I think I'm having trouble properly disabling AMFI in Macinabox. I run Catalina and Monterey VMa and it might be consistent through both.
I understand that for MacOS VMs, disabling AMFI is different to simply running the terminal command from recovery. I've tried adding amfi_get_out_of_my_way=0x1 and also amfi_get_out_of_my_way=1 to boot-args in config.plist but I don't believe it's working. I've even tried them both in there together just for good measure.
I have no real way to test, other than the fact that things I need AMFI disabled for don't seem to be functioning correctly. Is there a way to definitively test if it's disabled?
Similarly, I'm unsure if SIP is correctly disabled also as when I run "csrutil status" from terminal, I get this:
Hey all!
I think I'm having trouble properly disabling AMFI in Macinabox. I run Catalina and Monterey VMa and it might be consistent through both.
I understand that for MacOS VMs, disabling AMFI is different to simply running the terminal command from recovery. I've tried adding amfi_get_out_of_my_way=0x1 and also amfi_get_out_of_my_way=1 to boot-args in config.plist but I don't believe it's working. I've even tried them both in there together just for good measure.
I have no real way to test, other than the fact that things I need AMFI disabled for don't seem to be functioning correctly. Is there a way to definitively test if it's disabled?
Similarly, I'm unsure if SIP is correctly disabled also as when I run "csrutil status" from terminal, I get this:
Configuration: Apple Internal: enabled Kext Signing: disabled Filesystem Protections: disabled Debugging Restrictions: disabled DTrace Restrictions: disabled NVRAM Protections: disabled BaseSystem Verification: disabled
Apple Internal remains enabled somehow. Has anyone successfully disabled both in Macinabox?
Edit: I've solved the SIP problem, I needed to add an argument to the csrutil disable command:
csrutil disable --no-internalThough I'm still unsure if AMFI is correctly disabled as behaviour hasn't changed