OS since you needed to know the username / password of an existing admin user with a secure token to erase the mac. This new method doesn’t require that.
It means you can walk up to any m1 mac, and regardless of its state, erase, install, and configure it. You spend just a couple of minutes kicking off the process, and then you are done. 18-23 minutes later, you have a fresh m1 mac ready to be given out.
More testing is required with MDS, but this is an exciting development. It doesn’t give us back startosinstall in recovery, but it comes very close. It means you have to do an extra reboot and 4 extra clicks, but all that is upfront. Everything else is done without intervention.

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with timo

timo Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @tperfitt

timo Profile picture
11 Nov 19
In prep for the MDS 2 release, I created some new videos and postings for the new MDM service in MDS.
MDS 2 opens the door to doing some pretty cool setups. You can now do user enrolled MDM as well as Device Enrollment via Apple Business Manager and Apple School Manager.
There are 3 major scenarios when deployment:

1. Set everything up ahead of time
2. Setup of an existing Mac (user approved MDM)
3. Setup of a new Mac (Device Enrollment in the Setup Assistant)
Read 12 tweets
timo Profile picture
23 Feb 18
So it looks like this happened on the way to the current macOS imaging state we are in:

(thread)

1. Firmware updates were bundle with OS updates

2. Monolithic imaging doesn’t run the OS installer, so firmware updates don’t get applied.
3. Monolithic imaging of the same OS version doesn’t require firmware updates (since that same installer would have applied the firmware updates previously). Hence the “reinstall macOS” caveat.

#macadmins #macimaging
4. The iMac Pro has a co-processor (the T2) that runs the iBridgeOS, which is a custom version of iOS. iBridgeOS can update itself over a network and boots the macOS, assuring the firmware is updated. Hence the network requirement.

#MacAdmin #macimaging
Read 5 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!

Follow Us on Twitter!

Like this author's thread?

Get emails when @tperfitt has new unrolls!

Check out other threads from @tperfitt!

Read all threads by @tperfitt