Advanced Guide

Admin Mode & System Files

Access protected system directories and perform privileged file operations with Captain's Deck's Admin Mode.

Back to Guides

What is Admin Mode?

Admin Mode allows Captain's Deck to perform file operations that require administrator privileges:

  • Copying files to /Applications
  • Modifying files in /Library
  • Changing file ownership and permissions
  • Accessing other users' directories
  • Working with system configuration files

How It Works

Captain's Deck uses macOS's SMJobBless system to install a privileged helper tool:

  1. When you first need admin privileges, you're prompted to enter your password
  2. macOS installs a small helper tool (one-time setup)
  3. Future admin operations use this helper without prompting again

Security: The helper is code-signed and only responds to requests from Captain's Deck. Your password is never stored.

Enabling Admin Mode

On-Demand (Recommended)

Admin Mode activates automatically when needed:

  1. Try to copy/move a file to a protected location
  2. Captain's Deck detects the permission requirement
  3. Enter your password when prompted
  4. Operation completes with elevated privileges

Always-On Session Mode

For extended admin work:

  1. Open Preferences -> General
  2. Find the Admin Mode section
  3. Enable "Always use Admin for this session"

When enabled, an orange ADMIN badge appears in the status bar.

Privileged Operations

File Operations

  • Copy/Move: To any location, including system directories
  • Delete: Remove protected files (use with caution!)
  • Create Directory: In protected locations
  • Rename: Protected files

Ownership & Permissions

  • chown: Change file owner
  • chmod: Modify permissions
  • Symlinks: Create symbolic links in protected areas

Protected Locations

These directories typically require admin privileges:

/Applications System and user applications
/Library System-wide resources and preferences
/System Core macOS files (protected by SIP)
/usr/local Homebrew and local software
/etc System configuration files
/private/var System databases and caches

Warning: System Integrity Protection (SIP) prevents modification of core macOS files in /System even with admin privileges. This is by design for security.

Safety Considerations

Before Using Admin Mode:

  • Know what you're modifying and why
  • Have a backup of important files
  • Double-check paths before confirming operations

What to Avoid:

  • Deleting files you don't recognize
  • Modifying system files unless absolutely necessary
  • Leaving "Always use Admin" enabled when not needed

Helper Installation Status

Check if the privileged helper is installed:

  1. Open Preferences -> General
  2. Look at the Admin Mode section
  3. Status shows "Privileged helper installed" when ready

Troubleshooting

"Helper installation failed"

  • Ensure you're entering the correct admin password
  • Check that Captain's Deck was downloaded from the official website
  • Try quitting and relaunching Captain's Deck

"Operation still denied"

  • Some files are protected by SIP and cannot be modified
  • FileVault-encrypted volumes may have additional restrictions
  • Check if the file is locked (Get Info in Finder)

Removing the Helper

If needed, the helper can be removed:

sudo rm /Library/PrivilegedHelperTools/com.captainsdeck.helper
sudo rm /Library/LaunchDaemons/com.captainsdeck.helper.plist

Next Steps

Copying and Moving Files Configuring Preferences