Apologies in advanced if this is common knowledge, I mainly support our Windows environment but I’m wanting to learn more about EPM on Mac. Most of our Mac end users utilize an Active Directory group that we grant elevated privileges with. A discussion came up recently about Homebrew, and I asked our support techs the current process for when they swap out machines for developers on Mac. What I’m being told, is that possibly in the past EPM used to be able to allow standard users to install Homebrew via EPM for Mac however I’m being told Homebrew is incompatible with EPM for Mac. End users are being added as local admin as part of the process which I’m not understanding why.
If anyone has documentation, KB, or first-hand knowledge of using EPM for Mac and utilizing Homebrew without having to add users to local admin, it would be much appreciated.
Example of what I’m being told from my End User Computing support team about the troubleshooting cadence of Homebrew for elevated privileges users on Mac
“Is the user an admin?
Did they get the sudo must be elevated by an admin prompt when running the Homebrew code if they are an admin?
If you do a check in Terminal for "id" does their EP_ Active Directory group show in the list?
The Mac needs to recognize that an EP_ AD Group is provisioned too in the id results
If they are an admin on the Mac then it should run.
If they get the sudo elevation block then check for the EP_ group with the id command.”
