macOS-enterprise-privileges
macOS-enterprise-privileges copied to clipboard
[Feature Request] - Local Authentication with the PrivilegesCLI
When the RequireAuthentication
setting is enabled, PrivilegesCLI will prompt the user to enter their password by passing it through stdin when using the --add
switch.
As I am interested, and I'm sure others are as well, in creating custom workflows for temporary, on-demand privilege escalation, the only way to pass the user's credentials to authentication presently is through insecure AppleScript prompts that then passes it in cleartext to the command line.
I'm curious if it's possible (and if so - would love to have this feature realized) to leverage LAPolicy.deviceOwnerAuthentication within the CLI tool to create a prompt identical to the one that appears when requesting privileges through the Privileges GUI