• Install Macos Big Sur On Unsupported Mac
• Mac Mini 2012 Big Sur
• Install Macos Big Sur On Unsupported Mac

This advisory describes the changes and steps administrators can take to deploy Mac Connector 1.14.

May 07, 2020 How to Install macOS Catalina on Unsupported Mac; With these much problems that are for Mac users, Windows users might not even think of getting Mac or MacOS somehow. But that’s not true. With all those problems, there’s still some workaround in the underground to make it work. That is install macOS Mojave on Windows.

1. How to keep older Macs secure: a geeky approach (run Catalina on unsupported Macs) Posted on October 8th, 2019 by Jay Vrijenhoek. Note: This article was originally written for macOS Mojave, and has been adapted for macOS Catalina. From a security standpoint, using the latest version of macOS—the Mac operating system—is always preferred.
2. Allow the installation to proceed and the relevant patches will be applied to your unsupported Mac automatically. Apple could always release a future update to macOS 10.15 that prevents the.

How to upgrade to Big Sur on an unsupported Mac. As we said earlier, the specifics of how you install Big Sur on an older Mac vary according to the Mac, but there are lots of success stories in this thread. One example is the user who installed the Big Sur beta on a 2012 15in MacBook Pro, and it ran well apart from Wi-Fi not working. Patched Sur is a UI patcher for macOS Big Sur, designed to make it easy to run macOS 11 on unsupported Macs. This patcher hopes to allow any user of any knowledge to patch their Mac, while still giving you freedom on how you want to use your Mac. Patched Sur isn't just by me (Ben), I mostly put it.

Mac Connector version 1.14 introduces a number of changes that require user attention. Most notably, this Connector release includes changes to full disk access approvals and adds support for macOS 11 (Big Sur) System Extensions.
Since the inital 1.14 launch, compatibility issues have been discovered with 3rd party applications on macOS 10.15 Catalina when system extensions are in use. Apple will be addressing these issues in future releases of macOS 11 but will not be fixing these issues in macOS 10.15. Consequently, starting with version 1.14.1, the Mac Connector will use legacy kernel extensions instead of system extensions on all versions of macOS 10.15.
Mac Connector 1.14 is required to ensure endpoint protection on macOS 11. Older Mac Connectors will not work on this version of macOS.
It is highly recommended to deploy the Mac Connector with an MDM profile that grants the required approvals. MDM profiles must be installed before installing or upgrading the Mac Connector to ensure the needed permissions are recognized. Refer to the Known Issues section later in this document if MDM cannot be used.

Minimum OS Requirements

AMP for Endpoints Mac Connector 1.14.0 supports the following macOS versions:

• macOS 11, using macOS system extensions.
• macOS 10.15.5 and later, using macOS system extensions.
• macOS 10.15.0 through macOS 10.15.4, using macOS kernel extensions
• macOS 10.14, using macOS kernel extensions.

AMP for Endpoints Mac Connector 1.14.1 supports the following macOS versions:

• macOS 11, using macOS system extensions.
• macOS 10.15 using macOS kernel extensions.
• macOS 10.14, using macOS kernel extensions.

For deployments that include endpoints running older macOS versions, consult the OS Compatibility Table for compatible Mac Connector versions.

Important Changes

Mac Connector 1.14 introduces important changes in three areas:

1. Approving AMP macOS Extensions to load
2. Full Disk Access
3. New Directory Structure

Approving Mac Connector macOS Extensions

The Mac Connector uses either System Extensions or legacy Kernel Extensions to monitor system activities, depending on the macOS version. On macOS 11, System Extensions replace the legacy Kernel Extensions that are unsupported in macOS 11. User approval is required on all versions of macOS before either type of extension is allowed to run. Without approval, certain Connector functions such as on-access file scan and network access monitoring will be unavailable.

Mac Connector 1.14 introduces two new macOS system extensions:

1. An Endpoint Security extension, named AMP Security Extension, to monitor system events
2. A Network Content Filter extension, named AMP Network Extension, to monitor network access

The two legacy Kernel Extensions, ampfileop.kext and ampnetworkflow.kext, are included for backwards compatibility on older macOS versions that don't support the new macOS System Extensions.

The following approvals are required for macOS 11** and later:

• Approve AMP Security Extension to load
• Approve AMP Network Extension to load
• Allow AMP Network Extension to filter network content

** Mac Connector version 1.14.0 also required these approvals on macOS 10.15. These approvals are no longer required on macOS 10.15 when running Mac Connector 1.14.1 or later.

The following approvals are required for macOS 10.14 and macOS 10.15:

Install Macos Mojave On Unsupported Mac

• Approve AMP Kernel Extensions to load

These approvals can be granted using the macOS Security & Privacy Preferences on the endpoint, or by using Mobile Device Management (MDM) profiles.

Approving Mac Connector macOS Extensions at the Endpoint

System and Kernel extensions can be approved manually from the macOS Security & Privacy Preferences pane.

Approving Mac Connector macOS Extensions using MDM

NOTE: macOS Extensions cannot be retroactively approved via MDM. If the MDM profile is not deployed prior to installing the Connector then the approvals will not be granted and additional intervention will be required in one of the following forms:

1. Manual approval of the macOS Extensions on endpoints that had the management profile deployed retroactively.
2. Upgrading the Mac Connector to a newer version than the one currently deployed. Endpoints that had themanagement profile deployed retroactively will recognize the management profile after upgrade and gain approval once the upgrade completes.

AMP extensions can be approved using a management profile with the following payloads and properties:

Payload	Property	Value
SystemExtensions	AllowedSystemExtensions	com.cisco.endpoint.svc.securityextension, com.cisco.endpoint.svc.networkextension
	AllowedSystemExtensionTypes	EndpointSecurityExtension, NetworkExtension
	AllowedTeamIdentifiers	DE8Y96K9QP
SystemPolicyKernelExtensions	AllowedKernelExtensions	com.cisco.amp.fileop, com.cisco.amp.nke
	AllowedTeamIdentifiers	TDNYQP7VRK
WebContentFilter	AutoFilterEnabled	false
	FilterDataProviderBundleIdentifier	com.cisco.endpoint.svc.networkextension
	FilterDataProviderDesignatedRequirement	anchor apple generic and identifier 'com.cisco.endpoint.svc.networkextension' and (certificate leaf[field.1.2.840.113635.100.6.1.9] /* exists */ or certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = DE8Y96K9QP)
	FilterGrade	firewall
	FilterBrowsers	false
	FilterPackets	false
	FilterSockets	true
	PluginBundleID	com.cisco.endpoint.svc
	UserDefinedName	AMP Network Extension

Full Disk Access

MacOS 10.14 and later require approval before an application can access parts of the filesystem that contain personal user data (e.g. Contacts, Photos, Calendar, and other applications). Certain Connector functions such as on-access file scan will be unable to scan these files for threats without approval.

Previous Mac Connector versions required the user to grant Full Disk Access to the ampdaemon program. Mac Connector 1.14 requires Full Disk Access for:

• 'AMP for Endpoints Service' and
• 'AMP Security Extension'

The ampdaemon program no longer requires Full Disk Access starting with this new Mac Connector version.

Full Disk Access approvals can be granted using the macOS Security & Privacy Preferences on the endpoint, or by using Mobile Device Management (MDM) profiles.

Approving Full Disk Access at the Endpoint

Full Disk Access can be approved manually from the macOS Security & Privacy Preferences pane.

Approving Full Disk Access Using MDM

NOTE: macOS Extensions cannot be retroactively approved via MDM. If the MDM profile is not deployed prior to installing the Connector then the approvals will not be granted and additional intervention will be required in one of the following forms:

1. Manual approval of the macOS Extensions on endpoints that had the management profile deployed retroactively.
2. Upgrading the Mac Connector to a newer version than the one currently deployed. Endpoints that had the management profile deployed retroactively will recognize the management profile after upgrade and gain approval once the upgrade completes.

Full Disk Access can be approved using a management profile's Privacy Preferences Policy Control payload with a SystemPolicyAllFiles property with the following two entries, one for the AMP for Endpoints Service and one for the AMP Security Extension:

Description	Property	Value
AMP for Endpoints Service	Allowed	true
	CodeRequirement	anchor apple generic and identifier 'com.cisco.endpoint.svc' and (certificate leaf[field.1.2.840.113635.100.6.1.9] /* exists */ or certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = DE8Y96K9QP)
	Identifier	com.cisco.endpoint.svc
	IdentifierType	bundleID
AMP Security Extension	Allowed	true
	CodeRequirement	anchor apple generic and identifier 'com.cisco.endpoint.svc.securityextension' and (certificate leaf[field.1.2.840.113635.100.6.1.9] /* exists */ or certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = DE8Y96K9QP)
	Identifier	com.cisco.endpoint.svc.securityextension
	IdentifierType	bundleID

If your deployment includes computers running AMP Connector version 1.12.7 or older, the following additional entry is still required to grant full disk access to ampdaemon for those computers:

Description	Property	Value
ampdaemon	Allowed	true
	CodeRequirement	identifier ampdaemon and anchor apple generic and certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = TDNYQP7VRK
	Identifier	/opt/cisco/amp/ampdaemon
	IdentifierType	path

New Directory Structure

Mac Connector 1.14 introduces two changes to the directory structure:

1. The Applications directory has been renamed from Cisco AMP to Cisco AMP for Endpoints.
2. The command-line utility ampcli has been moved from /opt/cisco/amp to /Applications/Cisco AMP for Endpoints/AMP for Endpoints Connector.app/Contents/MacOS. The directory /opt/cisco/amp contains a symlink to the ampcli program at its new location.

The complete directory structure for the new AMP Connector is as follows:

Known Issues with macOS 11.0 and Mac Connector 1.14.1.

• Guidance for fault 10, 'Reboot required to load kernel module or system extension,' may be incorrect if four or more Network Content Filters are installed on the computer. Refer to the AMP For Endpoints Mac Connector Faults article for more details.

Known Issues with macOS 10.15/11.0 and Mac Connector 1.14.0.

• Some faults raised by the Mac Connector may be raised unexpectedly. Refer to the AMP For Endpoints Mac Connector Faults article for more details.
  • Fault 13, Too many Network Content Filter system extensions, may be raised after upgrading. Rebooting the computer will resolve the fault in this situation.
  • Fault 15, System Extension requires Full Disk Access, may be raised after reboot due to a bug in macOS 11.0.0. This issue is fixed in macOS 11.0.1. The fault can be resolved by re-granting full disk access in the Security & Privacy pane in macOS System Preferences.
    
• During installation, the Security & Privacy pane may display 'Placeholder Developer' as the application name when granting permission for the Mac Connector system extensions to run. This is due to a bug in macOS 10.15. Check the boxes beside 'Placeholder Developer' to allow the Mac Connector to protect the computer.
  
  • The systemextensionsctl listcommand can be used to determine which system extensions are awaiting approval. System extensions with the state [activated waiting for user]in this output are displayed as 'Placeholder Developer' in the macOS preferences page shown above. If more than two 'Placeholder Developer' entries are showin in the above preferences page, uninstall all software that uses system extensions (including the Mac Connector) so that no system extensions are awaiting approval, and then reinstall the Mac Connector.
    The Mac Connector sysem extensions are identified as follows:
    
    • The Network Extension is shown as com.cisco.endpoint.svc.networkextension.
    • The Endpoint Security extension is shown has com.cisco.endpoint.svc.securityextension.
      
• During install, the prompt to allow the Mac Connector's Content Filter to monitor network traffic may display '(null)' as the application name. This is caused by a bug in macOS 10.15. The user needs to select 'Allow' to to ensure protection of the computer.
  If the prompt was dismissed by clicking 'Don't Allow' it can be displayed again by clicking the AMP Agent menulet icon in the menu bar and selecting 'Allow Network Filter.'
  Once enabled, the AMP Network Extension filter will be listed in the Network Preferences page.
  
• On macOS 11, when upgrading from Mac Connector 1.12 to Mac Connector 1.14, Fault 4, System Extension Failed to Load, may be raised temporarily while the Connector is transitioning from the kernel extensions to the new system extensions.

Revision History

Dec 1, 2020

• Mac Connector 1.14.1 no longer uses system extensions on macOS 10.15.
• Additional guidance on using terminal check which 'Placeholder Developer' System Extensions are awaiting approval when using Mac Connector 1.14.0.

Nov 9, 2020

• Corrected bundle ID in full disk access CodeRequirement MDM payload.

Nov 3, 2020

• Release date for 1.14.0 Mac Connector is November 2020.
• The 1.14.0 Mac Connector will use System Extensions starting with macOS 10.15.5. Previously this was 10.15.6.
• Added Known Issues section.
• Updated directory structure outline.

Carbon Copy Cloner requires macOS. CCC will not run on Windows.

Carbon Copy Cloner 5 is the latest version available. Users running Yosemite (10.10), El Capitan (10.11), Sierra (10.12), High Sierra (10.13), Mojave (10.14), or Catalina (10.15) should use this version of CCC. If you are having trouble downloading CCC from the link above, try this alternate download location.

Upgrading from CCC 4? CCC 5 is a paid upgrade. CCC 4 Personal and Household licenses purchased prior to May 22, 2017 are eligible for upgrade pricing. When you open CCC 5, it will automatically retrieve your new license or an upgrade coupon that you can use to purchase CCC 5 at 50% off. CCC 4 licenses purchased on or after May 22, 2017 are eligible for a free CCC 5 upgrade license.

CCC 5: Support for macOS 11 Big Sur

CCC 5.1.22 (and later) is qualified for macOS 11 Big Sur. Open CCC and choose 'Check for updates..' from the Carbon Copy Cloner to get the update, or click the 'Download CCC 5' button above. Please take a moment to review the following resources prior to upgrading to macOS Big Sur:

Macos Mojave On Unsupported Mac

Carbon Copy Cloner 4.1.24 is compatible with Mountain Lion (10.8), Mavericks (10.9), Yosemite (10.10), El Capitan(10.11), Sierra (10.12) and High Sierra (10.13). Note that while this version of CCC may work on El Capitan and newer OSes, we recommend that El Capitan+ users upgrade to CCC 5. We offer technical support for CCC 4, but we are no longer actively developing it. If you are having trouble downloading CCC from the link above, try this alternate download location.

Install Macos Mojave On Unsupported Mac

CCC 4 and Mojave+: CCC 4 is qualified up to macOS High Sierra. CCC 4 license holders are welcome to continue using CCC 4 on later OSes with the understanding that this is an untested and unsupported configuration. CCC 5 is fully qualified on macOS Mojave and offers extensive support for APFS, including support for point-in-time restores via APFS filesystem snapshots.

Install Macos Mojave On Unsupported Macs

Unsupported Versions

Macos 10.14 Mojave On Unsupported Macs Thread

Download CCC 3.5.7 for use on Snow Leopard (10.6) and Lion (10.7). Download CCC 3.4.7 for use on Tiger (10.4) and Leopard (10.5). CCC 3.4.7 and 3.5.7 are provided as-is; we regret that we cannot offer any support for the installation or use of these older versions of CCC.

If you’re using macOS Mojave or later, choose Apple menu System Preferences, then click Software Update. If you’re using an earlier macOS, use the App Store instead. Learn how to download and install macOS Big Sur Go to the App Store. Upgrade os x mojave. Feb 05, 2021 macOS Mojave 10.14 can upgrade High Sierra, Sierra, El Capitan, Yosemite, Mavericks, Mountain Lion macOS High Sierra 10.13 can upgrade Sierra, El Capitan, Yosemite, Mavericks, Mountain Lion Safari downloads the following older installers as a disk image named InstallOS.dmg or InstallMacOSX.dmg.

Apple often removes support for newer macOS version for older hardware. Even if this hardware would be perfectly capable of running the new version, you are out of luck and will not be able to install that new version in a supported way. Fortunately in most cases there is a workaround or patch available to get that version up and running. In this article, I’ll go through the process of creating a bootable USB drive which allows installation of macOS Big Sur on unsupported models. This allows for both a fresh installation or an upgrade.

YouTube Video

If you are interested, I also created a YouTube video from this blogpost. If you prefer classic text, you can just follow the rest of this article:

It’s never nice to hear that a new version of macOS will not longer be supported on your Mac. Especially if the system specifications clearly show that it has plenty of resources to run that unsupported version. Apple has its reasons to stop support for older models. It simply requires quite a lot of extra work and it also motivates people to buy new hardware.

In some cases there are genuine hardware limitations. For example, since Mojave there is a requirement to have a Metal-supported video card. Or you might simply not have enough RAM or a CPU which is too slow. In that case, even though it’s still possible to install the unsupported version, you will not be happy with the results.

Install Macos Big Sur On Unsupported Mac

To end up with a patched Big Sur installation, there are a few possible options. For this article, I will use MicroPatcher, made by BarryKN (https://github.com/barrykn/big-sur-micropatcher). Alternatively there is also Big Mac (https://github.com/StarPlayrX/bigmac).

These patchers require quite a lot of reading and consideration in order to end up with a proper USB drive for installation. Fortunately, there is also MicroPatcherAutomator (https://github.com/moosethegoose2213/automator-for-barrykn-micropatcher). This project greatly simplifies the work and introduces a GUI that can be used to create the media.

The installation will require a USB drive of 16GB or larger. So start by inserting the drive and start Disk Utility. In Disk Utility, choose to show all devices:

Select your USB drive on the left side, then click erase in the top menu:

Choose a name for the drive, Mac OS Extended (Journaled) as file systen and GUID as partition scheme. Then click Erase.

If all goes well, your USB drive should be prepared and you are ready for the next step.

Now that the USB drive is prepared, we can download the tool which we will use for the rest of the process.

Download the latest version of the tool using the following link: https://github.com/moosethegoose2213/automator-for-barrykn-micropatcher/releases/download/v2.0/MicropatcherAutomator.dmg and once downloaded, open the DMG file.

When the DMG opens, you will see a singel icon/program in it with a hedgehog as logo. Right click on it and choose open.

Click Open on the warning regarding an unverified developer and click Continue to go to the next screen in the tool:

Here you basically get to choose if you want to use a pre-downloaded installer or just download a fresh copy of the Big Sur installer. I chose for the second option: “Download Installer App”. Click Continue and enter your password in order to continue with the download:

It can take quite some time to complete. After all, it’s a ~12,5GB download. Once done, the tool will ask if you want to use this downloaded installer to create a patched USB drive. Which we obviously do want:

In the next screen, select the volume to use for the installer. Here its important to select the name of the volume which we used when preparing the USB drive in the first step (with Disk Utility). In my case this was “bigsurinstall”:

Continue with the process and enter your password again when requested. MicroPatcherAutomator will now copy all files to the USB drive and make the necessary changes related to the patching process. In my case this took around 50 minutes to complete:

If all goes well, and you were patient enough, you should end with the following screen:

Mac Mini 2012 Big Sur

Now that we should have a working USB drive, it is time to test it. As suggested in the last step of MicroPatcherAutomator, we need to restart our Mac (or at least the Mac where you want to install Big Sur) and boot it while holding the Option/Alt key.

After the chime, the bootloader should show up and you should be able to see the following:

The first icon (1TB) is my currently installed macOS instance. The other two, the icon with the hedgehog and the USB-drive icon are coming from our patched USB drive.

Here it is important to first launch the last icon (EFI Boot). Once you do this, the system will immediately power off. This is expected and prepares for the next step. If you skip this step, you will end up with a forbidden sign at boot in the next step.

Repeat the process and hold the Alt/Option key while powering on your system again. This time, instead of selecting the EFI Boot option, choose the middle one: “Install macOS Big Sur”.

This will boot the installer from the USB drive and once completed you end up in Recovery:

Unfortunately it’s not very visible on the screenshot but as you can see there is an additional option to be found here: Post-InstallAutomator. This is one of the things that were done by the Automator tool and once Big Sur is installed, we will need to execute this as well.

Before we can install Big Sur, we can format the hard drive to prepare, so choose Disk Utility from the menu. In Disk Utility, choose to select all devices (similar as when preparing the USB drive), then select your hard drive (or SSD) on the left and click Erase. This time, after giving your disk a name, choose for AFPS as file system and click Erase to continue:

After the formatting is completed, close Disk Utility and select the Install macOS Big Sur option from the menu:

Install Macos Big Sur On Unsupported Mac

Click Continue, accept the license agreement and select the freshly formatted drive as destination on where to install macOS.

From here on, you can again take a coffee (or similar) as the installation can take quite some time. If all goes well, you should see the following screen after a series of reboots:

Navigate through the questions here to end up with the Big Sur desktop.

Having a look at About this Mac shows the following:

You might notice that the model is shown as a generic iMac. This will not really allow you to install any updates. Also, and probably more important: not all hardware is working as expected yet. In my experience mainly networking was not available right after the installation:

As mentioned earlier, if you remember, there was an added option in the recovery menu after booting from the USB drive. This is exactly what this is for.

So repeat the whole process to boot from the USB drive (restart, hold Alt/Option and select Install macOS Big Sur, no need to first choose the EFI Boot option). In the recovery menu, this time, select Post-install Automator.

This will start a dialog where you can select the Volume where you installed Big Sur. This is the name you chose when formatting your HD/SSD before installing. 1TB in my case:

Click Continue and let the tool make the necessary changes to your installation.

If all goes well, you will be asked to perform a reboot and after that, all hardware should be availableand you can connect to a network to visit your favorite website:

After patching, we can see that the model is now shown correctly and updates will be presented for installation: