macOS updates improve the stability, performance or compatibility of your device and are recommended for all users. Device administrators can manage software updates using a Mobile Device Management (MDM) solution.
For information about general improvements, find out about updates to macOS Sonoma.
For details about the security content of these updates, see Apple Security Updates.
macOS Sonoma 14.1
- Continuity features can be used with Managed Apple IDs.
- The new Lockdown Mode and macOS Sonoma wallpaper setup panes can be skipped using MDM.
- SMB share contents are correctly shown when using Distributed File System (DFS).
- MDM no longer fails to install enterprise apps after installing an App Store app.
- Software Update no longer displays a “required managed update” notification when no updates are available.
macOS Sonoma 14.0
macOS Sonoma includes new features such as declarative device management for software updates, account-driven enrolment and enhancements to Managed Apple IDs.
Device Management
- MDM can enforce software updates by a certain date and time, and users get additional information in System Settings when an update is requested and when it’s enforced.
- Automated Device Enrolment can be enforced after Setup Assistant.
- MDM can enable account-driven User Enrolment and account-driven Device Enrolment to allow users to enrol their Mac using their Organisation ID in System Settings. Profile-based User Enrolment is deprecated and will be removed in a future release.
- The notification that requests the user enrol in MDM is replaced with a full-screen Setup Assistant experience for a Mac using Automated Device Enrolment.
- New features in platform single sign-on.
- Enhancements to password requirement enforcement.
- MDM can granularly restrict more individual settings in System Settings.
- MDM can require admin users to turn on FileVault during Setup Assistant.
- macOS now supports Managed Device Attestation.
- Declarative device management can manage a set of configurations for some built-in services.
- New declarations support the deployment of certificates and identities.
- A new built-in network relay supports secure and transparent tunnelling of traffic as an alternative to using VPN when accessing internal resources.
- MDM can set the order in which transparent proxy extensions handle network traffic.
- macOS now supports the creation of hardware-bound private keys for certificates issued using the ACME protocol.
- Screen sharing capabilities are improved between Mac computers with Apple silicon over high-bandwidth connections.
Bug fixes and other improvements
- Apple devices now support connection to your organisation’s 802.1X networks using EAP-TLS with TLS 1.3.
- A Mac running macOS Sonoma can revive or restore a USB-tethered Mac in DFU mode using Finder.
- Removing
/private/var/db/.AppleSetupDoneno longer relaunches Setup Assistant if a local user already exists on the Mac. Erase All Contents and Settings can reset the device and launch Setup Assistant. - The deprecated audit subsystem is disabled by default in macOS Sonoma. See the
auditdmanual page for details. - Touch ID can be allowed for
sudowith a configuration that persists across software updates using/etc/pam.d/sudo_local. See/etc/pam.d/sudo_local.templatefor details. - Resolved an issue where Exchange events failed to sync in Calendar for some users.