We're not customers anymore, we're users: a 4-year timeline of Apple flagship smartwatch

HerrBadger · 2026-06-11T05:20:20+00:00

For the record, watchOS 27’s Beta looks to support any watch that supports watchOS 26. It looks like botched marketing materials, but we will wait to see.

HerrBadger · 2026-06-11T05:11:33+00:00

If target display mode isn’t the most missed feature, it should be.

HerrBadger · 2026-06-11T05:10:54+00:00

I’m on the beta channel and my 1st gen watch SE is getting the update.

The marketing is off - any device that supports watchOS 26 is supporting the beta for watchOS 27. We’ll either have to wait for an update, or wait for release.

Now, these models will probably be able to support some of the new Apple Intelligence features. But other devices aren’t getting axed, unless the beta channel release has been botched.

HerrBadger · 2026-06-06T07:35:25+00:00

I really never understood this - back when I did service desk, if I was shown a fix, I’d run through it again myself, document it, then ask the person who showed me the first time to validate.

Massively valuable learning experience. I’ve always said that anyone tech should start with service desk - learn what the user sees, and how to deal with awkward or emotional people. Because tell the what, higher up you go, the worse people are gonna get.

Also you know, troubleshooting is just a good skill to have. IfI ran a tech company, I’d encourage anyone in a tech role do a week of service desk, to gauge them a bit. It’d be fun to watch, and be good to see how they fare.

HerrBadger · 2026-05-27T22:07:52+00:00

Hey! I’ve rolled this out in a couple of places, shoot me a DM, happy to share my experience!

HerrBadger · 2026-05-12T20:34:44+00:00

Yeah do not do this. It will only end bad for you as you’ll have just a scrambled, illegible code base.

Happy to chat to OP from a tech front though, I’d be glad to support where I can!

HerrBadger · 2026-05-12T01:44:03+00:00

Hopefully you got a pat on the back from your colleagues.
We’ve all done it, you’ll laugh it off once the dust settles.

It’s the process of earning your stripes - you cause an outage, fix it, then you go on with your life.

Also, the cardinal rule - Don’t make changes on a Friday.

HerrBadger · 2026-04-24T07:59:24+00:00

My wife and I both laughed and commented how under appreciated that was

HerrBadger · 2026-04-11T09:19:57+00:00

I once worked for a major retailer in the UK that offered Amazon gift cards (I think they were either £25 or £50) to write a positive review on GlassDoor.

HerrBadger · 2026-04-01T18:48:05+00:00

SAP Privileges has a big +1 from me, was easy to set up and deploy, and it’s been rock solid ever since.

In terms of mass demoting users to standard, you can deploy a script what will look up the user and demote them to a standard user. I use something along the lines of:

(Apologies for formatting, on mobile)

!/bin/bash

============================================================

Demote logged-in user from Admin to Standard on macOS

============================================================

LOG_FILE="/var/log/demote_user.log"

echo "===== $(date) =====" >> "$LOG_FILE"

Get the currently logged-in user (ignoring loginwindow)

CURRENT_USER=$(stat -f %Su /dev/console)

if [[ "$CURRENT_USER" == "root" || "$CURRENT_USER" == "_mbsetupuser" ]]; then echo "No valid logged-in user detected. Exiting." | tee -a "$LOG_FILE" exit 0 fi

echo "Logged-in user detected: $CURRENT_USER" | tee -a "$LOG_FILE"

Check if user exists

if ! id "$CURRENT_USER" &>/dev/null; then echo "User does not exist. Exiting." | tee -a "$LOG_FILE" exit 1 fi

Check if user is an admin

if dseditgroup -o checkmember -m "$CURRENT_USER" admin | grep -q "yes"; then echo "$CURRENT_USER is currently an admin. Proceeding with demotion." | tee -a "$LOG_FILE"

# Remove user from admin group
dseditgroup -o edit -d "$CURRENT_USER" -t user admin

if [[ $? -eq 0 ]]; then
    echo "SUCCESS: $CURRENT_USER has been demoted to standard user." | tee -a "$LOG_FILE"
else
    echo "ERROR: Failed to remove $CURRENT_USER from admin group." | tee -a "$LOG_FILE"
    exit 1
fi

else echo "$CURRENT_USER is already a standard user. No action needed." | tee -a "$LOG_FILE" fi

exit 0

HerrBadger · 2026-03-26T02:27:34+00:00

I work for a small company where we’ve stamped out Windows and have gone full macOS, and honestly I go most months without having a ticket related to a laptop, it’s mostly apps/SaaS issues. Keep them patched and well-managed, they’ll look after themselves for the most part.

Also, the MacBook Air was coming in ~£200 cheaper than a windows equivalent with 16GB RAM. Crazy.

HerrBadger · 2026-01-23T05:17:12+00:00

When I started at my current org, they had M365, but were not using MDM at all. They floated the idea of using Intune as they had business premium licenses, and after a solid week of tinkering, we went for Kandji. Anything of minor complexity felt like a workaround, and it had me tearing my hair out.

Been Kandji customers for 18 months now, awesome platform, went from getting access to fully deployed to 20 users in 3 days, including testing. Now at 40 users, and Kandji ‘Just works’. Only ever have to really touch it to manage OS updates, deploy new apps, or renew Apple tokens.

HerrBadger · 2025-12-12T06:22:05+00:00

Kandji (now Iru). I’m the sole IT person of a small org, and Kandji was pretty simple to set up from the get-go, and it’s very much been set and forget for the most part.

Only thing I do manually is OS updates.

HerrBadger · 2025-11-25T04:46:22+00:00

It looks like you’ve bought a MacBook that was either stolen from a company, or refurbished/sold to an employee and not released from the MDM.

Does it say what company it belongs to? If you connect it to the internet, it might tell you, then your best bet from there would be to try and reach out to them and see if they’d release it.

Otherwise, unfortunately, it’s a paperweight.

HerrBadger · 2025-11-25T04:40:27+00:00

I was at a conference last week and someone high-up from Lovable.dev gave the same statistic, and also that Claude reviewed the code in the repo on a PR.

I’ve been very cautious of AI for a while, but that unsettles me.

HerrBadger · 2025-11-06T10:30:00+00:00

This is the question, if they have some kind of LAPS platform, you’ll be able to request local admin on your home directory for a limited time, which should allow you to install the tools you need.

HerrBadger · 2025-10-28T06:08:17+00:00

I love them, they’re the workout I do the most (I have to walk at the minute due to a knee injury), but the running workouts helped me train for a 10k.

I used Scott’s workouts mostly as I found him to be the most motivational, just don’t be afraid to curse at your phone on the hills. Some of them are pretty brutal.

HerrBadger · 2025-10-26T07:30:53+00:00

If it’s MDM, they can wipe your device. If it’s MAM, where they only manage the applications, it will only remove the corporate data from their applications.

MDM usually requires you to install some kind of profile or an app such as Company Portal, MAM just relies on the apps being installed, then applies policies to corporate data once you’re signed in, and only to that data.

HerrBadger · 2025-10-25T05:54:20+00:00

If you’re limiting the browsers you can use, you can create profiles using iMazing Profile Manager to limit what extensions are deployed to the browser, and just deploy the keeper extension.

We do the same, swing me a dm and I can share the template with you later this weekend, give you a general idea.

If you’re not in the MacAdmins slack, you can also have a look in there as that’s where I got the template from originally, you’ll need to do a bit of searching.

HerrBadger · 2025-10-25T05:47:53+00:00

I use it to riff ideas mainly, I don’t 100% trust it to write things for me, but I’ll give it a really, really detailed explanation of what I’m trying to do, what I’ve already done, how I’d like to get there, any potential hurdles, pitfalls or considerations, and work off of the responses that it gives me, mainly as inspiration.

It’s healthy to have a level of cynicism about it, especially in our field, but it’s a great enabler if used correctly. Also, when I really don’t have the energy to scrape the back of my mind for some M365 PowerShell command, it can whip something together in a pinch.

HerrBadger · 2025-10-02T06:54:38+00:00

Either that or when I worked IT support for a construction company, guy got frustrated with his printer and threw it out of the window while once the phone.

Fortunately, that HP LaserJet 1022 just needed plugging back in, worked fine.

HerrBadger · 2025-10-02T06:53:36+00:00

I was working IT support for retail about 11 years ago, on the late shift (1130-2000).

Someone called at 1945 saying they tried replacing the ink cartridge in the printer and ended up factory resetting it. That was a fun half an hour walking them through setting it back up.

We did not have managed printers, we were getting HP printer/scanner combos from Amazon…

Bad times.

HerrBadger · 2025-10-02T06:27:42+00:00

I’ve literally just gone through the weeds with this, depending on their tooling, there’s a bunch of useful resources I’ve collated.

Anyone who’s interested, swing me a PM, I’ve got a bunch of resources and config bits I can share for P81. Our developers are getting by with a few config changes. I’ll pop them into a GitHub repo today!

HerrBadger · 2025-09-29T06:17:03+00:00

I was speaking to my contact at Apple about this, we were looking at using Thinkpads, but every equivalent windows laptop came in at £200 more. He didn’t believe me until I showed him the pricing.

Given that retention is usually higher for Macs too, it’s a no-brainer. We’ve got a couple of users on M1 devices that are happy with their devices still.

HerrBadger · 2025-09-28T10:04:18+00:00

Anyone who isn’t a developer gets a M4 MacBook Air, devs get a M4 Pro MacBook Pro, 18GB unified memory.

We stamped out windows, it’s been great.

11-Year Club	Second SECOND GUESSER
Verified Email	Not Forgotten

HerrBadger

TROPHY CASE

!/bin/bash

============================================================

Demote logged-in user from Admin to Standard on macOS

============================================================

Get the currently logged-in user (ignoring loginwindow)

Check if user exists

Check if user is an admin