In the tables below, the following icons have the following meanings:
- - Moonshot is available for this version of macOS through an installer package and has been tested and verified as working.
- - Moonshot has unofficially been tested on this version of macOS, but an installer package does not exist for it.
- - Moonshot is not available for this version of macOS, or is known not to work (at least, not without a large amount of custom work).
- - Moonshot has not been tested on this version of macOS yet. Let us know if you have tried it!
The information in this section is subject to our software support policy.
|macOS 10.13 High Sierra||We intend to fully support macOS 10.13 in mid- to late 2018. Self-build instructions are here.|
|macOS 10.12 Sierra||We intend to fully support macOS 10.12 in mid- to late 2018. Self-build instructions are here.|
|Mac OS X 10.11 El Capitan|
We intend to fully support Mac OS X 10.11 in mid- to late 2018. Self-build instructions are here.
|Mac OS X 10.10 Yosemite or earlier||We have tested the basic mechanism on Mac OS X 10.10, but we do not support this version of OS X or earlier.|
3.1. Setting the default path
The newer versions of macOS use sandboxing. This means that most Unix binaries in /usr/bin will not load external GSSAPI mechanisms other than the approved Apple versions inside the sandbox.
To resolve this, as the super user, copy the binary in question to
/usr/local/bin which is outside the designated sandbox, then adjust the
/etc/paths file to refer to
/usr/local/bin first. That way the non-sandboxed version of the binary will be found and loaded first.
3.2. Credential file
macOS support currently uses the
.gss_eap_id file in your home directory.
.gss_eap_idfile in your user's home directory:
Sample Camford .gss_eap_id
This file shows a sample .gss_eap_id file used with a Camford credential