« Really Cisco? | Main | Really? We have to do this again »

Possible fix for can't authenticate installers bug

So, if you've had cases where you're trying to install/uninstall something, and you get the authentication dialog, you authenticate and...nothing. Repeated tries don't work. If you look in the logs, you see an error like:

AuthorizationExecuteWithPrivileges failed with status: -2129264641

I may have a fix. I'd been hitting this in both 10.6 and 10.7, and while upgrading to 10.8 seemed to fix it, that's not always an option. Today, I was looking at the file responsible for this, /usr/libexec/security_authtrampoline, and finally saw what I should have seen before: the file size was zero. Yeah, that'll do it.

So the steps to fix, (note, this is off my work wiki, so it's set up for someone without a lot of experience):

first, find a machine, preferably a server of the same major OS version, i.e. 10.6.x, 10.7.x. Then:

  1. scp the file from /usr/libexec to the the target machine:
         sudo scp /usr/libexec/security_authtrampoline zimmermanadmin@targetip:/Users/Shared
  2. On the target machine, delete the old zero-byte version
         sudo rm /usr/libexec/security_authtrampoline
  3. On the target machine, move the file to the right location:
         mv /Users/Shared/security_authtrampoline usr/libexec/security_authtrampoline
  4. On the target machine, set the ownership:
         sudo chown root:wheel usr/libexec/security_authtrampoline
  5. On the target machine, zero out the permissions so we know they'll be correct once we set them:
         sudo chmod 000 usr/libexec/security_authtrampoline
  6. On the target machine, set the owner permssions to read/write/execute, and enable the setuid bit:
         sudo chown u=+rwxs usr/libexec/security_authtrampoline
  7. On the target machine, set the group and world permissions to execute only:
         sudo chown go=+x usr/libexec/security_authtrampoline

At least in my tests, it's worked so far. Hopefully, this helps someone else out too.

Categories:     General Computing, Mac Matters, Technology
Posted by John C. Welch at 14:34 | Permalink

©2003-until I'm fucking dead and then some. you steal my shit, and I will fuck with you like you were a lonely shepherd's slowest sheep.


Comments

Warning for Notes users: The commenting system uses HTML.
I know this will be scary for some of you, especially Notes fans. However, open standards, rah-rah.
If you want to use less-than or greater-than signs, or other similar characters that HTML reserves,
you'll simply have to learn to do it the HTML way. Luckily, HTML is kind of popular, no matter what
your re-educators have told you, and you can easily find help on the intertubes.
digital.forest Where Internet solutions grow

There, a PayPal Button.

Bing
About the Author
How I do stuff on this site
Family
The Artwork of Melissa Findley
Diane Francis @ the National Post Eric Francis @ the Calgary Sun

BUY MY BOOK! BUY MY BOOK!
Non-DRM eBook PDF:
Get it direct from Peachpit!

Kindle Version:


Dead Tree Version:


Apple Amazon Links
Mac OS X Server 10.6 Snow Leopard

Mac OS X 10.6 Snow Leopard

Mac OS X 10.6 Snow Leopard Family Pack (5-User)

Amazon Book Links
Legacy of Ashes: The History of the CIA

The Donnas: Bitchin'

Wizards at War (The Young Wizards, Book 8)

The Demon's Sermon on the Martial Arts

The Collected Stories of Arthur C. Clarke

JavaScript and Ajax for the Web, Sixth Edition

Awakening Warrior: Revolution in the Ethics of Warfare

FOB Links

Mac Web Writers

Techie Links

Review Victims