hoakley June 15, 2017 Macs, Technology

Something odd you can’t fix? Sierra re-introduces repairing permissions

We used to do it often, and it could fix the most intransigent of problems at times: repairing permissions. Amazingly, Apple is recommending it as a solution again, only this time it’s not the permissions in macOS, but those of your Home folder. With details buried away in one of Apple’s lesser-known support notes, this also relies on an undocumented Terminal command.

Since Apple introduced its System Integrity Protection (SIP) in El Capitan, all macOS system files – including now all the bundled apps too – are protected from intentional and inadvertent tampering. The only ways that they can get changed involve special Apple-signed installers, or Recovery mode. No app, no matter how badly behaved, can change permissions or anything else in those protected files. So that makes traditional repair of permissions superfluous, and it could only have been performed in Recovery mode in any case.

There are still plenty of unprotected folders and files, including many of those in /Library, third-party apps in /Applications, and of course everything in your Home folder, particularly in ~/Library. Apple has recognised that changing their permissions can result in a wide range of problems, few of which clearly point to it being a permissions problem.

How does this happen?

The question that Apple’s support note does not consider is how the permissions in, say, ~/Library might get changed. The note refers to the user changing those permissions, but in my experience few users are ever likely to do that deliberately, and it is most unlikely to be accidental.

What the support note does not say is that software might change those permissions for you. Indeed, one not infrequently-reported cause seems to be enabling and using Near Lock, the relatively new feature which allows you to unlock your Mac using your iPhone over Bluetooth. I therefore wonder whether a bug in Near Lock might be a common cause of altered permissions in Home folders.

What problems result?

Apple provides a long list of problems which could result from incorrect permissions in your Home folder. These include:

changes to preference settings, particularly those for System Preferences, do not ‘stick’;
changes made to the Dock do not ‘stick’;
you are asked to authenticate when trying to move or alter some folders in your Home folder;
when trying to save, you are told that the file is locked, or that you don’t have permission;
Preview, TextEdit, and App Store apps (which are sandboxed) may crash when opened;
alerts warning that the startup disk has no more space available for app memory;
Safari or SafariDAVClient use large amounts of resources (memory);
your Mac runs very slowly;
iTunes cannot sync a device;
problems with Photos or iPhoto libraries, including inability to import into the library, or forgetting the library each time the app is opened.

Note that Apple does not list repeated prompts to unlock the keychain; your login keychain is stored in ~/Library/Keychains, though, and would be affected if local permissions were to be changed.

That’s a long list, and it almost all makes sense too. However, there are also other causes of most of those problems which do not involve permissions: some preference settings files do appear to become corrupted, rather than just have incorrect permissions, and trashing them is a long-established way of fixing that. If its permissions have somehow become incorrect, then trashing that .plist file will enable a fresh one to be created, this time with the correct permissions.

Repairing permissions, new version

You should be able to select your Home folder in the Finder, and use the Get Info command in the File menu (or Command-I) to open the Get Info dialog, in which you can fix this. Right at the bottom, ensure the Sharing & Permissions section is open. In there, your name should appear in the top of the three entries, and the privilege set should be Read & Write.

permissions01

To change permissions and propagate the change throughout your Home folder, click on the padlock tool and authenticate. Set that top item, you as a user, to Read & Write, then click on the cog tool and use the Apply to enclosed items… command in that popup menu to propagate the permissions throughout your Home folder.

That should be all that you need to do, but Apple then recommends that you use an undocumented command to complete the repair. This must be performed in Terminal, where you enter:
diskutil resetUserPermissions / `id -u`

This apparently resets user permissions on the root volume (/) to the current user ID. It does not appear in man diskutil, nor when you just type diskutil, but its help info is given if you type
diskutil resetUserPermissions
You are then told
Usage: diskutil resetUserPermissions MountPoint|DiskIdentifier|DeviceNode UID Reset the permissions of a user home directory. Ownership of the affected disk is required.

But that is not yet all. Apple’s support note then states that the command may fail with an error -69841, in which case you should type the following into Terminal
chflags -R nouchg ~
then try the diskutil command again.

This begs several questions. First, what does diskutil resetUserPermissions do that propagating the correct permissions does not? Why is none of this incorporated into a tool like Disk Utility? Which widely-used apps and features, including Near Lock, change permissions and cause the problem in the first place?

I’d love to hear from those who have tried this, and learn whether it did fix your problems.

(I am very grateful to Neale Young for drawing my attention to this issue, and Apple’s puzzling support note, in his comment on this blog.)

94Comments

Add yours

1

John R on June 15, 2017 at 7:22 am

Several months ago, either late in El Capitan or early Sierra, I ran across the inability to drag files into some folders within my administrator/user account. I reinstalled OS X/macOS. Nothing changed. I booted into repair mode, but disk utility no longer repairs permissions. So I called Apple Tech Support. They had me Apple+I my home folder (the clog) then run the same terminal commands you mention above. I was surprised because they removed repairing permissions from disk utility, yet here I was repairing disk permissions manually in terminal. Still today, I cannot repair disk permissions booted in repair mode on my main hard drive. Yet, I can repair external drives other than my main hard drive. Why, who knows.

LikeLike
- 2
  
  hoakley on June 15, 2017 at 9:08 am
  
  Thank you.
  Strange, isn’t it?
  I’ll see if I can’t put together a more friendly tool very shortly.
  Howard.
  
  LikeLike
3

Jim Stigler on July 28, 2017 at 1:28 am

Wow, I can’t believe I found this page! My Macbook Pro just went totally crazy. I couldn’t run any applications – it kept telling me it didn’t have permission to access the Library to run my applications. I called Apple tech support and they had no idea what to do. They escalated me up one level, and I was told there was nothing they could do over the phone, that it was probably a hardware malfunction. I didn’t believe it, and kept trying different things for a day. I followed your instructions and it completely fixed my problem. Unbelievable that even Apple tech support didn’t know this. Thank you!

LikeLike
- 4
  
  hoakley on July 28, 2017 at 6:44 am
  
  I’m delighted that you managed to solve your problem.
  Howard.
  
  LikeLike
5

John Neumann on July 29, 2017 at 1:12 pm

Wow, Thank you! I tried this and it really worked to speed up my sluggish computer! Fixing permissions used to be one of the go-to methods to improve Mac performance. I wonder why Apple has made it less obvious how to do it? Given that I was thinking about buying a new computer (Mac or perhaps a veyr fast PC!) I have a hunch!

LikeLike
6

Mio on August 7, 2017 at 5:19 pm

It works. Thank you!

LikeLike
- 7
  
  hoakley on August 7, 2017 at 5:54 pm
  
  I’m delighted for you.
  Howard.
  
  LikeLike
8

Emily on August 22, 2017 at 2:45 am

I just found this in an increasingly desperate search to find a solution to my problem–many of those you listed. Wish there was a little more of a step-by-step guide, though, because I’m kind of hesitant to try it.

LikeLike
- 9
  
  hoakley on August 22, 2017 at 4:06 am
  
  This is about as detailed as I can give – there are other articles which explain what happened when I tried it on two Macs, and a little utility to help too, from the Downloads item above.
  Howard.
  
  LikeLike
10

Neil Snape on August 26, 2017 at 2:30 pm

A new 27″ iMac 2017 and installing Microsoft it asked me to change permissions. Nothing but problems spinning beach ball, very slow lags on click and copy files, everything up to finder freezes. Your tip entirely and quickly resolved this problem. Thank you.

LikeLiked by 1 person
- 11
  
  hoakley on August 26, 2017 at 3:46 pm
  
  Thank you for your kind words: I’m delighted that this helped.
  Howard.
  
  LikeLike
12

Andrew Nardi on September 11, 2017 at 9:33 am

Thank you so much! This page helped me fix a problem.

LikeLiked by 1 person
13

Rudy Ambrocio on September 30, 2017 at 7:20 am

What if I want to repair permissions on another home folder on an external HD running a a different version of Mac OS X?

LikeLike
- 14
  
  hoakley on September 30, 2017 at 7:23 am
  
  I think that the existing tools only work on your current Home folder, and for the current user.
  There’s no reason that another tool couldn’t perform that, provided of course that it had the permissions, but I don’t know of one that does.
  Howard.
  
  LikeLike
15

Scott Renstrom on November 9, 2017 at 3:04 pm

Oh my goodness – totally repaired the issues I was having. Thank you!!

LikeLiked by 1 person
- 16
  
  hoakley on November 9, 2017 at 3:29 pm
  
  I’m delighted to have been able to help.
  Howard.
  
  LikeLike
17

Darin on November 24, 2017 at 5:45 pm

Hi Howard. I have a late 2012 MBP which I just upgraded to High Sierra. Everything worked fine before the upgrade, and seems to work fine after the upgrade, except I get a continual message window stating “macOS needs to repair your Library to run applications”. It has username and password entry boxes which when filled (correctly), has no effect; the box comes back within 10 seconds. Have tried your fix for this issue, which is identified by the apple help pages, but no change. Can you offer any help or advice?

LikeLike
- 18
  
  hoakley on November 24, 2017 at 5:53 pm
  
  It’s a shame that it doesn’t specify which Library out of the choice of three!
  I have never heard of this message before, and wonder whether this is a new feature in High Sierra to try to address this problem of permissions. To the best of my knowledge, it is undocumented, but that’s not surprising – I’d be interested to know if the Apple Help page gave you a link to online content, and if so, where it is, please.
  If the problem is in the main /Library folder, then you’ll probably need to do a reinstall of High Sierra to clear it, which is a pain.
  If it is in your Home folder Library ~/Library, then the instructions for Sierra may still work, and my own PermissionScanner should still be fine to use, even with APFS, as it uses high level interfaces which are file-system independent.
  The other thing worth considering is contacting Apple support – they need to know, and may well have plenty of experience of solving this.
  I wish you success,
  Howard.
  
  LikeLike
  - 19
    
    Jim Deans on January 15, 2018 at 7:34 pm
    
    I have exactly the same issue – tried all the repairs as you have detailed above but has not fixed the message/system. Almost everything on my computer seems to work fine except the icloud sync for my Contacts and Calendar. I have been escalated at Apple Tech Support but no real helpful fixes from them at this point. I now have the error message window shuffled off to the side of my screen so I can just see its edge while I continue to use my computer (2012 MBP running (mostly) High Sierra).
    
    LikeLiked by 1 person
    - 20
      
      hoakley on January 15, 2018 at 7:37 pm
      
      No, I don’t think this will do much for iCloud issues. Apart from disconnecting and reconnecting, there isn’t a great deal the user can do with that type of iCloud problem – only Apple can see what the problem is.
      Howard.
      
      LikeLike
  - 21
    
    Jim on January 15, 2018 at 7:47 pm
    
    The icloud issue was just an observation – the apps were working before the upgrade to High Sierra but not now but everything else on my computer seems to work fine, except those two apps. The primary and continuing issue is the popup window with the message stating “macOS needs to repair your Library to run applications.” as per the original poster of this thread.
    
    LikeLike
    - 22
      
      hoakley on January 15, 2018 at 7:53 pm
      
      Ah, sorry.
      I presume that you’ve tried downloading and installing the Combo updater for 10.13.2?
      10.13.3 should also be along shortly and might help.
      Howard.
      
      LikeLike
  - 23
    
    Jim on January 15, 2018 at 8:07 pm
    
    Yes I have, with the (vain) hope that it might fix the issue, but alas it did not.
    I just now received an email from Apple Support asking me to create a new admin user (which I already had done, which does not have the message issue) and migrate my existing home folder to that user. I’ll try that this evening perhaps, after I do a time-machine backup. Thanks Howard. 🙂
    
    LikeLiked by 1 person
    - 24
      
      hoakley on January 15, 2018 at 8:09 pm
      
      Whatever you do, don’t try removing that first Admin user account, even if you migrate fully to a new account. That is a well-trodden path to a nightmare!
      I wish you success,
      Howard.
      
      LikeLike
  - 25
    
    Jim on January 15, 2018 at 8:13 pm
    
    Haha yes I can imagine. I’ve lost non-backedup HD’s in past years before and don’t want to go there again. Spent way too much time in my life fixing computer problems I didn’t create, just want stuff to work these days. I appreciate your expert advice, keep up the great work!
    
    LikeLiked by 1 person
26

Lawsbrook on January 15, 2018 at 7:16 pm

Suddenly I was denied permission to access most of my image files but fixed using those terminal commands, both of them, plus a restart as well. Loved seeing the reassurance that permissions were being repaired. I’m extremely grateful to you for sussing this out.

LikeLiked by 1 person
- 27
  
  hoakley on January 15, 2018 at 7:18 pm
  
  Thank you – it’s great to have been of help.
  Howard.
  
  LikeLike
28

Bill W on January 23, 2018 at 4:44 pm

We’re a school with a fleet of 10.9 to 10.11 MacBooks.

Due to a hardware issue, I just migrated a user from Sierra to a computer that arrived with High Sierra using Migration Assistant.

Many issues – all privilege related – when I logged in as the user. Tried many different ideas from various sites including Apple.

Nothing helped and the last move I made messed up the admin account as well with the same error – “MacOS needs to repair your Library to run applications.”

I was about to reinstall the OS and start over when I found your page.

Thanks so much – you just saved me (and my math teacher) many hours…

LikeLiked by 1 person
- 29
  
  hoakley on January 23, 2018 at 4:48 pm
  
  Thank you – I’m delighted that it was of use to you.
  Howard.
  
  LikeLike
30

Dave on January 25, 2018 at 10:01 pm

Howard, Using a macbook air recently upgraded to the latest 10.13.3 High Sierra when using various browsers to download apps, firmware etc.. was told I did not have permissions. Tried your terminal diskutil repair and now all is working. Thanks!

LikeLiked by 1 person
- 31
  
  hoakley on January 25, 2018 at 10:06 pm
  
  I’m delighted that it worked for you.
  Howard.
  
  LikeLike
32

Stefan Statik Petrie on February 1, 2018 at 4:38 pm

hey howard,

got a weird one here and been having for quite some time now, every time i used repair permissions in the diskutil it found a lot of wrong permissions now you’d think that they would be repaired but nope, scanning them after the repair showed they still had the same errors while repair reported them as repaired (also in terminal) i have yet to try out your way which i will do in a few, it’s nearly impossible to find any info on this issue, have you heard of something like this before?

LikeLike
- 33
  
  hoakley on February 1, 2018 at 4:42 pm
  
  Are you running an older version of OS X, before El Capitan? If so, what are the errors that keep repeating? Many of them were not actually errors at all.
  If you are running macOS Sierra or later, then SIP prevents you from repairing permissions. If they are damaged, that implies that SIP has been turned off, or you have a disk or macOS install problem.
  This ‘new’ method doesn’t affect permissions outside your Home folder, and really only tackles incorrect permissions in the Library folder there. If the errors are with other files, it won’t do anything to help. I also don’t think that it is supported prior to Sierra.
  Howard.
  
  LikeLike
  - 34
    
    Stefan Statik Petrie on February 2, 2018 at 5:58 am
    
    the problems, well errors in the permissions actually, started on, i think, 10.8, am now on 10.11. turns out the files that kept on appearing in diskutil during repair permissions were missing the w attribute for my account, i managed to repair those with batchmod, permissions reset and turning of SIP. it just kinda puzzles me how diskutil wasnt able to fix that. now to see if this has fixed a memory leak i’ve been having for a while as well
    
    LikeLike
    - 35
      
      hoakley on February 2, 2018 at 7:28 am
      
      I hope that you have turned SIP back on again.
      Howard.
      
      LikeLike
36

Manoli on March 12, 2018 at 10:43 pm

Very quick question, this procedure for reseting permissions on user’s home directory supposed to be done from fully running system under affected user profile? Or in Recovery mode? (But it probably doesn’t make sense as than I think root is ‘current user’ while in Recovery, am I right? And that’s not what we wanna fix, unless it’s maybe system wide issue.)

Another great article!!! Thank you.

Manoli

LikeLike
- 37
  
  hoakley on March 12, 2018 at 11:00 pm
  
  Manoli,
  I’m pretty sure that Recovery mode lacks the tools to do this. Apple recommends it in normal mode, when running as that user – then you have full access to ~/Library, of course.
  I don’t think anyone has become concerned over permissions in /Library, although they could of course have quite significant impact. I’ll leave that one for another day!
  Howard.
  
  LikeLike
38

Johnny on March 26, 2018 at 10:10 am

I’m running Sierra on an iMac (2013) and this “permission” issue cropped up over the w/e. It so far has only affected save as in “pages” but the fix outlined above has not worked. I’ve also tried restarting into recovery mode but I’m not getting the “reset dialogue” drop-down. What’s frustrating is that I haven’t downloaded or altered anything, nor have I been fiddling around with any “behind-the-scenes” stuff like permissions. It reminds me of the hoo-hah that emerged when Apple foisted the “save as” changes upon us.

LikeLike
- 39
  
  hoakley on March 26, 2018 at 11:33 am
  
  What problem are you having with Pages? I don’t recall that being listed in the potential symptoms of a permissions issue.
  You cannot repair Home folder permissions in Recovery mode because you don’t there have a Home folder. The only permissions repair which was available there was macOS system permissions, which was removed because of SIP.
  Howard.
  
  LikeLike
  - 40
    
    Jim on March 26, 2018 at 1:33 pm
    
    Hey Johnny, I have a similar problem, it’s affecting a couple of other different native Apple apps on my macbookpro. I’ve been at a supervisory tech assist level with Apple for three months now and they still have not fixed the problem. They want me to wipe my computer and start everything from scratch. I told them to fix the prob because it’s something THEY did. All I did was upgrade from OS Sierra to OS High Sierra – I did not make any changes to my system or files other than that.
    
    My advice is to contact Apple and push them to provide a fix which will tell them that I’m not the only person with this issue. Surely their ‘guru’s’ can write a script to find the affected permissions files and then fix or replace them… As helpful as Howard is his fix didn’t work for my computer (thanks for trying Howard – we have corresponded before on this issue).
    
    LikeLike
41

Tim on March 26, 2018 at 8:34 pm

Problem started when I booted up in Yosemite from an external drive. When I attempted to reselect the internal Sierra volume as the startup disk, the volume did not appear. I unplugged the external drive, after which my MacPro was able to boot up on the internal volume. All seemed OK at first, but I kept getting messages that I needed to grant permission to save files. There was no provision to actually grant permission, but simply closing the pop-up warning enabled the save to occur.

Then I tried saving a file to the Desktop and could not do that at all. Get Info for the Desktop said I had read-only access, but my name did not even appear in the list of users. I then got info for my user folder, which said I had read/write access, but again my name was not in the list of users. Oddly, System was on the list and set as owner. I added my name, which then said I had only read access. I changed my access to read/write and set myself as owner, after which I was listed second, after System.

I then ran diskutil resetUserPermissions / `id -u` in Terminal, which removed System from the list of users. All seems OK now. Thanks much for your help.

LikeLiked by 1 person
- 42
  
  hoakley on March 26, 2018 at 8:39 pm
  
  Thank you. That sounds like a classic Home folder permissions problem, which should be solved by this ‘trick’.
  Unfortunately dual-boot systems are increasingly tricky – I wasted days trying to get Sierra and High Sierra to dual-boot, in the end accepting that it just wasn’t going to work. It’s actually easier to set up and use a VM in VMWare Fusion now if you want to drop back to an older version of macOS – I did that with Sierra in High Sierra, and it works really well.
  Howard.
  
  LikeLike
43

GuyL on April 5, 2018 at 8:04 am

Thank you! For several years I’ve been running Mavericks on a mid-2009 MacBook Pro. Today, finally, I decided to upgrade the OS to El Capitan (the most recent OS that can be installed)–apprehensive about the result, but also anxious to do this while El Capitan remained available at the App Store. SO buggy and sluggish was the initial result I was all but resigned to returning to Mavericks. During set-up, the Diagnostics and Usage screen froze. First Aid stalled. Safari barely opened. And Mail refused to complete “Upgrading. . .”. Then attempting the permissions cure, the “progress bar” that appeared after the “applied to enclosed items” was empty. And when finally on attempt #3 it actually ran, and I could go to terminal to reset permissions again there, I got error -69841 (for which Apple’s current support page no longer makes any mention of chflags and running diskutil again(!!!!)). BUT running diskutil a second time, exiting terminal, and restarting– FINALLY allowed mail to “upgrade.” And now, finally, all is actually well. I’m posting mostly to let those with older macs know that El Capitan problems are also solved by repairing permissions with this elaborate trick. And that if the first attempt doesn’t do the job, don’t give up– try again.

LikeLike
- 44
  
  hoakley on April 5, 2018 at 9:39 am
  
  Thank you. I’m sorry that your upgrade was so tricky, but now you’re there I hope it proves worthwhile.
  Howard.
  
  LikeLike
45

The Real Nirv on April 13, 2018 at 7:10 am

What if your home folder is NOT at / (Typically titled :Macintosh HD”)but on another volume? I set my home folder via the advanced button found in the “users and groups” systems preferences pane to be located at /Volumes/Slice2, an internal rotational drive. The reason for my change was to account for a small internal SSD, which in hindsight, if Apple’s recommended steps do not take this change into account can prove detrimental in my case because the issue I have is that I can not add any accounts through the “Internet Accounts” system preferences. I click to add any type of preset account including other and nothing happens, it’s as though no click of the mouse registers.

Am I out of luck?

LikeLike
- 46
  
  hoakley on April 13, 2018 at 7:26 am
  
  You can still use my free PermissionScanner from Downloads above, which should help discover whether permissions are the problem.
  Howard.
  
  LikeLike
47

The Real Nirv on April 13, 2018 at 7:11 am

As an addendum to my comments/question above, should I alter the command as from;

diskutil resetUserPermissions / `id -u`

to

diskutil resetUserPermissions /Volumes/Slice2 `id -u`

Your response would be very much appreciated.

LikeLiked by 1 person
- 48
  
  hoakley on April 13, 2018 at 7:24 am
  
  The only way to find out is to try it: if it can’t find your Home folder, it will simply fail with that as the error.
  Unfortunately, this verb in diskutil is still not properly documented, but from what I can see that command should work. If it doesn’t, try
  diskutil resetUserPermissions /Volumes/Slice2/ `id -u`
  instead.
  I wish you success.
  Howard.
  
  LikeLike
49

The Real Nirv on April 13, 2018 at 7:14 am

One more thing related to my two replies above.

It should be noted that a “test” admin account does not reproduce the issue noted in reply 45. This tells me it is obviously not a system wide issue.

Thanks!

LikeLike
50

Derek Vogel on April 14, 2018 at 4:43 am

Holy Permissions, Batman!!!!!

I just spent 8 hours on tech support with Microsoft, Dropbox and Apple trying to figure out why I kept getting permissions errors. I was advised by all to create a new user and copy over all my files. I’ve been down that road before, and not only is it a total time suck, but it sometimes recreates the problem.

I did one last google search, and saw your article. I had actually seen another post that copies your instructions as well. I ran it a couple times, but it didn’t work. Then I ran it again this time, but there’s an important piece I think you need to specify:

Change the permissions of the Home folder and User as you specify, but before you click the lock icon to commit the changes, leave it unlocked. Then run the Terminal command.

After the reset permissions script completes in Terminal, click the lock icon in the info panel.

For whatever reason, doing it this way for me worked.

LikeLiked by 1 person
- 51
  
  hoakley on April 14, 2018 at 5:53 am
  
  Thank you.
  Neither the instructions above nor Apple’s refer to clicking on the padlock to ‘propagate the changes’. In fact, clicking on the padlock doesn’t propagate them: they propagate the moment that you click on the dialog button to confirm that you wish to make those changes.
  Neither should you have to click on the padlock icon at the end of the process: that doesn’t make any change to the permissions or ownership of the files and folders, it merely requires you to authenticate again should you wish to make any further changes.
  That said, I’m happy for you that the process eventually solved your problems.
  Howard.
  
  LikeLike
52

Derek Vogel on April 14, 2018 at 4:49 am

Also, before you change Read & Write and click “Apply to enclosed items” in the Sharing and Permissions in the Info panel for the Home folder, make sure you click “Make this user the owner” first.

LikeLiked by 1 person
- 53
  
  hoakley on April 14, 2018 at 5:56 am
  
  Thank you.
  If the current user is not the owner of the Home folder, that is a necessary step to set the permissions to those shown.
  If the current user is already the owner of the Home folder, then that command is not shown in the popup menu.
  Howard.
  
  LikeLike
54

Adbelis on May 6, 2018 at 8:28 am

Does this fix the issue of the Archive Utility not automatically disappearing after expanding a zip file? Initially, once a zipped file is extracted, the Archive utility disappears. But suddenly, it stays on the dock. I know this is not how it supposed to be. Not sure what to do. If you can help me, I will be very grateful. => macOS High Sierra.

LikeLiked by 1 person
- 55
  
  hoakley on May 6, 2018 at 8:31 am
  
  I doubt it. That sounds more like a changed behaviour or preference setting.
  If you leave it in the Dock, does it eventually disappear? In Activity Monitor, is it shown as being in App Nap? There are some global settings which control those behaviours too.
  Howard.
  
  LikeLike
  - 56
    
    Adbelis on May 6, 2018 at 8:52 am
    
    Thanks for your prompt replay, very much appreciated. It does not eventually disappear. And I am not sure if i did anything extra-ordinary for this to happen. It was working fine yesterday. Today, I switched on my laptop, tried to open a zipped file, and after the file extracted, Archive Utility remained in the dock.
    
    You mentioned there are some global settings that control these behaviours. Can you kindly let me know these global settings? Maybe I can try my luck with those.
    
    Thanks once again for your time.
    
    LikeLiked by 1 person
    - 57
      
      hoakley on May 6, 2018 at 9:01 am
      
      There’s a discussion of some app behaviours which relate to this here. As you will see in that and the other articles here about App Nap, if that is what is happening, it is set in the app’s Info.plist file, which you cannot change – in this case, it is also protected by SIP.
      I reported then that trying to change the global settings no longer had any effect.
      Howard.
      
      LikeLike
58

eli on May 16, 2018 at 2:17 pm

My external USB suddenly will only allow me to read from it. The getInfo “sharing / permissions” only shows: you can only read. I tried yr commands, but got: chflags: /Users/meldejesus/.cpan/build/Mac-SystemDirectory-0.10-_TIp07/lib: Permission denied Any ideas? Thanks –

LikeLike
- 59
  
  hoakley on May 16, 2018 at 2:27 pm
  
  I think that you have two separate issues here:
  – your external USB drive is not affected by the permissions of your Home folder. To change those permissions on that external drive, select the drive in the Finder, and use the Get Info command in the File menu. At the foot of that, you will need to make yourself its owner with read and write permissions, and to propagate that to the enclosed folders.
  – you have a file/folder in your CPAN folder of your Home folder which appears to have root permissions only. I don’t think that is of any great consequence. That CPAN folder is hidden anyway, and I presume that you know what it is for. It isn’t going to alter the behaviour of your Mac, I don’t think.
  I hope that helps,
  Howard.
  
  LikeLike
60

Linda on June 7, 2018 at 4:14 pm

Thank you for posting this. I lost permissions to change my own documents after restoring OS Sierra to a new computer. Your method seems to have worked well!

LikeLiked by 1 person
- 61
  
  hoakley on June 7, 2018 at 4:16 pm
  
  I am delighted that it has helped you get that sorted out.
  Howard.
  
  LikeLike
62

Greg on June 27, 2018 at 8:14 pm

Thank you. This worked to fix issues I was having with some Adobe Creative Cloud apps. Much appreciated.

LikeLiked by 1 person
63

angus895 on July 5, 2018 at 3:04 pm

This seems to have worked well for me after a lot of puzzling, frustrating and ineffiicnett time, and I agree that Apple could do a better job of diagnostics. I got a message from Terminal Ready to reset user permissions on disk1s1 Macintosh HD
Started verify/repair permissions on disk1s1 Macintosh xx
User permissions have been reset
Finished verify/repair permissions on disk1s1 Macintosh xx
Thanks

LikeLiked by 1 person
64

John Proctor on July 28, 2018 at 4:31 pm

This worked for my application problems. Only needed to do the first step didn’t do terminal scripts. Thanks for the help

LikeLiked by 1 person
- 65
  
  hoakley on July 28, 2018 at 4:33 pm
  
  I’m delighted that it sorted the problems for you, and thanks for reporting back.
  Howard.
  
  LikeLike
66

Gabriel Tucker on August 26, 2018 at 1:01 pm

Aged 85, Just upgraded MBP from Sierra to High Sierra & TextEdit wouldn’t open my List of passwords (On TextEdit —> .rtfd). *!X%!!…… Found your site & applied your ” Fix permissions” ,
AND IT WORKED !!!! So fixing permissions still works.
I am very grateful
May the Gods’ smile on you

LikeLike
- 67
  
  hoakley on August 26, 2018 at 1:38 pm
  
  Thank you for your kind words – I’m delighted that it solved your problem.
  Howard.
  
  LikeLike
68

blackxacto on September 1, 2018 at 7:26 am

Mr. Hoakley, in High Sierra, user/library/containers, I seem unable to repair prefs for “Containers” files. Is this normal? AND, maybe I have asked you this before, it sounds familiar, I hope I am not wasting your time.

LikeLiked by 1 person
- 69
  
  hoakley on September 1, 2018 at 7:57 am
  
  That’s perfectly normal: Containers is a meta-folder that contains many links to other folders, and many of those you don’t and shouldn’t have permissions for.
  Questions are never a waste of time – although some answers can be!
  Howard.
  
  LikeLike
  - 70
    
    blackxacto on September 1, 2018 at 8:06 am
    
    Thank you for your time.
    
    LikeLiked by 1 person
71

tony on September 17, 2018 at 3:43 pm

I was hoping this would fix my issue but even though I used the “chflags -R nouchg ~” command I keep getting the -69841 error. There is def some sort of keychain/permission issue on my mac I need to somehow clear. Even Onyx no longer repairs permissions.

LikeLiked by 1 person
- 72
  
  hoakley on September 17, 2018 at 3:47 pm
  
  Are you being prompted to provide your password to open a keychain at all? If not, it doesn’t seem to be related to a keychain issue.
  I suggest that you step through the whole sequence from the top again, using the Finder’s Get Info dialog to set and propagate permissions first.
  What are the symptoms that you are seeing?
  Howard.
  
  LikeLike
  - 73
    
    cucocreative on September 17, 2018 at 4:01 pm
    
    Keychain doesn’t ask for password. Just restarted and whatever I did did seem to clear one issue I was having in Mail where it wouldn’t remember that I was trying to Always trust “server name” when connecting to “mail server name”. But another issue persists. I am setting up a new mac, manually, as I ddin’t wnat a decades worth of cruft migrating over. Transferred over SpamSieve AppSupport file but when launching the app it’s erroring with “You don’t have permission” errors when trying to write to or create various files. I’ve check the related folders/files and the permissions match the old mac, so whilst waiting to hear back from it’s dev I though I’d repair permissions which is when I found out that’s a little harder than it has always been. As suggested I’ll try again from the top.
    
    LikeLiked by 1 person
  - 74
    
    cucocreative on September 17, 2018 at 4:46 pm
    
    That second run through didn’t loop back to a -69841, so that seems to be working now. Just heard back from the SpamSieve dev and he told me to run sudo chmod -RN on the related folder in AppSupport. and that’s fixed that issue. Thanks again for your time.
    
    LikeLiked by 1 person
75

Ahmed on September 20, 2018 at 2:24 pm

Your are awesome. Thanks for sharing that incredible info. As an IT admin dealing with Macs. Your article has always helped me.

LikeLiked by 1 person
76

David G. on December 2, 2018 at 7:47 pm

Resetting the permissions using
diskutil resetUserPermissions / `id -u`
worked for me.

I had files that I had locked in the past that I was now unable to unlock. Sharing and Permissions under “get info” showed “Fetching…” instead of my username. This happened soon after I had changed my “Full Name” on my account in “Users & Groups,” and after I had deleted an old user account. Maybe related, maybe not.

I tried diskutility (Mac High Sierra) but it crashed and my computer hung (I had entered a URL in Safari while I was waiting for DiskUtility). I tried the instructions you provided for “Applied to enclosed items…” but that option wasn’t available to me (because I hadn’t read the instructions carefully and wasn’t working on my Home folder). Simply running the diskutil command worked for me.

For what it’s worth, here’s the output of the diskutil command:
[11:16:47]
~/Desktop $diskutil resetUserPermissions / `id -u`
Ready to reset user permissions on disk1s1 Macintosh HD
Started verify/repair permissions on disk1s1 Macintosh HD
User permissions have been reset
Finished verify/repair permissions on disk1s1 Macintosh HD
[11:18:31]
~/Desktop $

The Elapsed time was less than 2 minutes on ~300GB of data on an SSD drive.
Thanks for your article!
-David

LikeLiked by 1 person
- 77
  
  Alex Santos (@_alex_santos) on December 2, 2018 at 8:07 pm
  
  Hey thanks for sharing! I have to try the command, in my case I have an internal SSD for OS only and an internal spinning HD (large) for my user account and a few USB attached drives. With or without those drives I can no longer access the internal and home account living on the internal spinning platter drive. I don’t know why but this is the case. I am tempted to try your command but will read up on it first.
  
  Thanks for the reply and yeah I have to read the article to see if my issue might get some benefit. For what it’s worth I am on High Sierra.
  
  LikeLiked by 1 person
  - 78
    
    hoakley on December 2, 2018 at 11:11 pm
    
    Some of this may well also depend on how you have linked your Home folder to your startup drive. I’m fortunate in only having part of my Home folder on an external drive – which is linked using an alias into my ~/Documents folder. If you’ve put your whole Home folder on another volume, you may also need to consider that volume’s settings, and how that link is made.
    Howard.
    
    LikeLike
- 79
  
  hoakley on December 2, 2018 at 11:07 pm
  
  Thank you – I’m delighted that it helped.
  Howard.
  
  LikeLike
80

Alex Santos (@_alex_santos) on December 2, 2018 at 8:10 pm

ok I am going to try and fix my issue as per the Apple Support article and

diskutil resetUserPermissions / `id -u`

1TB to go.

LikeLiked by 1 person
81

Alex Santos (@_alex_santos) on December 4, 2018 at 10:55 pm

Issue continues, despite my attempts.

LikeLiked by 1 person
82

Michele Galvagno on March 26, 2019 at 7:49 am

Dear Howard,

I followed your instructions and launched the Terminal command.
Now I have this:

Ready to reset user permissions on disk1s1 Macintosh HD
Started verify/repair permissions on disk1s1 Macintosh HD
[ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \]

I have all those backslash moving from left to right continuously.
It has been like this for about 30 mins.
Is there a way to see the progress? Or what is going wrong here?
What can I do?

Thank you so much!

LikeLike
- 83
  
  hoakley on March 26, 2019 at 8:17 am
  
  That’s the progress indicator – it’s doing the task. It can take a couple of hours with large Home folders.
  Howard.
  
  LikeLiked by 1 person
  - 84
    
    Michele Galvagno on March 26, 2019 at 9:57 am
    
    Sorry to bother once more but more than 2hrs have passed and there is no sign of progress.
    Also that progress indicator is just a bunch of slashes moving left to right, nothing is getting filled.
    My home folder is 211.16GB big.
    
    I have performed the previous step in Finder and it took about 5-6 mins. This is now going on forever…
    
    LikeLiked by 1 person
    - 85
      
      hoakley on March 26, 2019 at 10:00 am
      
      Take a look for the process in Activity Monitor: if it has stalled, you can just quit Terminal. If it’s still busy, I’d give it another hour or two to see if it can complete.
      Howard
      
      LikeLiked by 1 person
    - 86
      
      Michele Galvagno on March 26, 2019 at 10:02 am
      
      I see Terminal and then, if I expand: login > bash > diskutil
      I guess that’s it, about 0.4 energy impact. But if I don’t see it red it means it is running right?
      
      LikeLiked by 1 person
    - 87
      
      Michele Galvagno on March 26, 2019 at 1:27 pm
      
      In the end it didn’t finish so I just closed the terminal window and the process ended. I wonder if something is wrong and if so, what… in any case, something must have been done, because now I connected my TM disk and it is backing up 125GB of something…!!!
      
      LikeLiked by 1 person
    - 88
      
      hoakley on March 26, 2019 at 8:25 pm
      
      I hope things are settling down again, Michele.
      Howard.
      
      LikeLike
    - 89
      
      Michele Galvagno on March 26, 2019 at 10:11 pm
      
      Thank you 🙏
      I am still getting huge backups from Time Machine even when nothing real is being changed…
      Your T2M2 says everything is fine.
      
      Going to upgrade to Mojave in an hour or so, after the last cleaning check, backup, clone and prayer to Zeus.
      My Finder hangs every now and then, but well, I have much more than what 16gb of Ram can handle open right now…
      
      Btw…do you know what the CloudDocs folder is for in User/Application support?
      
      LikeLiked by 1 person
    - 90
      
      hoakley on March 26, 2019 at 10:18 pm
      
      Have you tried a restart?
      /Users/[username]/Library/Application Support/CloudDocs contains key iCloud databases – don’t be tempted to fiddle with it or trash it.
      Howard.
      
      LikeLiked by 1 person
    - 91
      
      Michele Galvagno on March 26, 2019 at 10:35 pm
      
      I just trashed files that were years old or not even present anymore
      
      LikeLike
92

Tracy Valleau on May 6, 2019 at 11:49 pm

I fixed my “fetching…” issue using this technique:
https://mactips.valleau.net/?p=396

LikeLiked by 1 person
- 93
  
  hoakley on May 7, 2019 at 7:21 am
  
  Thank you. That’s a rather different problem from those for which Apple recommends this as a solution.
  Howard.
  
  LikeLike
94

M Noriega on May 19, 2019 at 1:48 pm

Thank you so much for writing this.

I used macs for many years and stopped about 7 years ago, switching to windows mostly because of the way OS X [mis]handles storage devices–seemed like it’s always breaking.

Of course my wife’s very old iMac killed its drive (located in the heart of the computer requiring 40 minutes of dissection)–the only symptom is abrupt system power-off. No dialog, no nothing. I was sure it was a hardware problem but connecting the drive to a new iMac (yes I made her buy a new one) lead to the same problem. I guess I should’ve thought a bad hard drive (or, in reality: a corrupted system file) can kill the power on a computer. THINK DIFFERENT. I’d say Apple’s gone down hill but I switched because of similar data corruption issues years ago, so it’s probably just par for the course.

Anyway, migrating the data from the *perfectly good but data-corrupted* hard drive lead to permissions issues which you helped me correct. Thank you so much.

LikeLiked by 1 person