May 30, 2024
Transferring a Macintosh computer to a new user
Procedure can also be used to add additional users.
NOTE: This procedure covers Mac OS up to 12.6 Monterey. See below for macOS 13 Ventura and macOS 14 Sonoma
When a user leaves Mass General Brigham, or decides to hand over a Macbook, Mac Mini, iMac, or any other Macintosh computer the computer will need a new Administrator account created for the new user.
If the user password is not known, and the computer is not listed in PEAS, it is possible that the computer was registered using a previous user's Apple ID. In that case you may have to obtain the user's Apple ID account and password info or have the user log in before using the "known password procedure".
If you cannot obtain a user password or a recovery key you may be able to erase the computer's drive.
Please note: Office 365, Dropbox and OneDrive and other data, or Applications that require an active MGB user ID and password will be terminated when the user's MGB account is deactivated. Acquiring a new computer or changing computers does not deactivate these accounts.
MAC OS 12 Monterey
1. If the user's computer password is known:
- Log in using a known Administrator Account.
- If the previous user has data that needs to be saved they should log in and transfer the data to a secure location on the Cloud, external drive, or on an MGB SFA.
- Open the Mac OS System Preferences and find the Users and Groups control panel.
- Unlock the control panel, and select the plus sign on the lower left to add a new user.
- Create a new ADMINISTRATOR account, giving the account a user name and password. You must name this account using the new user's MGB User ID. (You may select a simple password for now and have the new user change it later)
- Close the control panel and System Preferences.
- Log out of the existing account, or restart the Mac.
- Log in to the new account.
2. If the password is not known:
Call the MGB Service Center or open a self service ticket requesting the computer's recovery key. Provide the Service Center with the asset tag number or serial number of the computer. If the computer is registered with PEAS, and is or was encrypted by PEAS, the recovery key will allow you access to the current user.
After obtaining the recovery key follow thesteps outlined below. Then proceed to step 4
3. using an older Mac
-
Shut down your Mac. If you can't shut down normally, press and hold the power button for up to 10 seconds, until your Mac turns off. (Every Mac has a power button. On laptop computers that have Touch ID, press and hold Touch ID.)
-
Press and release the power button to turn on your Mac.
-
Immediately after releasing the power button, press and hold Command (⌘)-R on your keyboard.
-
Keep holding the keys until you see an Apple logo or spinning globe.
- as you're starting up from macOS Recovery, if you're asked to select an admin user you know the password for, click “Forgot all passwords?” and proceed based on what your Mac asks for next—your Apple ID or your recovery key.
-
If asked, select a user that you want to reset the password for:
-
Select the user, then enter your new password information and click Next.
-
When authentication has succeeded, click Exit.
-
Choose Apple menu > Restart, then log in with your new password. Password reset is now complete.
-
4. Deleting old user account(s):
- Log in as the new user
- Open System Preferences and open the Users and Groups control panel
- Unlock the control panel
- Select the user to be deleted and click the minus sign button on the lower left.
Decide what to do with the user: Note that keeping a copy of the user will consume hard disk space. We suggest the user move all their data off to a secure storage area, and deleting the user's account.
NOTE: All user accounts on Mac systems must now use the MGB user ID. The computer user's account name is used to provide services like secure printing.
macOS 13 Ventura and macOS 14 Sonoma
This procedure is valid for both Intel and Apple Silicon computers.
When a user leaves Mass General Brigham, or decides to hand over a Macbook, Mac Mini, iMac, or any other Macintosh computer the computer will need a new Administrator account* created for the new user.
1. If the user's computer password is known:
- Log in using a known Administrator Account.
- If the previous user has data that needs to be saved they should log in and transfer the data to a secure location on the Cloud, external drive, or on an MGB SFA.
- Under the Apple menu Open the System Settings and find the Users and Groups.
- For macOS 13, select the Add Account button to add a new user (you may be asked to enter your password)
- For macOS 14, select the Add User button to add a new user (you may be asked to enter your password)
- Select ADMINISTRATOR in the new account drop down menu.
- create a new user and password. You must name this account using the new user's MGB User ID. (You may select a simple password for now and have the new user change it later)
- hit Create User
- Close System Settings.
- Log out of the existing account, or restart the Mac.
- Log in to the new account.
2. If the password is not known:
Call the MGB Service Center or open a self service ticket requesting the computer's recovery key. Provide the Service Center with the asset tag number or serial number of the computer. If the computer is registered with PEAS, and is or was encrypted by PEAS, the recovery key will allow you access to the current user.
After receiving the recovery key follow steps outlined above.
- Shut down your MacBook M series
- Press and hold the power button or Touch ID until the screen says "Loading startup options".
- Choose Options, then click Continue.
- If you're prompted for an admin password, choose "Forgot all passwords?". If you're prompted to authenticate with your Apple ID, do so to continue.
- You should now see a window with four options: Restore from Time Machine, Install macOS, Safari, Disk Utility. Don't choose any of these; instead, go to the menu bar at the top of the screen and click on Utilities. Then, choose Terminal.
- Type "resetpassword" without the quotes and hit Enter (Return).
- If FileVault is disabled, you should be able to reset your password without issue.
If FileVault is on
After clicking "Forgot all passwords?", if you're asked for your FileVault recovery key:
-
Enter your FileVault recovery key. You received it when you turned on FileVault and chose to create a recovery key instead of allowing your iCloud account (Apple ID) to unlock your disk.
-
When prompted to reset your password, click Reset Password.
-
Select a user to reset the password for.
-
After successfully authenticating, click Exit.
-
Choose Apple menu > Restart, then log in with your new password. Password reset is now complete. You don't need to take additional steps.
-
3. Deleting old user account(s):
- Log in as the new user
- Open System Settings and open the Users and Groups control panel
- Unlock the control panel
- Click on the Info icon to select the user to be deleted and click the Delete Account button on the lower left.
Decide what to do with the user: Note that keeping a copy of the user will consume hard disk space. We suggest the user move all their data off to a secure storage area, and deleting the home folder.
NOTE: All user accounts on Mac systems must now use the MGB user ID. The computer user's account name is used to provide services like secure printing.