From: Apple <opensource@apple.com>
Date: Tue, 29 Oct 2013 00:03:36 +0000 (+0000)
Subject: securityd-55199.tar.gz
X-Git-Tag: v55199^0
X-Git-Url: https://git.saurik.com/apple/securityd.git/commitdiff_plain/a9d7a7012bf470d922aff83afc85bc252a103107

securityd-55199.tar.gz
---

diff --git a/config/project.xcconfig b/config/project.xcconfig
index 39c7976..1af4d3c 100644
--- a/config/project.xcconfig
+++ b/config/project.xcconfig
@@ -1,4 +1,4 @@
-ARCHS = $(ARCHS_STANDARD_32_64_BIT)
+ARCHS = $(ARCHS_STANDARD_64_BIT)
 CODE_SIGN_IDENTITY = -;
 GCC_VERSION = com.apple.compilers.llvm.clang.1_0
 DEBUG_INFORMATION_FORMAT = dwarf-with-dsym
diff --git a/etc/authmerge.sh b/etc/authmerge.sh
deleted file mode 100755
index 621c898..0000000
--- a/etc/authmerge.sh
+++ /dev/null
@@ -1,16 +0,0 @@
-#!/bin/sh
-set -e
-
-MERGE_FILE=authorization.merge
-ETC_DIR=${DSTROOT}/private/etc
-SRC=${SRCROOT}/etc
-
-if [ -f ${SRC}/${MERGE_FILE} ]; then
-    echo "Installing ${MERGE_FILE}..."
-    mkdir -p ${ETC_DIR}
-    plutil -lint ${SRC}/${MERGE_FILE}
-    cp ${SRC}/${MERGE_FILE} ${ETC_DIR}/${MERGE_FILE}
-else 
-    echo "file not found: ${SRC}/${MERGE_FILE}"
-fi
-
diff --git a/etc/authorization.merge b/etc/authorization.merge
deleted file mode 100644
index a4a3d0a..0000000
--- a/etc/authorization.merge
+++ /dev/null
@@ -1,146 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1.0">
-<dict>
-	<key>rights</key>
-	<dict>
-		<key>com.apple.container-repair</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تصليح</string>
-				<key>ca</key>
-				<string>Reparar</string>
-				<key>cs</key>
-				<string>Opravit</string>
-				<key>da</key>
-				<string>Reparer</string>
-				<key>de</key>
-				<string>Reparieren</string>
-				<key>el</key>
-				<string>Επισκευή</string>
-				<key>en</key>
-				<string>Repair</string>
-				<key>es</key>
-				<string>Reparar</string>
-				<key>fi</key>
-				<string>Korjaa</string>
-				<key>fr</key>
-				<string>Réparer</string>
-				<key>he</key>
-				<string>תקן</string>
-				<key>hr</key>
-				<string>Popravi</string>
-				<key>hu</key>
-				<string>Javítás</string>
-				<key>it</key>
-				<string>Ripara</string>
-				<key>ja</key>
-				<string>修復</string>
-				<key>ko</key>
-				<string>복구</string>
-				<key>nb</key>
-				<string>Reparer</string>
-				<key>nl</key>
-				<string>Herstel</string>
-				<key>pl</key>
-				<string>Napraw</string>
-				<key>pt</key>
-				<string>Reparar</string>
-				<key>pt-PT</key>
-				<string>Reparar</string>
-				<key>ro</key>
-				<string>Repară</string>
-				<key>ru</key>
-				<string>Исправить</string>
-				<key>sk</key>
-				<string>Opraviť</string>
-				<key>sv</key>
-				<string>Reparera</string>
-				<key>th</key>
-				<string>ซ่อมแซม</string>
-				<key>tr</key>
-				<string>Onar</string>
-				<key>uk</key>
-				<string>Полагодити</string>
-				<key>zh-Hans</key>
-				<string>修复</string>
-				<key>zh-Hant</key>
-				<string>修復</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحتاج __APPNAME__ إلى إصلاح مكتبتك لتشغيل التطبيات.</string>
-				<key>ca</key>
-				<string>__APPNAME__ necessita reparar la vostra biblioteca per poder executar aplicacions.</string>
-				<key>cs</key>
-				<string>__APPNAME__ potřebuje opravit vaši knihovnu, aby bylo možné spouštět aplikace.</string>
-				<key>da</key>
-				<string>__APPNAME__ skal reparere dit bibliotek for at kunne afvikle  programmer.</string>
-				<key>de</key>
-				<string>__APPNAME__ muss Ihre Library reparieren, um Programme auszuführen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή «__APPNAME__» πρέπει να επισκευάσει τη Βιβλιοθήκη σας ώστε να εκτελεί εφαρμογές.</string>
-				<key>en</key>
-				<string>__APPNAME__ needs to repair your Library to run applications.</string>
-				<key>es</key>
-				<string>__APPNAME__ necesita reparar su biblioteca para poder ejecutar aplicaciones.</string>
-				<key>fi</key>
-				<string>Kohteen__APPNAME__ pitää korjata kirjastosi, jotta se voi suorittaa ohjelmia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ doit réparer votre Bibliothèque pour exécuter les applications.</string>
-				<key>he</key>
-				<string>על-מנת שניתן יהיה להפעיל יישומים, על __APPNAME__ לתקן את הספריה שלך.</string>
-				<key>hr</key>
-				<string>__APPNAME__ treba popraviti vašu medijateku kako bi se mogle pokrenuti aplikacije.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ alkalmazásnak ki kell javítania az Ön Könyvtárát az alkalmazások futtatásához.</string>
-				<key>it</key>
-				<string>Per poter eseguire applicazioni, __APPNAME__ deve riparare la libreria.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、アプリケーションを実行するためにライブラリを修復する必要があります。</string>
-				<key>ko</key>
-				<string>응용 프로그램을 실행하려면 __APPNAME__이(가) 사용자의 라이브러리를 복구해야 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ må reparere biblioteket ditt for å kunne bruke programmer.</string>
-				<key>nl</key>
-				<string>__APPNAME__ moet uw Bibliotheek herstellen om programma's te kunnen uitvoeren.</string>
-				<key>pl</key>
-				<string>__APPNAME__ musi naprawić bibliotekę, aby móc uruchamiać programy.</string>
-				<key>pt</key>
-				<string>__APPNAME__ necessita reparar sua biblioteca para poder executar aplicativos.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ tem de reparar a Biblioteca antes de poder executar aplicações.</string>
-				<key>ro</key>
-				<string>__APPNAME__ trebuie să repare biblioteca dvs. pentru a putea rula aplicații.</string>
-				<key>ru</key>
-				<string>Программе «__APPNAME__» необходимо исправить Вашу библиотеку для запуска программ.</string>
-				<key>sk</key>
-				<string>__APPNAME__ potrebuje kvôli spúšťaniu aplikácií opraviť vašu knižniciu.</string>
-				<key>sv</key>
-				<string>__APPNAME__ måste reparera ditt bibliotek för att kunna använda program.</string>
-				<key>th</key>
-				<string>__APPNAME__ จำเป็นต้องซ่อมแซมคลังของคุณเพื่อสั่งทำงานแอปพลิเคชั่น</string>
-				<key>tr</key>
-				<string>Uygulamaları çalıştırmak için Kitaplık klasörünüzün __APPNAME__ tarafından onarılması gerekiyor.</string>
-				<key>uk</key>
-				<string>Програмі __APPNAME__ потрібно полагодити вашу папку «Бібліотека», щоб мати змогу запускати програми.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”需要修复您的资源库才能运行应用程序。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”需要修復您的資料庫來執行應用程式。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-			<key>timeout</key>
-			<integer>30</integer>
-		</dict>
-	</dict>
-</dict>
-</plist>
diff --git a/etc/authorization.plist b/etc/authorization.plist
deleted file mode 100644
index 091f40f..0000000
--- a/etc/authorization.plist
+++ /dev/null
@@ -1,9506 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1.0">
-<dict>
-	<key>comment</key>
-	<string>The name of the requested right is matched against the keys.  An exact match has priority, otherwise the longest match from the start is used.	Note that the right will only match wildcard rules (ending in a ".") during this reduction.
-
-allow rule: this is always allowed
-&lt;key&gt;com.apple.TestApp.benign&lt;/key&gt;
-&lt;string&gt;allow&lt;/string&gt;
-
-deny rule: this is always denied
-&lt;key&gt;com.apple.TestApp.dangerous&lt;/key&gt;
-&lt;string&gt;deny&lt;/string&gt;
-
-user rule: successful authentication as a user in the specified group(5) allows the associated right.
-
-The shared property specifies whether a credential generated on success is shared with other apps (i.e., those in the same "session"). This property defaults to false if not specified.
-
-The timeout property specifies the maximum age of a (cached/shared) credential accepted for this rule.
-
-The allow-root property specifies whether a right should be allowed automatically if the requesting process is running with uid == 0.  This defaults to false if not specified.
-
-See remaining rules for examples.
-</string>
-	<key>rights</key>
-	<dict>
-		<key></key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Matches otherwise unmatched rights (i.e., is a default).</string>
-			<key>rule</key>
-			<string>default</string>
-		</dict>
-		<key>com.apple.</key>
-		<dict>
-			<key>rule</key>
-			<string>default</string>
-		</dict>
-		<key>com.apple.AOSNotification.FindMyMac.modify</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>rule</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>السماح</string>
-				<key>ca</key>
-				<string>Permetre</string>
-				<key>cs</key>
-				<string>Povolit</string>
-				<key>da</key>
-				<string>Tillad</string>
-				<key>de</key>
-				<string>Erlauben</string>
-				<key>el</key>
-				<string>Να επιτρέπεται</string>
-				<key>en</key>
-				<string>Allow</string>
-				<key>es</key>
-				<string>Permitir</string>
-				<key>fi</key>
-				<string>Salli</string>
-				<key>fr</key>
-				<string>Autoriser</string>
-				<key>he</key>
-				<string>אפשר</string>
-				<key>hr</key>
-				<string>Dozvoli</string>
-				<key>hu</key>
-				<string>Engedélyezés</string>
-				<key>it</key>
-				<string>Consenti</string>
-				<key>ja</key>
-				<string>許可</string>
-				<key>ko</key>
-				<string>허용</string>
-				<key>nb</key>
-				<string>Tillat</string>
-				<key>nl</key>
-				<string>Sta toe</string>
-				<key>pl</key>
-				<string>Pozwól</string>
-				<key>pt</key>
-				<string>Permitir</string>
-				<key>pt-PT</key>
-				<string>Permitir</string>
-				<key>ro</key>
-				<string>Permite</string>
-				<key>ru</key>
-				<string>Разрешить</string>
-				<key>sk</key>
-				<string>Povoliť</string>
-				<key>sv</key>
-				<string>Tillåt</string>
-				<key>th</key>
-				<string>อนุญาต</string>
-				<key>tr</key>
-				<string>Ä°zin Ver</string>
-				<key>uk</key>
-				<string>Дозволити</string>
-				<key>zh-Hans</key>
-				<string>允许</string>
-				<key>zh-Hant</key>
-				<string>允許</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يرغب __APPNAME__ بعمل تغييرات للعثور على الـ Mac الخاص بي.</string>
-				<key>ca</key>
-				<string>__APPNAME__ vol efectuar canvis a “Buscar el meu Mac”.</string>
-				<key>cs</key>
-				<string>__APPNAME__ žádá o povolení k provedení změn ve službě Hledat můj Mac.</string>
-				<key>da</key>
-				<string>__APPNAME__ vil foretage ændringer i Find min Mac.</string>
-				<key>de</key>
-				<string>__APPNAME__ möchte Änderungen an „Meinen Mac suchen“ vornehmen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή «__APPNAME__» θέλει να κάνει αλλαγές στην Εύρεση Mac μου.</string>
-				<key>en</key>
-				<string>__APPNAME__ wants to make changes to Find My Mac.</string>
-				<key>es</key>
-				<string>__APPNAME__ desea realizar cambios en “Buscar mi Mac”.</string>
-				<key>fi</key>
-				<string>__APPNAME__ haluaa tehdä muutoksia ohjelmaan Etsi Macini.</string>
-				<key>fr</key>
-				<string>__APPNAME__ veut apporter des modifications à Localiser mon Mac.</string>
-				<key>he</key>
-				<string>__APPNAME__ מעוניין לערוך שינויים ב״מצא את ה-Mac שלי״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ želi promijeniti značajku Nađi moj Mac.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ módisításokat akar végezni a Mac keresésében.</string>
-				<key>it</key>
-				<string>__APPNAME__ desidera apportare modifiche a “Trova il mio Mac”.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、“Mac を探す”に変更を加えようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 나의 Mac 찾기를 변경하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ vil gjøre endringer i Finn Mac.</string>
-				<key>nl</key>
-				<string>__APPNAME__ wil wijzigingen aanbrengen in 'Zoek mijn Mac'.</string>
-				<key>pl</key>
-				<string>__APPNAME__ chce dokonać zmian w programie Znajdź mój Mac.</string>
-				<key>pt</key>
-				<string>__APPNAME__ deseja fazer alterações em “Buscar Meu Mac”.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ pretende fazer alterações a Encontrar o meu Mac.</string>
-				<key>ro</key>
-				<string>__APPNAME__ dorește să modifice Găsire Mac propriu.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается внести изменения в функцию «Найти Mac».</string>
-				<key>sk</key>
-				<string>Aplikácia __APPNAME__ chce vykonať zmeny v Nájsť môj Mac.</string>
-				<key>sv</key>
-				<string>__APPNAME__ vill göra ändringar i Hitta min Mac.</string>
-				<key>th</key>
-				<string>__APPNAME__ ต้องการทำการเปลี่ยนแปลงไปยัง ค้นหา Mac ของฉัน</string>
-				<key>tr</key>
-				<string>__APPNAME__, Mac’imi Bul’da değişiklik yapmak istiyor.</string>
-				<key>uk</key>
-				<string>__APPNAME__ хоче внести зміни до функції «Знайти мій Mac».</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”想要对“查找我的 Mac”进行一些修改。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”想要更改“尋找我的 Mac”。</string>
-			</dict>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>is-admin</string>
-				<string>default</string>
-			</array>
-		</dict>
-		<key>com.apple.DiskManagement.</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Used by diskmanagementd to allow access to its privileged functions</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل القرص</string>
-				<key>ca</key>
-				<string>Modificar el disc</string>
-				<key>cs</key>
-				<string>Změnit Disk</string>
-				<key>da</key>
-				<string>Juster disk</string>
-				<key>de</key>
-				<string>Volume ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση δίσκου</string>
-				<key>en</key>
-				<string>Modify Disk</string>
-				<key>es</key>
-				<string>Modificar disco</string>
-				<key>fi</key>
-				<string>Muokkaa levyä</string>
-				<key>fr</key>
-				<string>Modifier le disque</string>
-				<key>he</key>
-				<string>ערוך/י שינויים בכונן</string>
-				<key>hr</key>
-				<string>Preinači disk</string>
-				<key>hu</key>
-				<string>Lemez módosítása</string>
-				<key>it</key>
-				<string>Modifica disco</string>
-				<key>ja</key>
-				<string>ディスクを変更</string>
-				<key>ko</key>
-				<string>디스크 수정</string>
-				<key>nb</key>
-				<string>Endre disk</string>
-				<key>nl</key>
-				<string>Wijzig schijf</string>
-				<key>pl</key>
-				<string>Modyfikuj dysk</string>
-				<key>pt</key>
-				<string>Modificar Disco</string>
-				<key>pt-PT</key>
-				<string>Modificar disco</string>
-				<key>ro</key>
-				<string>Modifică discul</string>
-				<key>ru</key>
-				<string>Модифицировать диск</string>
-				<key>sk</key>
-				<string>Upraviť disk</string>
-				<key>sv</key>
-				<string>Ändra skiva</string>
-				<key>th</key>
-				<string>แก้ไขดิสก์</string>
-				<key>tr</key>
-				<string>Diski Değiştir</string>
-				<key>uk</key>
-				<string>Змінити диск</string>
-				<key>zh-Hans</key>
-				<string>修改磁盘</string>
-				<key>zh-Hant</key>
-				<string>修改磁碟</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل القرص المحدد.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar el disc seleccionat.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit vybraný disk.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at ændre den valgte disk.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, das ausgewählte Volume zu ändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τροποποιήσει τον επιλεγμένο δίσκο.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify the selected disk.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar el disco seleccionado.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata valittua levyä.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de modifier le disque sélectionné.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לערוך שינויים בכונן הנבחר.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preinačiti odabrani disk.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja módosítani a kijelölt lemezt.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di modificare il disco selezionato.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、選択中のディスクを変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 선택한 디스크를 변경하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre den markerte disken.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de geselecteerde schijf te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zmodyfikować zaznaczony dysk.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar o disco selecionado.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar modificar o disco seleccionado.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să modifice discul selectat.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать выбранный диск.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša upraviť vybraný disk.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra den markerade skivan.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขดิสก์ที่เลือก</string>
-				<key>tr</key>
-				<string>__APPNAME__, seçilen diski değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається змінити вибраний диск.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改所选磁盘。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改所選磁碟。</string>
-			</dict>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>is-admin</string>
-				<string>on-console</string>
-				<string>default</string>
-			</array>
-		</dict>
-		<key>com.apple.DiskManagement.internal.</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Used by diskmanagementd to allow access to its privileged functions</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل القرص</string>
-				<key>ca</key>
-				<string>Modificar el disc</string>
-				<key>cs</key>
-				<string>Změnit Disk</string>
-				<key>da</key>
-				<string>Juster disk</string>
-				<key>de</key>
-				<string>Volume ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση δίσκου</string>
-				<key>en</key>
-				<string>Modify Disk</string>
-				<key>es</key>
-				<string>Modificar disco</string>
-				<key>fi</key>
-				<string>Muokkaa levyä</string>
-				<key>fr</key>
-				<string>Modifier le disque</string>
-				<key>he</key>
-				<string>ערוך/י שינויים בכונן</string>
-				<key>hr</key>
-				<string>Preinači disk</string>
-				<key>hu</key>
-				<string>Lemez módosítása</string>
-				<key>it</key>
-				<string>Modifica disco</string>
-				<key>ja</key>
-				<string>ディスクを変更</string>
-				<key>ko</key>
-				<string>디스크 수정</string>
-				<key>nb</key>
-				<string>Endre disk</string>
-				<key>nl</key>
-				<string>Wijzig schijf</string>
-				<key>pl</key>
-				<string>Modyfikuj dysk</string>
-				<key>pt</key>
-				<string>Modificar Disco</string>
-				<key>pt-PT</key>
-				<string>Modificar o disco</string>
-				<key>ro</key>
-				<string>Modifică discul</string>
-				<key>ru</key>
-				<string>Модифицировать диск</string>
-				<key>sk</key>
-				<string>Upraviť disk</string>
-				<key>sv</key>
-				<string>Ändra skiva</string>
-				<key>th</key>
-				<string>แก้ไขดิสก์</string>
-				<key>tr</key>
-				<string>Diski Değiştir</string>
-				<key>uk</key>
-				<string>Змінити диск</string>
-				<key>zh-Hans</key>
-				<string>修改磁盘</string>
-				<key>zh-Hant</key>
-				<string>修改磁碟</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل القرص المحدد.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar el disc seleccionat.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit vybraný disk.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at ændre den valgte disk.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, das ausgewählte Volume zu ändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τροποποιήσει τον επιλεγμένο δίσκο.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify the selected disk.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar el disco seleccionado.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata valittua levyä.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de modifier le disque sélectionné.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לערוך שינויים בכונן הנבחר.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preinačiti odabrani disk.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja módosítani a kijelölt lemezt.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di modificare il disco selezionato.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、選択中のディスクを変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 선택한 디스크를 변경하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre den markerte disken.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de geselecteerde schijf te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zmodyfikować zaznaczony dysk.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar o disco selecionado.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar modificar o disco seleccionado.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să modifice discul selectat.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать выбранный диск.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša upraviť vybraný disk.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra den markerade skivan.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขดิสก์ที่เลือก</string>
-				<key>tr</key>
-				<string>__APPNAME__, seçilen diski değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається змінити вибраний диск.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改所选磁盘。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改所選磁碟。</string>
-			</dict>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>is-admin</string>
-				<string>default</string>
-			</array>
-		</dict>
-		<key>com.apple.DiskManagement.reserveKEK</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Used by diskmanagementd to allow use of the reserve KEK.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل القرص</string>
-				<key>ca</key>
-				<string>Modificar el disc</string>
-				<key>cs</key>
-				<string>Změny na disku</string>
-				<key>da</key>
-				<string>Rediger disk</string>
-				<key>de</key>
-				<string>Volume verändern</string>
-				<key>el</key>
-				<string>Τροποποίηση δίσκου</string>
-				<key>en</key>
-				<string>Modify Disk</string>
-				<key>es</key>
-				<string>Modificar disco</string>
-				<key>fi</key>
-				<string>Muokkaa levyä</string>
-				<key>fr</key>
-				<string>Modifier le disque</string>
-				<key>he</key>
-				<string>ערוך/י שינויים בכונן</string>
-				<key>hr</key>
-				<string>Preinači disk</string>
-				<key>hu</key>
-				<string>Lemez módosítása</string>
-				<key>it</key>
-				<string>Modifica disco</string>
-				<key>ja</key>
-				<string>ディスクを変更</string>
-				<key>ko</key>
-				<string>디스크 수정</string>
-				<key>nb</key>
-				<string>Endre disk</string>
-				<key>nl</key>
-				<string>Wijzig schijf</string>
-				<key>pl</key>
-				<string>Modyfikuj dysk</string>
-				<key>pt</key>
-				<string>Modificar Disco</string>
-				<key>pt-PT</key>
-				<string>Modificar disco</string>
-				<key>ro</key>
-				<string>Modifică discul</string>
-				<key>ru</key>
-				<string>Изменить диск</string>
-				<key>sk</key>
-				<string>Upraviť disk</string>
-				<key>sv</key>
-				<string>Ändra skiva</string>
-				<key>th</key>
-				<string>แก้ไขดิสก์</string>
-				<key>tr</key>
-				<string>Diski Değiştir</string>
-				<key>uk</key>
-				<string>Змінити диск</string>
-				<key>zh-Hans</key>
-				<string>修改磁盘</string>
-				<key>zh-Hant</key>
-				<string>修改磁碟</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل القرص المشفر.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar un disc encriptat.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší provést změny na šifrovaném disku.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at redigere en krypteret disk.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, ein verschlüsseltes Volume zu verändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τροποποιήσει έναν κωδικοποιημένο δίσκο.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify an encrypted disk.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar un disco encriptado.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata salattua levyä.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie de modifier un disque chiffré.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לערוך שינויים בכונן מוצפן.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preinačiti kriptirani disk.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ egy titkosított lemezt próbál módosítani.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di modificare un disco criptato.</string>
-				<key>ja</key>
-				<string>__APPNAME__ が暗号化ディスクを変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__에서 암호화된 디스크를 수정하려고 시도 중입니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre en kryptert disk.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert een gecodeerde schijf te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zmodyfikować zaszyfrowany dysk.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar um disco criptografado.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar modificar um disco cifrado.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să modifice un disc criptat.</string>
-				<key>ru</key>
-				<string>__APPNAME__ пытается изменить зашифрованный диск.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša upraviť šifrovaný disk.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra en krypterad skiva.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขดิสก์ที่เข้ารหัส</string>
-				<key>tr</key>
-				<string>__APPNAME__ şifrelenmiş bir diski değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається змінити зашифрований диск.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改已加密的磁盘。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改加密的磁碟。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-		</dict>
-		<key>com.apple.KerberosAgent</key>
-		<dict>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>comment</key>
-			<string>Used to acquire Kerberos credentials.</string>
-			<key>mechanisms</key>
-			<array>
-				<string>KerberosAgent:kerberos-dialog</string>
-				<string>KerberosAgent:kerberos-authenticate,privileged</string>
-			</array>
-		</dict>
-		<key>com.apple.OpenScripting.additions.send</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Used to send restricted scripting addition commands to processes that require authorization to handle the events.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>إرسال الأوامر</string>
-				<key>ca</key>
-				<string>Enviar ordres</string>
-				<key>cs</key>
-				<string>Odeslat příkazy</string>
-				<key>da</key>
-				<string>Send kommandoer</string>
-				<key>de</key>
-				<string>Befehle senden</string>
-				<key>el</key>
-				<string>Αποστολή εντολών</string>
-				<key>en</key>
-				<string>Send Commands</string>
-				<key>es</key>
-				<string>Enviar comandos</string>
-				<key>fi</key>
-				<string>Lähetä komennot</string>
-				<key>fr</key>
-				<string>Envoyer des commandes</string>
-				<key>he</key>
-				<string>שלח/י פקודות</string>
-				<key>hr</key>
-				<string>Å alji naredbe</string>
-				<key>hu</key>
-				<string>Parancsok küldése</string>
-				<key>it</key>
-				<string>Invia comandi</string>
-				<key>ja</key>
-				<string>コマンドを送信</string>
-				<key>ko</key>
-				<string>명령 보내기</string>
-				<key>nb</key>
-				<string>Send kommandoer</string>
-				<key>nl</key>
-				<string>Stuur commando's</string>
-				<key>pl</key>
-				<string>Wyślij polecenia</string>
-				<key>pt</key>
-				<string>Enviar Comandos</string>
-				<key>pt-PT</key>
-				<string>Enviar comandos</string>
-				<key>ro</key>
-				<string>Trimite comenzi</string>
-				<key>ru</key>
-				<string>Отправить команды</string>
-				<key>sk</key>
-				<string>Odoslať príkazy</string>
-				<key>sv</key>
-				<string>Skicka kommandon</string>
-				<key>th</key>
-				<string>ส่งคำสั่ง</string>
-				<key>tr</key>
-				<string>Komutları Gönder</string>
-				<key>uk</key>
-				<string>Відправити команди</string>
-				<key>zh-Hans</key>
-				<string>发送命令</string>
-				<key>zh-Hant</key>
-				<string>傳送指令</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ إرسال أوامر إضافة برامج نصية محظورة إلى التطبيقات.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està provant d’enviar a altres aplicacions ordres d’addició d’scripts restringides.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odeslat omezené příkazy skriptovacího doplňku jiným aplikacím.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at sende begrænsede instrukstilføjelseskommandoer til andre programmer.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, Befehle für beschränkte Scripting Additions an andere Programme zu senden.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να στείλει περιορισμένες εντολές προσθήκης σεναρίων σε άλλες εφαρμογές.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to send restricted scripting addition commands to other applications.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando enviar comandos de adición de scripts restringidos a otras aplicaciones.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää lähettää rajoitettuja komentosarjalisäyskomentoja muille ohjelmille.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye d’envoyer des commandes restreintes de compléments de pilotage vers d’autres applications.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לשלוח פקודות תוספת הסרטה מוגבלות ליישומים אחרים.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava poslati ograničene naredbe skripe drugim aplikacijama.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál szkripthozzáadási parancsokat küldeni más alkalmazásoknak.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di inviare alle applicazioni comandi con restrizioni per estensioni AppleScript.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、制限付きスクリプティングの追加コマンドをほかのアプリケーションに送信しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 다른 응용 프로그램으로 제한된 스크립팅 추가 명령을 보내려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å sende begrensede prosedyretilleggkommandoer til andre programmer.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert beperkte script-extracommando's naar andere programma's te sturen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje wysłać zastrzeżone skryptowe polecenia dodania do innych programów.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando enviar comandos restringidos de adição de roteiros para outros aplicativos.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está tentar enviar comandos restritos de adição a outras aplicações.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să trimită comenzi de suplimente de scriptare restricționate către alte aplicații.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается отправить команды дополнения к скрипту в другие программы.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odoslať iným aplikáciám obmedzené príkazy skriptovacích dodatkov.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker skicka begränsade skripttilläggkommandon till andra program.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามส่งคำสั่งเพิ่มเติมที่ถูกจำกัดการเขียนสคริปต์</string>
-				<key>tr</key>
-				<string>__APPNAME__, diğer uygulamalara sınırlı betik yazma eki komutları göndermeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відправити іншим програмам обмежені команди додатків скриптування.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图给其他应用程序发送受限制的脚本添加命令。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試將受限的工序指令附加程式的指令傳送到其他應用程式。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-		</dict>
-		<key>com.apple.Safari.parental-controls</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Checked when changing parental controls for Safari.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل الإعدادات</string>
-				<key>ca</key>
-				<string>Modificar la configuració</string>
-				<key>cs</key>
-				<string>Změnit nastavení</string>
-				<key>da</key>
-				<string>Juster indstillinger</string>
-				<key>de</key>
-				<string>Einstellungen ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση ρυθμίσεων</string>
-				<key>en</key>
-				<string>Modify Settings</string>
-				<key>es</key>
-				<string>Modificar ajustes</string>
-				<key>fi</key>
-				<string>Muokkaa asetuksia</string>
-				<key>fr</key>
-				<string>Modifer les réglages</string>
-				<key>he</key>
-				<string>ערוך/י שינויים</string>
-				<key>hr</key>
-				<string>Preinači postavke</string>
-				<key>hu</key>
-				<string>Beállítások módosítása</string>
-				<key>it</key>
-				<string>Modifica impostazioni</string>
-				<key>ja</key>
-				<string>設定を変更</string>
-				<key>ko</key>
-				<string>설정 수정</string>
-				<key>nb</key>
-				<string>Endre innstillinger</string>
-				<key>nl</key>
-				<string>Wijzig instellingen</string>
-				<key>pl</key>
-				<string>Zmień ustawienia</string>
-				<key>pt</key>
-				<string>Modificar Ajustes</string>
-				<key>pt-PT</key>
-				<string>Modificar definições</string>
-				<key>ro</key>
-				<string>Schimbă configurările</string>
-				<key>ru</key>
-				<string>Модифицировать настройки</string>
-				<key>sk</key>
-				<string>Upraviť nastavenia</string>
-				<key>sv</key>
-				<string>Ändra inställningar</string>
-				<key>th</key>
-				<string>แก้ไขค่าติดตั้ง</string>
-				<key>tr</key>
-				<string>Ayarları Değiştir</string>
-				<key>uk</key>
-				<string>Змінити параметри</string>
-				<key>zh-Hans</key>
-				<string>修改设置</string>
-				<key>zh-Hant</key>
-				<string>修改設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل إعدادات الإشراف العائلي لـ Safari.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar la configuració dels controls parentals de Safari.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit nastavení Rodičovského dohledu pro Safari.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at ændre indstillingerne til børnesikring i Safari.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Einstellungen für die Kindersicherheit in Safari zu ändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τροποποιήσει τις ρυθμίσεις του Γονικού ελέγχου για το Safari.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify the Parental Controls settings for Safari.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar los ajustes de los controles parentales de Safari.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata Safarin käyttörajoitusten asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de modifier les réglages du contrôle parental de Safari.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לערוך שינויים בהגדרות כלי הבקרה להורים עבור Safari.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preinačiti postavke roditeljskih kontrola za Safari.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja módosítani a Safari szülői felügyeleti beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di modificare le impostazioni dei controlli censura di Safari.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、Safari の“ペアレンタルコントロール”環境設定を変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) Safari에 대한 유해 콘텐츠 차단 설정을 변경하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre foreldrekontrollinnstillingene for Safari.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de instellingen voor ouderlijk toezicht van Safari te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zmienić ustawienia Nadzoru rodzicielskiego dla Safari.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar os ajustes dos Controles Parentais para o Safari.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar modificar as definições do Controlo Parental do Safari.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să schimbe configurările de control parental pentru Safari.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать настройки Родительского контроля в Safari.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša upraviť nastavenia rodičovskej ochrany v Safari.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra Föräldrakontrolls inställningar för Safari.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขค่าติดตั้งการควบคุมโดยผู้ปกครองสำหรับ Safari</string>
-				<key>tr</key>
-				<string>__APPNAME__, Safari için Ebeveyn Denetimi ayarlarını değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається змінити параметри Батьківського контролю для Safari.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改 Safari的“家长控制”设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改 Safari 的“分級保護控制”設定。</string>
-			</dict>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-admin</string>
-				<string>authenticate-admin</string>
-			</array>
-			<key>shared</key>
-			<false/>
-			<key>timeout</key>
-			<integer>60</integer>
-		</dict>
-		<key>com.apple.Safari.show-passwords</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>This right is used by Safari to show passwords </string>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ إظهار كلمات السر.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant mostrar les contrasenyes.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší zobrazit hesla.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at vise adgangskoder.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, Kennwörter einzublenden.</string>
-				<key>el</key>
-				<string>Η εφαρμογή «__APPNAME__» προσπαθεί να εμφανίσει συνθηματικά.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to show passwords.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando mostrar las contraseñas.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää näyttää salasanat.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye d’afficher les mots de passe.</string>
-				<key>he</key>
-				<string>__APPNAME__ מנסה להציג סיסמאות.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava prikazati lozinke.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja megjeleníteni a jelszavakat.</string>
-				<key>it</key>
-				<string>__APPNAME__ tenta di mostrare le password.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、パスワードを表示しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 암호를 보려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å vise passord.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert wachtwoorden te tonen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje pokazać hasła.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando mostrar senhas.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar mostrar palavras‑passe.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să afișeze parole.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается показать пароли.</string>
-				<key>sk</key>
-				<string>Aplikácia __APPNAME__ sa pokúša zobraziť heslá.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker visa lösenord.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแสดงรหัสผ่าน</string>
-				<key>tr</key>
-				<string>__APPNAME__ parolaları göstermeye çalışıyor.</string>
-				<key>uk</key>
-				<string>__APPNAME__ намагається показати паролі.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__” 正在尝试显示密码。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__” 正在嘗試顯示密碼。</string>
-			</dict>
-			<key>session-owner</key>
-			<true/>
-			<key>shared</key>
-			<false/>
-			<key>timeout</key>
-			<integer>10</integer>
-		</dict>
-		<key>com.apple.ServiceManagement.blesshelper</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Used by the ServiceManagement framework to add a privileged helper tool to the system launchd.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تثبيت المساعد</string>
-				<key>ca</key>
-				<string>Instal·lar l’assistent</string>
-				<key>cs</key>
-				<string>Instalovat nástroj</string>
-				<key>da</key>
-				<string>Installer hjælpeprogram</string>
-				<key>de</key>
-				<string>Hilfsprogramm installieren</string>
-				<key>el</key>
-				<string>Εγκατάσταση του Βοηθού</string>
-				<key>en</key>
-				<string>Install Helper</string>
-				<key>es</key>
-				<string>Instalar asistente</string>
-				<key>fi</key>
-				<string>Asenna avustaja</string>
-				<key>fr</key>
-				<string>Installer l’utilitaire</string>
-				<key>he</key>
-				<string>התקן/י את כלי העזר</string>
-				<key>hr</key>
-				<string>Instaliraj pomoćnika</string>
-				<key>hu</key>
-				<string>Segédeszköz telepítése</string>
-				<key>it</key>
-				<string>Installa Helper</string>
-				<key>ja</key>
-				<string>ヘルパーをインストール</string>
-				<key>ko</key>
-				<string>보조 응용 프로그램 설치</string>
-				<key>nb</key>
-				<string>Installer hjelper</string>
-				<key>nl</key>
-				<string>Installeer Helper</string>
-				<key>pl</key>
-				<string>Zainstaluj narzędzie pomocnicze</string>
-				<key>pt</key>
-				<string>Instalar Auxiliar</string>
-				<key>pt-PT</key>
-				<string>Instalar Ferramenta de Ajuda </string>
-				<key>ro</key>
-				<string>Instalează ajutătorul</string>
-				<key>ru</key>
-				<string>Установить Helper</string>
-				<key>sk</key>
-				<string>Inštalovať pomocníka</string>
-				<key>sv</key>
-				<string>Installera hjälpprogram</string>
-				<key>th</key>
-				<string>ตัวช่วยการติดตั้ง</string>
-				<key>tr</key>
-				<string>Yardımcıyı Yükle</string>
-				<key>uk</key>
-				<string>Інсталювати інструмент</string>
-				<key>zh-Hans</key>
-				<string>安装帮助程序</string>
-				<key>zh-Hant</key>
-				<string>安裝輔助程式</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تثبيت أداة مساعد جديدة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant instal·lar una nova eina de l’assistent.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší nainstalovat nový pomocný nástroj.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at installere et nyt hjælpeværktøj.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, ein neues Hilfsprogramm zu installieren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να εγκαταστήσει ένα νέο εργαλείο βοηθού.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to install a new helper tool.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando instalar una herramienta asociada.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää asentaa uutta avustajatyökalua.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye d’installer un nouvel utilitaire.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש להתקין כלי עזר חדש.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava instalirati novi pomoćni alat.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál telepíteni egy új segédeszközt.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di installare un nuovo Helper.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、新しいヘルパーツールをインストールしようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 새로운 보조 도구를 설치하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å installere et nytt hjelpeverktøy.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert een nieuwe helpertool te installeren.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zainstalować nowe narzędzie pomocnicze.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando instalar uma nova ferramenta auxiliar.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar instalar uma nova ferramenta de ajuda.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să instaleze un nou instrument ajutător.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается установить новый инструмент справки.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša inštalovať nový nástroj pomocníka.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker installera ett nytt hjälpverktyg.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามติดตั้งเครื่องมือช่วยเหลือใหม่</string>
-				<key>tr</key>
-				<string>__APPNAME__, yeni bir yardımcı araç yüklemeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається інсталювати новий допоміжний інструмент.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图安装新的帮助程序工具。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試安裝新的輔助工具。</string>
-			</dict>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>authenticate-admin-30</string>
-			</array>
-		</dict>
-		<key>com.apple.ServiceManagement.daemons.modify</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Used by the ServiceManagement framework to make changes to the system launchd's set of daemons.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>إضافة مساعد</string>
-				<key>ca</key>
-				<string>Afegir l’assistent</string>
-				<key>cs</key>
-				<string>Přidat nástroj</string>
-				<key>da</key>
-				<string>Tilføj hjælpeprogram</string>
-				<key>de</key>
-				<string>Hilfsprogramm hinzufügen</string>
-				<key>el</key>
-				<string>Προσθήκη του Βοηθού</string>
-				<key>en</key>
-				<string>Add Helper</string>
-				<key>es</key>
-				<string>Añadir asistente</string>
-				<key>fi</key>
-				<string>Lisää avustaja</string>
-				<key>fr</key>
-				<string>Ajouter l’utilitaire </string>
-				<key>he</key>
-				<string>הוסף/י את כלי העזר</string>
-				<key>hr</key>
-				<string>Dodaj pomoćnika</string>
-				<key>hu</key>
-				<string>Segédeszköz hozzáadása</string>
-				<key>it</key>
-				<string>Aggiungi Helper</string>
-				<key>ja</key>
-				<string>ヘルパーを追加</string>
-				<key>ko</key>
-				<string>보조 응용 프로그램 추가</string>
-				<key>nb</key>
-				<string>Legg til hjelper</string>
-				<key>nl</key>
-				<string>Voeg Helper toe</string>
-				<key>pl</key>
-				<string>Dodaj narzędzie pomocnicze</string>
-				<key>pt</key>
-				<string>Adicionar Auxiliar</string>
-				<key>pt-PT</key>
-				<string>Adicionar Ferramenta de Ajuda</string>
-				<key>ro</key>
-				<string>Adaugă ajutătorul</string>
-				<key>ru</key>
-				<string>Добавить Helper</string>
-				<key>sk</key>
-				<string>Pridať pomocníka</string>
-				<key>sv</key>
-				<string>Lägg till hjälpprogram</string>
-				<key>th</key>
-				<string>เพิ่มเครื่องมือช่วยเหลือ</string>
-				<key>tr</key>
-				<string>Yardımcı Ekle</string>
-				<key>uk</key>
-				<string>Додати інструмент</string>
-				<key>zh-Hans</key>
-				<string>添加帮助程序</string>
-				<key>zh-Hant</key>
-				<string>加入輔助程式</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ إضافة أداة مساعد جديدة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està provant d’afegir una nova eina de l’assistent.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší přidat nový pomocný nástroj.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at tilføje et nyt hjælpeværktøj.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, ein neues Hilfsprogramm hinzufügen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να προσθέσει ένα νέο εργαλείο βοηθού.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to add a new helper tool.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando añadir una herramienta asociada.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää lisätä uuden avustajatyökalun.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye d’ajouter un nouvel utilitaire.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש להוסיף כלי עזר חדש.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava dodati novi pomoćni alat.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál hozzáadni egy új segédeszközt.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di aggiungere un nuovo Helper.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、新しいヘルパーツールを追加しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 새로운 보조 도구를 추가하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å legge til et nytt hjelpeverktøy.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert een nieuwe helpertool toe te voegen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje dodać nowe narzędzie pomocnicze.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando adicionar uma nova ferramenta auxiliar.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar adicionar uma nova ferramenta de ajuda.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să adauge un nou instrument ajutător.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается добавить новый инструмент справки.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša pridať nový nástroj pomocníka.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker lägga till ett nytt hjälpverktyg.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามเพิ่มเครื่องมือช่วยเหลือใหม่</string>
-				<key>tr</key>
-				<string>__APPNAME__, yeni bir yardımcı araç eklemeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається додати новий допоміжний інструмент.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图添加一个新的帮助程序工具。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試加入新的輔助工具。</string>
-			</dict>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>entitled-admin-or-authenticate-admin</string>
-			</array>
-		</dict>
-		<key>com.apple.SoftwareUpdate.modify-settings</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Checked by the Admin framework when making changes to the Software Update preference pane.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح القفل</string>
-				<key>ca</key>
-				<string>Desbloquejar</string>
-				<key>cs</key>
-				<string>Odemknout</string>
-				<key>da</key>
-				<string>LÃ¥s op</string>
-				<key>de</key>
-				<string>Entsperren</string>
-				<key>el</key>
-				<string>Ξεκλείδωμα</string>
-				<key>en</key>
-				<string>Unlock</string>
-				<key>es</key>
-				<string>Desbloquear</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Déverrouiller</string>
-				<key>he</key>
-				<string>בטל/י את הנעילה</string>
-				<key>hr</key>
-				<string>Otključaj</string>
-				<key>hu</key>
-				<string>Feloldás</string>
-				<key>it</key>
-				<string>Sblocca</string>
-				<key>ja</key>
-				<string>ロック解除</string>
-				<key>ko</key>
-				<string>잠금 해제</string>
-				<key>nb</key>
-				<string>LÃ¥s opp</string>
-				<key>nl</key>
-				<string>Ontgrendel</string>
-				<key>pl</key>
-				<string>Odblokuj</string>
-				<key>pt</key>
-				<string>Desbloquear</string>
-				<key>pt-PT</key>
-				<string>Desproteger</string>
-				<key>ro</key>
-				<string>Deblochează</string>
-				<key>ru</key>
-				<string>Снять защиту</string>
-				<key>sk</key>
-				<string>Odomknúť</string>
-				<key>sv</key>
-				<string>LÃ¥s upp</string>
-				<key>th</key>
-				<string>ปลดล็อก</string>
-				<key>tr</key>
-				<string>Kilidi Aç</string>
-				<key>uk</key>
-				<string>Відімкнути</string>
-				<key>zh-Hans</key>
-				<string>解锁</string>
-				<key>zh-Hant</key>
-				<string>解鎖</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ فتح قفل تفضيلات محدث البرامج.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant desbloquejar el tauler de preferències Actualització de Programari.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odemknout předvolby Aktualizace softwaru.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at låse vinduet Softwareopdatering op.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Systemeinstellung „Softwareaktualisierung“ zu entsperren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ξεκλειδώσει τις προτιμήσεις ενημέρωσης λογισμικού.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to unlock the Software Update preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando desbloquear el panel de preferencias Actualización de Software.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää avata Ohjelmiston päivitys -asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie de déverrouiller les préférences Mise à jour de logiciels.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לבטל את הנעילה של העדפות ״עדכוני תוכנה״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava otključati postavke Ažuriranje softvera.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja feloldani a szoftverfrissítés beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di sbloccare le preferenze di Aggiornamento Software.</string>
-				<key>ja</key>
-				<string>__APPNAME__ が“ソフトウェア・アップデート”環境設定のロックを解除しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 소프트웨어 업데이트 환경설정을 잠금 해제하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å låse opp Programvareoppdatering-valgpanelet.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het voorkeurenpaneel 'Software-update' te ontgrendelen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje odblokować preferencje uaktualnień programów.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando desbloquear as preferências Atualização de Software.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar desproteger as preferências de Actualização de Software.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să deblocheze preferințele Actualizare software.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается снять защиту с настроек панели «Обновление программ».</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odomknúť nastavenia aktualizácie softvéru.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker låsa upp inställningarna för Programuppdatering.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปลดล็อกค่าปรับแต่งการอัปเดตซอฟต์แวร์</string>
-				<key>tr</key>
-				<string>__APPNAME__, Yazılım Güncelleme tercihlerinin kilidini açmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відімкнути параметри Оновлення системи.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图解锁“软件更新”偏好设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試解鎖“軟體更新”偏好設定。</string>
-			</dict>
-			<key>rule</key>
-			<string>root-or-entitled-admin-or-app-specific-admin</string>
-		</dict>
-		<key>com.apple.SoftwareUpdate.scan</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Checked when user is updating software.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تحقق</string>
-				<key>ca</key>
-				<string>Comprovar</string>
-				<key>cs</key>
-				<string>Ověřit</string>
-				<key>da</key>
-				<string>Søg</string>
-				<key>de</key>
-				<string>Überprüfen</string>
-				<key>el</key>
-				<string>Έλεγχος</string>
-				<key>en</key>
-				<string>Check</string>
-				<key>es</key>
-				<string>Comprobar</string>
-				<key>fi</key>
-				<string>Tarkista</string>
-				<key>fr</key>
-				<string>Rechercher</string>
-				<key>he</key>
-				<string>בדוק</string>
-				<key>hr</key>
-				<string>Potraži</string>
-				<key>hu</key>
-				<string>Ellenőrzés</string>
-				<key>it</key>
-				<string>Verifica</string>
-				<key>ja</key>
-				<string>確認</string>
-				<key>ko</key>
-				<string>확인</string>
-				<key>nb</key>
-				<string>Søk</string>
-				<key>nl</key>
-				<string>Markeer</string>
-				<key>pl</key>
-				<string>Sprawdź</string>
-				<key>pt</key>
-				<string>Verificar</string>
-				<key>pt-PT</key>
-				<string>Procurar</string>
-				<key>ro</key>
-				<string>Verifică disponibilitatea</string>
-				<key>ru</key>
-				<string>Проверить</string>
-				<key>sk</key>
-				<string>Vyhľadať</string>
-				<key>sv</key>
-				<string>Kontrollera</string>
-				<key>th</key>
-				<string>ตรวจสอบ</string>
-				<key>tr</key>
-				<string>Denetle</string>
-				<key>uk</key>
-				<string>Перевірити</string>
-				<key>zh-Hans</key>
-				<string>检查</string>
-				<key>zh-Hant</key>
-				<string>檢查</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ التحقق من برنامج جديد موّفَر من Apple.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant comprovar si hi ha programari nou subministrat per Apple.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší ověřit dostupnost nového softwaru poskytovaného společností Apple.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at søge efter ny software leveret af Apple.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, neue von Apple bereitgestellte Software zu finden.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ελέγξει για νέο λογισμικό που παρέχεται από την Apple.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to check for new Apple-provided software.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando comprobar si hay software nuevo proporcionado por Apple.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää tarkistaa, onko uutta Applen ohjelmistoa saatavilla.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie de rechercher des nouveaux logiciels fournis par Apple.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לחפש תוכנות חדשות מבית Apple.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava potražiti novi Apple softver.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál ellenőrizni egy új, Apple által szolgáltatott szoftvert.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di verificare se è disponibile nuovo software fornito da Apple.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、Apple 提供の新規ソフトウェアを確認しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) Apple에서 제공한 새로운 소프트웨어를 확인하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å søke etter ny programvare som er levert av Apple.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert te zoeken naar nieuwe van Apple afkomstige software.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje sprawdzić dostępność oprogramowania udostępnionego przez Apple.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando buscar novos softwares fornecidos pela Apple.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar procurar novo software da Apple.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să verifice disponibilitatea de software nou furnizat de Apple.</string>
-				<key>ru</key>
-				<string>__APPNAME__ пытается проверить наличие нового ПО, предоставленного компанией Apple.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša vyhľadať nový softvér spoločnosti Apple.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker kontrollera om ny programvara från Apple finns tillgänglig.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามตรวจสอบซอฟต์แวร์ใหม่ที่ให้มาโดย Apple</string>
-				<key>tr</key>
-				<string>__APPNAME__, Apple tarafından sağlanan yeni yazılım olup olmadığını denetlemeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагаєтсья перевірити наявність нового програмного забезпечення Apple.</string>
-				<key>zh-Hans</key>
-				<string>__APPNAME__ 正在尝试检查是否存在新的 Apple 提供的软件。</string>
-				<key>zh-Hant</key>
-				<string>__APPNAME__ 正在嘗試檢查 Apple 提供的新軟體。</string>
-			</dict>
-			<key>rule</key>
-			<string>root-or-entitled-admin-or-authenticate-admin</string>
-		</dict>
-		<key>com.apple.XType.fontmover.install</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تثبيت</string>
-				<key>ca</key>
-				<string>Instal·lar</string>
-				<key>cs</key>
-				<string>Instalovat</string>
-				<key>da</key>
-				<string>Installer</string>
-				<key>de</key>
-				<string>Installieren</string>
-				<key>el</key>
-				<string>Εγκατάσταση</string>
-				<key>en</key>
-				<string>Install</string>
-				<key>es</key>
-				<string>Instalar</string>
-				<key>fi</key>
-				<string>Asenna</string>
-				<key>fr</key>
-				<string>Install</string>
-				<key>he</key>
-				<string>התקן</string>
-				<key>hr</key>
-				<string>Instaliraj</string>
-				<key>hu</key>
-				<string>Telepítés</string>
-				<key>it</key>
-				<string>Installa</string>
-				<key>ja</key>
-				<string>インストール</string>
-				<key>ko</key>
-				<string>설치</string>
-				<key>nb</key>
-				<string>Installer</string>
-				<key>nl</key>
-				<string>Installeer</string>
-				<key>pl</key>
-				<string>Instaluj</string>
-				<key>pt</key>
-				<string>Instalar</string>
-				<key>pt-PT</key>
-				<string>Instalar</string>
-				<key>pt_PT</key>
-				<string>Instalar</string>
-				<key>ro</key>
-				<string>Instalează</string>
-				<key>ru</key>
-				<string>Установить</string>
-				<key>sk</key>
-				<string>Inštalovať</string>
-				<key>sv</key>
-				<string>Installera</string>
-				<key>th</key>
-				<string>ติดตั้ง</string>
-				<key>tr</key>
-				<string>Yükle</string>
-				<key>uk</key>
-				<string>Інсталювати</string>
-				<key>zh-Hans</key>
-				<string>安装</string>
-				<key>zh-Hant</key>
-				<string>安裝</string>
-				<key>zh_CN</key>
-				<string>安装</string>
-				<key>zh_TW</key>
-				<string>安裝</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تثبيت خطوط النظام الجديدة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant instal·lar tipus de lletra del sistema nous.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší nainstalovat nová systémová písma.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at installere nye systemskrifter.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht neue Systemschriften zu installieren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να εγκαταστήσει νέες γραμματοσειρές συστήματος.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to install new system fonts.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando instalar nuevos tipos de letra del sistema.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää asentaa uusia järjestelmäfontteja.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie d’installer de nouvelles polices système.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש להתקין גופני מערכת חדשים.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava instalirati nove fontove sustava.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál új rendszer-betűtípust telepíteni.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di installare nuovi font di sistema.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、新規システムフォントをインストールしようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__에서 새로운 시스템 서체를 설치하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å installere nye systemfonter.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert nieuwe systeemlettertypen te installeren.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zainstalować nowe czcionki systemowe.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando instalar novas fontes do sistema.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar instalar novos tipos de letra do sistema.</string>
-				<key>pt_PT</key>
-				<string>__APPNAME__ está a tentar instalar novos tipos de letra do sistema.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să instaleze noi fonturi de sistem.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается установить новые системные шрифты.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša inštalovať nové systémové písma.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker installera nya systemtypsnitt.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามติดตั้งแบบอักษรของระบบใหม่</string>
-				<key>tr</key>
-				<string>__APPNAME__, yeni sistem fontları yüklemeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається інсталювати нові системні шрифти.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图安装新的系统字体。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試安裝新的系統字體。</string>
-				<key>zh_CN</key>
-				<string>“__APPNAME__”正试图安装新的系统字体。</string>
-				<key>zh_TW</key>
-				<string>“__APPNAME__”正在嘗試安裝新的系統字體。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-			<key>timeout</key>
-			<integer>300</integer>
-		</dict>
-		<key>com.apple.XType.fontmover.remove</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>إزالة</string>
-				<key>ca</key>
-				<string>Eliminar</string>
-				<key>cs</key>
-				<string>Odstranit</string>
-				<key>da</key>
-				<string>Fjern</string>
-				<key>de</key>
-				<string>Fjern</string>
-				<key>el</key>
-				<string>Αφαίρεση</string>
-				<key>en</key>
-				<string>Remove</string>
-				<key>es</key>
-				<string>Eliminar</string>
-				<key>fi</key>
-				<string>Poista</string>
-				<key>fr</key>
-				<string>Remove</string>
-				<key>he</key>
-				<string>הסר/י</string>
-				<key>hr</key>
-				<string>Ukloni</string>
-				<key>hu</key>
-				<string>Eltávolítás</string>
-				<key>it</key>
-				<string>Rimuovi</string>
-				<key>ja</key>
-				<string>取り除く</string>
-				<key>ko</key>
-				<string>제거</string>
-				<key>nb</key>
-				<string>Fjern</string>
-				<key>nl</key>
-				<string>Verwijder</string>
-				<key>pl</key>
-				<string>Usuń</string>
-				<key>pt</key>
-				<string>Remover</string>
-				<key>pt-PT</key>
-				<string>Remover</string>
-				<key>pt_PT</key>
-				<string>Remover</string>
-				<key>ro</key>
-				<string>Elimină</string>
-				<key>ru</key>
-				<string>Удалить</string>
-				<key>sk</key>
-				<string>Odstrániť</string>
-				<key>sv</key>
-				<string>Ta bort</string>
-				<key>th</key>
-				<string>ลบ</string>
-				<key>tr</key>
-				<string>Sil</string>
-				<key>uk</key>
-				<string>Видалити</string>
-				<key>zh-Hans</key>
-				<string>移除</string>
-				<key>zh-Hant</key>
-				<string>移除</string>
-				<key>zh_CN</key>
-				<string>移除</string>
-				<key>zh_TW</key>
-				<string>移除</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ إزالة خطوط النظام الموجودة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant eliminar tipus de lleta del sistema existents.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odstranit existující systémová písma.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at fjerne eksisterende systemskrifter.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht vorhandene Systemschriften zu entfernen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να αφαιρέσει υπάρχουσες γραμματοσειρές συστήματος.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to remove existing system fonts.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando eliminar tipos de letra del sistema.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää poistaa nykyistä järjestelmäfonttia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie de supprimer des polices système par défaut.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש להסיר גופני מערכת קיימים.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava ukloniti postojeće fontove sustava.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál eltávolítani egy meglévő rendszer-betűtípust.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di rimuovere i font di un sistema esistente.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、既存のシステムフォントを取り除こうとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__에서 기존의 시스템 서체를 제거하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å fjerne eksisterende systemfonter.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert bestaande systeemlettertypen te verwijderen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje usunąć istniejące czcionki systemowe.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando remover fontes existentes do sistema.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar remover tipos de letra do sistema.</string>
-				<key>pt_PT</key>
-				<string>__APPNAME__ está a tentar remover tipos de letra do sistema.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să elimine fonturi de sistem existente.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается удалить имеющиеся системные шрифты.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odstrániť existujúce systémové písma.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ta bort befintliga systemtypsnitt.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามลบแบบอักษรของระบบที่มีอยู่แล้ว</string>
-				<key>tr</key>
-				<string>__APPNAME__, var olan sistem fontlarını silmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається видалити наявні системні шрифти.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图移除现有的系统字体。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試移除現有的系統字體。</string>
-				<key>zh_CN</key>
-				<string>“__APPNAME__”正试图移除现有的系统字体。</string>
-				<key>zh_TW</key>
-				<string>“__APPNAME__”正在嘗試移除現有的系統字體。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-			<key>timeout</key>
-			<integer>300</integer>
-		</dict>
-		<key>com.apple.XType.fontmover.restore</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>استعادة</string>
-				<key>ca</key>
-				<string>Restaurar</string>
-				<key>cs</key>
-				<string>Obnovit</string>
-				<key>da</key>
-				<string>Gendan</string>
-				<key>de</key>
-				<string>Wiederherstellen</string>
-				<key>el</key>
-				<string>Επαναφορά</string>
-				<key>en</key>
-				<string>Restore</string>
-				<key>es</key>
-				<string>Restaurar</string>
-				<key>fi</key>
-				<string>Palauta</string>
-				<key>fr</key>
-				<string>Restore</string>
-				<key>he</key>
-				<string>שחזר/י</string>
-				<key>hr</key>
-				<string>Obnovi</string>
-				<key>hu</key>
-				<string>Visszaállítás</string>
-				<key>it</key>
-				<string>Ripristina</string>
-				<key>ja</key>
-				<string>復元</string>
-				<key>ko</key>
-				<string>복원</string>
-				<key>nb</key>
-				<string>Gjenopprett</string>
-				<key>nl</key>
-				<string>Zet terug</string>
-				<key>pl</key>
-				<string>Przywróć</string>
-				<key>pt</key>
-				<string>Restaurar</string>
-				<key>pt-PT</key>
-				<string>Restaurar</string>
-				<key>pt_PT</key>
-				<string>Restaurar</string>
-				<key>ro</key>
-				<string>Restaurează</string>
-				<key>ru</key>
-				<string>Восстановить</string>
-				<key>sk</key>
-				<string>Obnoviť</string>
-				<key>sv</key>
-				<string>Återskapa</string>
-				<key>th</key>
-				<string>กู้คืน</string>
-				<key>tr</key>
-				<string>Geri Yükle</string>
-				<key>uk</key>
-				<string>Відновити</string>
-				<key>zh-Hans</key>
-				<string>恢复</string>
-				<key>zh-Hant</key>
-				<string>回復</string>
-				<key>zh_CN</key>
-				<string>恢复</string>
-				<key>zh_TW</key>
-				<string>回復</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ استعادة خطوط النظام الافتراضية.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant restaurar els tipus de lletra del sistema per omissió.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší obnovit výchozí systémová písma.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at gendanne standard systemskrifter.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht die Standard-Systemschriften wiederherzustellen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να επαναφέρει τις προεπιλεγμένες γραμματοσειρές συστήματος.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to restore the default system fonts.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando restaurar los tipos de letra por omisión del sistema.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää palauttaa järjestelmän oletusfontteja.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie de restaurer les polices système par défaut.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לשחזר את גופני המערכת המקוריים.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava obnoviti standardne fontove sustava.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja visszaállítani az alapértelmezett rendszer-betűtípust.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di ripristinare i font di default del sistema.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、デフォルトのシステムフォントを復元しようとしてします。</string>
-				<key>ko</key>
-				<string>__APPNAME__에서 기본 시스템 서체를 복원하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å gjenopprette standard systemfonter.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de standaardsysteemlettertypen terug te zetten.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje przywrócić domyślne czcionki systemowe.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando restaurar as fontes padrão do sistema.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar restaurar os tipos de letra predefinidos do sistema.</string>
-				<key>pt_PT</key>
-				<string>__APPNAME__ está a tentar restaurar os tipos de letra predefinidos do sistema.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să restaureze fonturile de sistem implicite.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается восстановить стандартные системные шрифты.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša obnoviť pôvodné systémové písma.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker återskapa de förvalda systemtypsnitten.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามกู้คืนแบบอักษรเริ่มต้นของระบบ</string>
-				<key>tr</key>
-				<string>__APPNAME__, saptanmış sistem fontlarını geri yüklemeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відновити початкові системні шрифти.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图恢复默认的系统字体。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試回復預設的系統字體。</string>
-				<key>zh_CN</key>
-				<string>“__APPNAME__”正试图恢复默认的系统字体。</string>
-				<key>zh_TW</key>
-				<string>“__APPNAME__”正在嘗試回復預設的系統字體。</string>
-			</dict>
-			<key>rule</key>
-			<string>root-or-entitled-admin-or-authenticate-admin</string>
-		</dict>
-		<key>com.apple.ZFSManager.</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Used by zfsmanager to allow access to destructive zfs functions</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>is-admin</string>
-				<string>default</string>
-			</array>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>com.apple.activitymonitor.kill</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Used by Activity Monitor to authorize killing processes not owned by the user.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>إنهاء العملية</string>
-				<key>ca</key>
-				<string>Sortir del procés</string>
-				<key>cs</key>
-				<string>Ukončit proces</string>
-				<key>da</key>
-				<string>Slut proces</string>
-				<key>de</key>
-				<string>Vorgang beenden</string>
-				<key>el</key>
-				<string>Τερματισμός διεργασίας</string>
-				<key>en</key>
-				<string>Quit Process</string>
-				<key>es</key>
-				<string>Salir del proceso</string>
-				<key>fi</key>
-				<string>Lopeta prosessi</string>
-				<key>fr</key>
-				<string>Quitter l’opération</string>
-				<key>he</key>
-				<string>סיים/י את התהליך</string>
-				<key>hr</key>
-				<string>Zaustavi proces</string>
-				<key>hu</key>
-				<string>Folyamat bezárása</string>
-				<key>it</key>
-				<string>Esci dal processo</string>
-				<key>ja</key>
-				<string>プロセスを終了</string>
-				<key>ko</key>
-				<string>프로세스 종료</string>
-				<key>nb</key>
-				<string>Avslutt prosess</string>
-				<key>nl</key>
-				<string>Stop proces</string>
-				<key>pl</key>
-				<string>Zakończ proces</string>
-				<key>pt</key>
-				<string>Encerrar Processo</string>
-				<key>pt-PT</key>
-				<string>Sair do processo</string>
-				<key>ro</key>
-				<string>Termină procesul</string>
-				<key>ru</key>
-				<string>Завершить процесс</string>
-				<key>sk</key>
-				<string>Ukončiť proces</string>
-				<key>sv</key>
-				<string>Avsluta process</string>
-				<key>th</key>
-				<string>หยุดการดำเนินการ</string>
-				<key>tr</key>
-				<string>İşlemden Çık</string>
-				<key>uk</key>
-				<string>Завершити процес</string>
-				<key>zh-Hans</key>
-				<string>退出进程</string>
-				<key>zh-Hant</key>
-				<string>結束程序</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ إنهاء العملية المحددة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant sortir del procés seleccionat.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší ukončit vybraný proces.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at afslutte den valgte proces.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, den ausgewählten Vorgang zu beenden.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τερματίσει την επιλεγμένη διεργασία.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to quit the selected process.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando salir del proceso seleccionado.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää lopettaa valittua prosessia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de quitter le processus sélectionné.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לסיים התהליך הנבחר.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava zaustaviti označeni proces.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál kilépni a kijelölt folyamatból.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di uscire dal processo selezionato.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、選択中のプロセスを終了しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 선택한 프로세스를 종료하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å avslutte den markerte prosessen.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het geselecteerde proces te stoppen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zakończyć zaznaczony proces.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando encerrar o processo selecionado.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar sair do processo seleccionado.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să termine procesul selectat.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается завершить выбранный процесс.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša ukončiť vybraný proces.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker avsluta den markerade processen.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามออกจากการดำเนินการที่เลือก</string>
-				<key>tr</key>
-				<string>__APPNAME__, seçilen işlemden çıkmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається завершити вибраний процес.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图退出所选进程。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試結束所選程序。</string>
-			</dict>
-			<key>rule</key>
-			<string>entitled-admin-or-authenticate-admin</string>
-			<key>shared</key>
-			<false/>
-			<key>timeout</key>
-			<integer>0</integer>
-		</dict>
-		<key>com.apple.appserver.privilege.admin</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>For administrative access to the Application Server management tool.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل الإعدادات</string>
-				<key>ca</key>
-				<string>Modificar la configuració</string>
-				<key>cs</key>
-				<string>Změnit nastavení</string>
-				<key>da</key>
-				<string>Juster indstillinger</string>
-				<key>de</key>
-				<string>Einstellungen ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση ρυθμίσεων</string>
-				<key>en</key>
-				<string>Modify Settings</string>
-				<key>es</key>
-				<string>Modificar ajustes</string>
-				<key>fi</key>
-				<string>Muokkaa asetuksia</string>
-				<key>fr</key>
-				<string>Modifer les réglages</string>
-				<key>he</key>
-				<string>ערוך/י שינויים</string>
-				<key>hr</key>
-				<string>Preinači postavke</string>
-				<key>hu</key>
-				<string>Beállítások módosítása</string>
-				<key>it</key>
-				<string>Modifica impostazioni</string>
-				<key>ja</key>
-				<string>設定を変更</string>
-				<key>ko</key>
-				<string>설정 수정</string>
-				<key>nb</key>
-				<string>Endre innstillinger</string>
-				<key>nl</key>
-				<string>Wijzig instellingen</string>
-				<key>pl</key>
-				<string>Zmień ustawienia</string>
-				<key>pt</key>
-				<string>Modificar Ajustes</string>
-				<key>pt-PT</key>
-				<string>Modificar definições</string>
-				<key>ro</key>
-				<string>Schimbă configurările</string>
-				<key>ru</key>
-				<string>Модифицировать настройки</string>
-				<key>sk</key>
-				<string>Upraviť nastavenia</string>
-				<key>sv</key>
-				<string>Ändra inställningar</string>
-				<key>th</key>
-				<string>แก้ไขค่าติดตั้ง</string>
-				<key>tr</key>
-				<string>Ayarları Değiştir</string>
-				<key>uk</key>
-				<string>Змінити параметри</string>
-				<key>zh-Hans</key>
-				<string>修改设置</string>
-				<key>zh-Hant</key>
-				<string>修改設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل إعدادات خادم التطبيق.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar la configuració del servidor d’aplicacions.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit nastavení serveru aplikací.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at ændre indstillingerne til programserveren.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Einstellungen für den Anwendungsserver zu ändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τροποποιήσει τις ρυθμίσεις διακομιστή εφαρμογών.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify the Application Server settings.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar los ajustes del servidor de aplicaciones.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata ohjelmistopalvelimen asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de modifier les réglages de serveur d’applications.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לערוך שינויים בהגדרות של שרת היישומים.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preinačiti postavke aplikacijskog poslužitelja.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja módosítani az Alkalmazáskiszolgáló beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di modificare le impostazioni di applicazioni per il server.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、アプリケーションサーバの設定を変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 응용 프로그램 서버 설정을 수정하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre programtjenerinnstillingene.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de instellingen van de programmaserver te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ zmienić ustawienia serwera programów.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar os ajustes do Servidor de Aplicativos.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar modificar as definições do servidor de aplicações.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să schimbe configurările serverului de aplicații.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать настройки сервера программ.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša upraviť nastavenia servera aplikácie.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra inställningarna för programservern.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขค่าติดตั้งเซิร์ฟเวอร์แอปพลิเคชัน</string>
-				<key>tr</key>
-				<string>__APPNAME__, Uygulama Sunucusu ayarlarını değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається змінити параметри Програмного сервера.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改“应用程序服务器”设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改“應用程式伺服器”設定。</string>
-			</dict>
-			<key>rule</key>
-			<string>appserver-admin</string>
-		</dict>
-		<key>com.apple.appserver.privilege.user</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>For user access to the Application Server management tool.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل الإعدادات</string>
-				<key>ca</key>
-				<string>Modificar la configuració</string>
-				<key>cs</key>
-				<string>Změnit nastavení</string>
-				<key>da</key>
-				<string>Juster indstillinger</string>
-				<key>de</key>
-				<string>Einstellungen ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση ρυθμίσεων</string>
-				<key>en</key>
-				<string>Modify Settings</string>
-				<key>es</key>
-				<string>Modificar ajustes</string>
-				<key>fi</key>
-				<string>Muokkaa asetuksia</string>
-				<key>fr</key>
-				<string>Modifer les réglages</string>
-				<key>he</key>
-				<string>ערוך/י שינויים</string>
-				<key>hr</key>
-				<string>Preinači postavke</string>
-				<key>hu</key>
-				<string>Beállítások módosítása</string>
-				<key>it</key>
-				<string>Modifica impostazioni</string>
-				<key>ja</key>
-				<string>設定を変更</string>
-				<key>ko</key>
-				<string>설정 수정</string>
-				<key>nb</key>
-				<string>Endre innstillinger</string>
-				<key>nl</key>
-				<string>Wijzig instellingen</string>
-				<key>pl</key>
-				<string>Zmień ustawienia</string>
-				<key>pt</key>
-				<string>Modificar Ajustes</string>
-				<key>pt-PT</key>
-				<string>Modificar definições</string>
-				<key>ro</key>
-				<string>Schimbă configurările</string>
-				<key>ru</key>
-				<string>Модифицировать настройки</string>
-				<key>sk</key>
-				<string>Upraviť nastavenia</string>
-				<key>sv</key>
-				<string>Ändra inställningar</string>
-				<key>th</key>
-				<string>แก้ไขค่าติดตั้ง</string>
-				<key>tr</key>
-				<string>Ayarları Değiştir</string>
-				<key>uk</key>
-				<string>Змінити параметри</string>
-				<key>zh-Hans</key>
-				<string>修改设置</string>
-				<key>zh-Hant</key>
-				<string>修改設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل إعدادات خادم التطبيق الخاصة بك.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar la configuració del servidor d’aplicacions.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit nastavení vašeho serveru aplikací.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at ændre dine indstillinger til programserveren.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Einstellungen für Ihren Anwendungsserver zu ändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τροποποιήσει τις ρυθμίσεις του διακομιστή εφαρμογών.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify your Application Server settings.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentado modificar los ajustes del servidor de aplicaciones.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata ohjelmistopalvelimen asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de modifier les réglages de votre serveur d’applications.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לערוך שינויים בהגדרות שרת היישומים שלך.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preinačiti vaše postavke aplikacijskog poslužitelja.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja módosítani az Alkalmazáskiszolgáló beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di modificare le impostazioni di applicazioni per il server.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、アプリケーションサーバの設定を変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 사용자의 응용 프로그램 서버 설정을 수정하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre programtjenerinnstillingene.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert uw instellingen voor de programmaserver te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ zmienić ustawienia serwera programów.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar os ajustes do seu Servidor de Aplicativos.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar modificar as definições do seu servidor de aplicações.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să schimbe configurările serverului dvs. de aplicații.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать Ваши настройки сервера программ.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša upraviť nastavenia servera aplikácie.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra inställningarna för din programserver.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขค่าติดตั้งเซิร์ฟเวอร์แอปพลิเคชัน</string>
-				<key>tr</key>
-				<string>__APPNAME__, Uygulama Sunucusu ayarlarınızı değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається змінити параметри вашого Програмного сервера.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改您的“应用程序服务器”设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改您的“應用程式伺服器”設定。</string>
-			</dict>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>appserver-admin</string>
-				<string>appserver-user</string>
-			</array>
-		</dict>
-		<key>com.apple.builtin.confirm-access</key>
-		<dict>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>mechanisms</key>
-			<array>
-				<string>builtin:confirm-access</string>
-			</array>
-			<key>tries</key>
-			<integer>1</integer>
-		</dict>
-		<key>com.apple.builtin.confirm-access-password</key>
-		<dict>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>mechanisms</key>
-			<array>
-				<string>builtin:confirm-access-password</string>
-			</array>
-		</dict>
-		<key>com.apple.builtin.generic-new-passphrase</key>
-		<dict>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>mechanisms</key>
-			<array>
-				<string>builtin:generic-new-passphrase</string>
-			</array>
-		</dict>
-		<key>com.apple.builtin.generic-unlock</key>
-		<dict>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>mechanisms</key>
-			<array>
-				<string>builtin:generic-unlock</string>
-			</array>
-		</dict>
-		<key>com.apple.container-repair</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تصليح</string>
-				<key>ca</key>
-				<string>Reparar</string>
-				<key>cs</key>
-				<string>Opravit</string>
-				<key>da</key>
-				<string>Reparer</string>
-				<key>de</key>
-				<string>Reparieren</string>
-				<key>el</key>
-				<string>Επισκευή</string>
-				<key>en</key>
-				<string>Repair</string>
-				<key>es</key>
-				<string>Reparar</string>
-				<key>fi</key>
-				<string>Korjaa</string>
-				<key>fr</key>
-				<string>Réparer</string>
-				<key>he</key>
-				<string>תקן</string>
-				<key>hr</key>
-				<string>Popravi</string>
-				<key>hu</key>
-				<string>Javítás</string>
-				<key>it</key>
-				<string>Ripara</string>
-				<key>ja</key>
-				<string>修復</string>
-				<key>ko</key>
-				<string>복구</string>
-				<key>nb</key>
-				<string>Reparer</string>
-				<key>nl</key>
-				<string>Herstel</string>
-				<key>pl</key>
-				<string>Napraw</string>
-				<key>pt</key>
-				<string>Reparar</string>
-				<key>pt-PT</key>
-				<string>Reparar</string>
-				<key>ro</key>
-				<string>Repară</string>
-				<key>ru</key>
-				<string>Исправить</string>
-				<key>sk</key>
-				<string>Opraviť</string>
-				<key>sv</key>
-				<string>Reparera</string>
-				<key>th</key>
-				<string>ซ่อมแซม</string>
-				<key>tr</key>
-				<string>Onar</string>
-				<key>uk</key>
-				<string>Полагодити</string>
-				<key>zh-Hans</key>
-				<string>修复</string>
-				<key>zh-Hant</key>
-				<string>修復</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحتاج __APPNAME__ إلى إصلاح مكتبتك لتشغيل التطبيات.</string>
-				<key>ca</key>
-				<string>__APPNAME__ necessita reparar la vostra biblioteca per poder executar aplicacions.</string>
-				<key>cs</key>
-				<string>__APPNAME__ potřebuje opravit vaši knihovnu, aby bylo možné spouštět aplikace.</string>
-				<key>da</key>
-				<string>__APPNAME__ skal reparere dit bibliotek for at kunne afvikle  programmer.</string>
-				<key>de</key>
-				<string>__APPNAME__ muss Ihre Library reparieren, um Programme auszuführen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή «__APPNAME__» πρέπει να επισκευάσει τη Βιβλιοθήκη σας ώστε να εκτελεί εφαρμογές.</string>
-				<key>en</key>
-				<string>__APPNAME__ needs to repair your Library to run applications.</string>
-				<key>es</key>
-				<string>__APPNAME__ necesita reparar su biblioteca para poder ejecutar aplicaciones.</string>
-				<key>fi</key>
-				<string>Kohteen__APPNAME__ pitää korjata kirjastosi, jotta se voi suorittaa ohjelmia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ doit réparer votre Bibliothèque pour exécuter les applications.</string>
-				<key>he</key>
-				<string>על-מנת שניתן יהיה להפעיל יישומים, על __APPNAME__ לתקן את הספריה שלך.</string>
-				<key>hr</key>
-				<string>__APPNAME__ treba popraviti vašu medijateku kako bi se mogle pokrenuti aplikacije.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ alkalmazásnak ki kell javítania az Ön Könyvtárát az alkalmazások futtatásához.</string>
-				<key>it</key>
-				<string>Per poter eseguire applicazioni, __APPNAME__ deve riparare la libreria.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、アプリケーションを実行するためにライブラリを修復する必要があります。</string>
-				<key>ko</key>
-				<string>응용 프로그램을 실행하려면 __APPNAME__이(가) 사용자의 라이브러리를 복구해야 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ må reparere biblioteket ditt for å kunne bruke programmer.</string>
-				<key>nl</key>
-				<string>__APPNAME__ moet uw Bibliotheek herstellen om programma's te kunnen uitvoeren.</string>
-				<key>pl</key>
-				<string>__APPNAME__ musi naprawić bibliotekę, aby móc uruchamiać programy.</string>
-				<key>pt</key>
-				<string>__APPNAME__ necessita reparar sua biblioteca para poder executar aplicativos.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ tem de reparar a Biblioteca antes de poder executar aplicações.</string>
-				<key>ro</key>
-				<string>__APPNAME__ trebuie să repare biblioteca dvs. pentru a putea rula aplicații.</string>
-				<key>ru</key>
-				<string>Программе «__APPNAME__» необходимо исправить Вашу библиотеку для запуска программ.</string>
-				<key>sk</key>
-				<string>__APPNAME__ potrebuje kvôli spúšťaniu aplikácií opraviť vašu knižniciu.</string>
-				<key>sv</key>
-				<string>__APPNAME__ måste reparera ditt bibliotek för att kunna använda program.</string>
-				<key>th</key>
-				<string>__APPNAME__ จำเป็นต้องซ่อมแซมคลังของคุณเพื่อสั่งทำงานแอปพลิเคชั่น</string>
-				<key>tr</key>
-				<string>Uygulamaları çalıştırmak için Kitaplık klasörünüzün __APPNAME__ tarafından onarılması gerekiyor.</string>
-				<key>uk</key>
-				<string>Програмі __APPNAME__ потрібно полагодити вашу папку «Бібліотека», щоб мати змогу запускати програми.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”需要修复您的资源库才能运行应用程序。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”需要修復您的資料庫來執行應用程式。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-			<key>timeout</key>
-			<integer>30</integer>
-		</dict>
-		<key>com.apple.dashboard.advisory.allow</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-			<key>timeout</key>
-			<integer>300</integer>
-		</dict>
-		<key>com.apple.desktopservices</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>For privileged file operations from within the Finder.</string>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-			<key>timeout</key>
-			<integer>0</integer>
-		</dict>
-		<key>com.apple.desktopservices.scripted</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>For scripting-initiated privileged file operations from within the Finder.</string>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-			<key>timeout</key>
-			<integer>0</integer>
-		</dict>
-		<key>com.apple.docset.install</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Used by Xcode to restrict access to a daemon it uses to install and update documentation sets.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تحديث الوثائق</string>
-				<key>ca</key>
-				<string>Actualitzar la documentació</string>
-				<key>cs</key>
-				<string>Aktualizovat dokumentaci</string>
-				<key>da</key>
-				<string>Opdater dokumentation</string>
-				<key>de</key>
-				<string>Dokumentation aktualisieren</string>
-				<key>el</key>
-				<string>Ενημέρωση πληροφοριακού υλικού</string>
-				<key>en</key>
-				<string>Update Documentation</string>
-				<key>es</key>
-				<string>Actualizar documentación</string>
-				<key>fi</key>
-				<string>Päivitä dokumentaatio</string>
-				<key>fr</key>
-				<string>Mettre à jour la documentation</string>
-				<key>he</key>
-				<string>עדכן/י</string>
-				<key>hr</key>
-				<string>Ažuriraj dokumentaciju</string>
-				<key>hu</key>
-				<string>Dokumentáció frissítése</string>
-				<key>it</key>
-				<string>Aggiona documentazione</string>
-				<key>ja</key>
-				<string>ドキュメントをアップデート</string>
-				<key>ko</key>
-				<string>설명서 업데이트</string>
-				<key>nb</key>
-				<string>Oppdater dokumentasjon</string>
-				<key>nl</key>
-				<string>Werk documentatie bij</string>
-				<key>pl</key>
-				<string>Uaktualnij dokumentację</string>
-				<key>pt</key>
-				<string>Atualizar Documentação</string>
-				<key>pt-PT</key>
-				<string>Actualizar documentação</string>
-				<key>ro</key>
-				<string>Actualizează documentația</string>
-				<key>ru</key>
-				<string>Обновить документацию</string>
-				<key>sk</key>
-				<string>Aktualizovať dokumentáciu</string>
-				<key>sv</key>
-				<string>Uppdatera dokumentation</string>
-				<key>th</key>
-				<string>ปรับปรุงเอกสาร</string>
-				<key>tr</key>
-				<string>Belgeleri Güncelle</string>
-				<key>uk</key>
-				<string>Оновити документацію</string>
-				<key>zh-Hans</key>
-				<string>更新文稿</string>
-				<key>zh-Hant</key>
-				<string>更新說明文件</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تحديث مطور الوثائق.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant actualizar la documentació dels desenvolupadors.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší aktualizovat vývojářskou dokumentaci.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at opdatere dokumentationen til udvikling.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Entwicklerdokumentation zu aktualisieren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ενημερώσει το πληροφοριακό υλικό για προγραμματιστές.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to update the developer documentation.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando actualizar la documentación para desarrolladores.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää päivittää kehittäjän dokumentaatiota.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de mettre à jour la documentation de développement.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לעדכן את המדריכים למפתחים.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava ažurirati dokumentaciju razvojnika.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja frissíteni a fejlesztői dokumentációt.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di aggiornare la documentazione sviluppatori.</string>
-				<key>ja</key>
-				<string>__APPNAME__ はデベロッパドキュメントをアップデートしようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 개발자 설명서를 업데이트하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å oppdatere utviklerdokumentasjonen.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de documentatie voor ontwikkelaars bij te werken.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje uaktualnić dokumentację dla programistów.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando atualizar a documentação do desenvolvedor.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar actualizar a documentação de programação.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să actualizeze documentația dezvoltatorilor.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается обновить документацию для разработчиков.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša aktualizovať vývojársku dokumentáciu.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker uppdatera dokumentationen för utvecklare.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปรับปรุงเอกสารของผู้พัฒนา</string>
-				<key>tr</key>
-				<string>__APPNAME__, geliştirici belgelerini güncellemeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається оновити розробницьку документацію.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图更新开发者文稿。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試更新開發人員說明文件。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-		</dict>
-		<key>com.apple.library-repair</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تصليح</string>
-				<key>ca</key>
-				<string>Reparar</string>
-				<key>cs</key>
-				<string>Opravit</string>
-				<key>da</key>
-				<string>Reparer</string>
-				<key>de</key>
-				<string>Reparieren</string>
-				<key>el</key>
-				<string>Επισκευή</string>
-				<key>en</key>
-				<string>Repair</string>
-				<key>es</key>
-				<string>Reparar</string>
-				<key>fi</key>
-				<string>Korjaa</string>
-				<key>fr</key>
-				<string>Réparer</string>
-				<key>he</key>
-				<string>תקן</string>
-				<key>hr</key>
-				<string>Popravi</string>
-				<key>hu</key>
-				<string>Javítás</string>
-				<key>it</key>
-				<string>Ripara</string>
-				<key>ja</key>
-				<string>修復</string>
-				<key>ko</key>
-				<string>복구</string>
-				<key>nb</key>
-				<string>Reparer</string>
-				<key>nl</key>
-				<string>Herstel</string>
-				<key>pl</key>
-				<string>Napraw</string>
-				<key>pt</key>
-				<string>Reparar</string>
-				<key>pt-PT</key>
-				<string>Reparar</string>
-				<key>ro</key>
-				<string>Repară</string>
-				<key>ru</key>
-				<string>Исправить</string>
-				<key>sk</key>
-				<string>Opraviť</string>
-				<key>sv</key>
-				<string>Reparera</string>
-				<key>th</key>
-				<string>ซ่อมแซม</string>
-				<key>tr</key>
-				<string>Onar</string>
-				<key>uk</key>
-				<string>Полагодити</string>
-				<key>zh-Hans</key>
-				<string>修复</string>
-				<key>zh-Hant</key>
-				<string>修復</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تصليح مكتبة الصور الخاصة بك.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està provant de reparar la vostra fototeca.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší opravit vaši knihovnu fotografií.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at reparere dit fotobibliotek.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, Ihre Fotomediathek zu reparieren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να επισκευάσει τη βιβλιοθήκη φωτογραφιών σας.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to repair your photo library.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando reparar su fototeca.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää korjata kuvakirjastoasi.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie de réparer votre bibliothèque de photos.</string>
-				<key>he</key>
-				<string>__APPNAME__ מנסה לתקן את ספריית התמונות שלך.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava popraviti vašu medijateku fotografija.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja kijavítani a fotókönyvtárat.</string>
-				<key>it</key>
-				<string>__APPNAME__ tenta di riparare la libreria foto.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、フォトライブラリを修復しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 사용자의 사진 보관함을 복구하려고 합니다.</string>
-				<key>nb</key>
-				<string>_APPNAME_ forsøker å reparere bildebiblioteket.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert uw fotobibliotheek te herstellen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje naprawić Twoją bibliotekę zdjęć.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando reparar a sua fototeca.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar reparar a sua fototeca.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să repare biblioteca dvs. foto.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается исправить Вашу медиатеку.</string>
-				<key>sk</key>
-				<string>Aplikácia __APPNAME__ sa pokúša opraviť vašu knižnicu fotografií.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker reparera ditt bildbibliotek.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามซ่อมแซมคลังรูปภาพของคุณ</string>
-				<key>tr</key>
-				<string>__APPNAME__ fotoğraf arşivinizi onarmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>__APPNAME__ намагається полагодити вашу фототеку.</string>
-				<key>zh-Hans</key>
-				<string>__APPNAME__ 正在尝试修复您的照片图库。</string>
-				<key>zh-Hant</key>
-				<string>__APPNAME__ 正在嘗試修復您的照片圖庫。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-		</dict>
-		<key>com.apple.lldb.LaunchUsingXPC</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ التحكم بعملية الجذر.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està provant de controlar un procés arrel.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší o převzetí řízení procesu typu „root“.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at overtage kontrollen med root-processen.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Steuerung eines Root-Prozesses zu übernehmen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή «__APPNAME__» προσπαθεί να αποκτήσει τον έλεγχο μιας ριζικής διεργασίας.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to take control of a root process.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando controlar un proceso raíz.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää saada pääprosessin hallintaansa.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de prendre le contrôle d’un processus racine.</string>
-				<key>he</key>
-				<string>__APPNAME__ מנסה לקבל שליטה על תהליך בסיס.</string>
-				<key>hr</key>
-				<string>__APPNAME__ želi preuzeti kontrolu nad korijenskim procesom.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja átvenni egy gyökérfolyamat vezérlését.</string>
-				<key>it</key>
-				<string>__APPNAME__ tenta di avere il controllo  di un processo root.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、ルートプロセスを制御しようとしてます。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) root 프로세스를 제어하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å ta kontroll over en prosess på rotnivå.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de besturing van een rootproces over te nemen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje przejąć kontrolę nad procesem użytkownika root.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando assumir o controle de um processo raiz.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar controlar um processo em root.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să preia controlul unui proces root.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается взять под контроль корневой процесс.</string>
-				<key>sk</key>
-				<string>Aplikácia __APPNAME__ sa pokúša prevziať kontrolu nad koreňovým procesom.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ta kontroll över en rotprocess.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามเข้าควบคุมกระบวนการรูท</string>
-				<key>tr</key>
-				<string>__APPNAME__ kök işlemin denetimini ele geçirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>__APPNAME__ намагається перебрати на себе керування кореневим процесом.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正在尝试控制 root 进程。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試控制 root 程序。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-		</dict>
-		<key>com.apple.opendirectoryd.linkidentity</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل حساب المُستخدم الخاص بك.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar el vostre compte d’usuari.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit váš uživatelský účet.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at ændre din brugerkonto.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, Ihren Benutzeraccount zu verändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή «__APPNAME__» προσπαθεί να τροποποιήσει τον λογαριασμό χρήστη σας.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify your user account.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar su cuenta de usuario.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata käyttäjätunnustasi.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de modifier votre compte utilisateur.</string>
-				<key>he</key>
-				<string>__APPNAME__ מנסה לשנות את חשבון המשתמש/ת שלך.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava promijeniti vaš korisnički račun.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ módosítani próbálja az Ön felhasználói fiókját.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta provando a modificare il tuo account utente.</string>
-				<key>ja</key>
-				<string>“__APPNAME__”で、ユーザアカウントが変更されようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 사용자 계정을 수정하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre brukerkontoen din.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert uw gebruikersaccount te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zmodyfikować Twoje konto użytkownika.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar a sua conta de usuário.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar modificar a sua conta de utilizador.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să vă modifice contul de utilizator.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать Вашу учетную запись пользователя.</string>
-				<key>sk</key>
-				<string>Aplikácia __APPNAME__ sa pokúša upraviť váš užívateľský účet.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra ditt användarkonto.</string>
-				<key>th</key>
-				<string>__APPNAME__กำลังพยายามแก้ไขบัญชีผู้ใช้ของคุณ</string>
-				<key>tr</key>
-				<string>__APPNAME__, kullanıcı hesabınızı değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>__APPNAME__ намагається змінити ваш обліковий запис користувача.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改您的用户帐户。</string>
-				<key>zh-Hant</key>
-				<string>__APPNAME__ 正在嘗試修改您的使用者帳號。</string>
-			</dict>
-			<key>rule</key>
-			<string>entitled-session-owner-or-authenticate-session-owner</string>
-		</dict>
-		<key>com.apple.security.assessment.update</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل الإعدادات</string>
-				<key>ca</key>
-				<string>Modificar la configuració</string>
-				<key>cs</key>
-				<string>Změnit nastavení</string>
-				<key>da</key>
-				<string>Juster indstillinger</string>
-				<key>de</key>
-				<string>Einstellungen ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση ρυθμίσεων</string>
-				<key>en</key>
-				<string>Modify Settings</string>
-				<key>es</key>
-				<string>Modificar ajustes</string>
-				<key>fi</key>
-				<string>Muokkaa asetuksia</string>
-				<key>fr</key>
-				<string>Modifer les réglages</string>
-				<key>he</key>
-				<string>ערוך/י הגדרות</string>
-				<key>hr</key>
-				<string>Preinači postavke</string>
-				<key>hu</key>
-				<string>Beállítások módosítása</string>
-				<key>it</key>
-				<string>Modifica impostazioni</string>
-				<key>ja</key>
-				<string>設定を変更</string>
-				<key>ko</key>
-				<string>설정 수정</string>
-				<key>nb</key>
-				<string>Endre innstillinger</string>
-				<key>nl</key>
-				<string>Wijzig instellingen</string>
-				<key>pl</key>
-				<string>Zmień ustawienia</string>
-				<key>pt</key>
-				<string>Modificar Ajustes</string>
-				<key>pt-PT</key>
-				<string>Modificar definições</string>
-				<key>ro</key>
-				<string>Schimbă configurările</string>
-				<key>ru</key>
-				<string>Модифицировать настройки</string>
-				<key>sk</key>
-				<string>Upraviť nastavenia</string>
-				<key>sv</key>
-				<string>Ändra inställningar</string>
-				<key>th</key>
-				<string>แก้ไขค่าติดตั้ง</string>
-				<key>tr</key>
-				<string>Ayarları Değiştir</string>
-				<key>uk</key>
-				<string>Змінити параметри</string>
-				<key>zh-Hans</key>
-				<string>修改设置</string>
-				<key>zh-Hant</key>
-				<string>修改設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ السماح لعنصر بأن يكون قيد التشغيل دائمًا.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està provant d’autoritzar un ítem perquè s’executi sempre.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší nějaké položce povolit, aby byla vždy spuštěna.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at give et emne lov til at være aktivt hele tiden.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, einem Objekt die Ausführung immer zu erlauben.</string>
-				<key>el</key>
-				<string>Η εφαρμογή «__APPNAME__» προσπαθεί να επιτρέψει σε ένα στοιχείο να εκτελείται πάντα.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to allow an item to always run.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando permitir que un ítem se ejecute siempre.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää sallia, että kohde on aina käytössä.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye d’autoriser un élément à s’exécuter en continu.</string>
-				<key>he</key>
-				<string>__APPNAME__ מנסה לאפשר לפריט לפעול באופן קבוע.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava dozvoliti stavci da uvijek bude pokrenuta.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál beállítani egy elemet, hogy az mindig fusson.</string>
-				<key>it</key>
-				<string>__APPNAME__ tenta di consentire che un elemento venga sempre eseguito.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、項目が常時動作することを許可しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 항목이 항상 실행되는 것을 허용하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å tillate at et program alltid kjører.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert een onderdeel toe te staan dat het altijd wordt uitgevoerd.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zezwolić, aby rzecz była zawsze uruchamiana.</string>
-				<key>pt</key>
-				<string>O __APPNAME__ está tentando autorizar um item a ser executado permanentemente.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar dar autorização a um elemento para permanecer constantemente aberto.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să-i permită unui articol să ruleze întotdeauna.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается разрешить объекту постоянно выполнять работу.</string>
-				<key>sk</key>
-				<string>Aplikácia __APPNAME__ sa pokúša povoliť spúšťanie položky. </string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker tillåta ett objekt att alltid köras.</string>
-				<key>th</key>
-				<string>__APPNAME__กำลังพยายามอนุญาตรายการให้ทำงานเสมอ</string>
-				<key>tr</key>
-				<string>__APPNAME__, bir öğenin her zaman çalışmasına izin vermeye çalışıyor.</string>
-				<key>uk</key>
-				<string>__APPNAME__ намагається дозволити елементу завжди запускатися.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正在尝试允许一个项目始终运行。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試允許某個項目持續執行。</string>
-			</dict>
-			<key>rule</key>
-			<string>root-or-entitled-admin-or-authenticate-admin</string>
-		</dict>
-		<key>com.apple.server.admin.streaming</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>For making administrative requests to the QuickTime Streaming Server.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل الإعدادات</string>
-				<key>ca</key>
-				<string>Modificar la configuració</string>
-				<key>cs</key>
-				<string>Změnit nastavení</string>
-				<key>da</key>
-				<string>Juster indstillinger</string>
-				<key>de</key>
-				<string>Einstellungen ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση ρυθμίσεων</string>
-				<key>en</key>
-				<string>Modify Settings</string>
-				<key>es</key>
-				<string>Modificar ajustes</string>
-				<key>fi</key>
-				<string>Muokkaa asetuksia</string>
-				<key>fr</key>
-				<string>Modifer les réglages</string>
-				<key>he</key>
-				<string>ערוך/י הגדרות</string>
-				<key>hr</key>
-				<string>Preinači postavke</string>
-				<key>hu</key>
-				<string>Beállítások módosítása</string>
-				<key>it</key>
-				<string>Modifica impostazioni</string>
-				<key>ja</key>
-				<string>設定を変更</string>
-				<key>ko</key>
-				<string>설정 수정</string>
-				<key>nb</key>
-				<string>Endre innstillinger</string>
-				<key>nl</key>
-				<string>Wijzig instellingen</string>
-				<key>pl</key>
-				<string>Zmień ustawienia</string>
-				<key>pt</key>
-				<string>Modificar Ajustes</string>
-				<key>pt-PT</key>
-				<string>Modificar definições</string>
-				<key>ro</key>
-				<string>Schimbă configurările</string>
-				<key>ru</key>
-				<string>Модифицировать настройки</string>
-				<key>sk</key>
-				<string>Upraviť nastavenia</string>
-				<key>sv</key>
-				<string>Ändra inställningar</string>
-				<key>th</key>
-				<string>แก้ไขค่าติดตั้ง</string>
-				<key>tr</key>
-				<string>Ayarları Değiştir</string>
-				<key>uk</key>
-				<string>Змінити параметри</string>
-				<key>zh-Hans</key>
-				<string>修改设置</string>
-				<key>zh-Hant</key>
-				<string>修改設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل إعدادات خادم تدفق QuickTime.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar la configuració del servidor QuickTime en temps real.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit nastavení serveru QuickTime Streaming.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at ændre indstillingerne til QuickTime Streaming.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die QuickTime-Streaming-Servereinstellungen zu ändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τροποποιήσει τις ρυθμίσεις του διακομιστή ροής QuickTime.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify the QuickTime Streaming Server settings.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar los ajustes de QuickTime Streaming Server.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata QuickTime Streaming Server -asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de modifier le réglages de QuickTime Streaming Server.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לערוך שינויים את ההגדרות של ״QuickTime Streaming Server״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preinačiti postavke QuickTime poslužitelja za streaming.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja módosítani a QuickTime Streaming kiszolgáló beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di modificare le impostazioni QuickTime Streaming Server.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、QuickTime Streaming Server の設定を変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) QuickTime Streaming Server 설정을 수정하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre QuickTime Streaming Server-innstillingene.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de instellingen van de QuickTime-streamingserver te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zmienić ustawienia serwera strumieniowania QuickTime.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar os ajustes do QuickTime Streaming Server.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar modificar as definições do servidor de streaming do QuickTime.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să schimbe configurările QuickTime Streaming Server.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать настройки сервера QuickTime Streaming.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša upraviť nastavenia QuickTime Streaming servera.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra inställningarna för QuickTime Streaming Server.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขค่าติดตั้งเซิร์ฟเวอร์ QuickTime Streaming</string>
-				<key>tr</key>
-				<string>__APPNAME__, QuickTime Streaming Server ayarlarını değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається змінити параметри QuickTime Streaming Server.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改 QuickTime 流服务器的设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改 QuickTime Streaming Server 設定。</string>
-			</dict>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-admin</string>
-				<string>authenticate-admin</string>
-			</array>
-			<key>shared</key>
-			<false/>
-			<key>timeout</key>
-			<integer>0</integer>
-		</dict>
-		<key>com.apple.trust-settings.admin</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>For modifying Trust Settings in the Local Admin domain.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تحديث الإعدادات</string>
-				<key>ca</key>
-				<string>Actualitzar la configuració</string>
-				<key>cs</key>
-				<string>Aktualizovat nastavení</string>
-				<key>da</key>
-				<string>Opdater indstillinger</string>
-				<key>de</key>
-				<string>Einstellungen aktualisieren</string>
-				<key>el</key>
-				<string>Ενημέρωση ρυθμίσεων</string>
-				<key>en</key>
-				<string>Update Settings</string>
-				<key>es</key>
-				<string>Actualizar ajustes</string>
-				<key>fi</key>
-				<string>Päivitä asetukset</string>
-				<key>fr</key>
-				<string>Mettre à jour les réglages</string>
-				<key>he</key>
-				<string>עדכן הגדרות</string>
-				<key>hr</key>
-				<string>Ažuriraj postavke</string>
-				<key>hu</key>
-				<string>Beállítások frissítése</string>
-				<key>it</key>
-				<string>Aggiorna impostazioni</string>
-				<key>ja</key>
-				<string>設定をアップデート</string>
-				<key>ko</key>
-				<string>설정 업데이트</string>
-				<key>nb</key>
-				<string>Oppdater innstillinger</string>
-				<key>nl</key>
-				<string>Werk instellingen bij</string>
-				<key>pl</key>
-				<string>Uaktualnij ustawienia</string>
-				<key>pt</key>
-				<string>Atualizar Ajustes</string>
-				<key>pt-PT</key>
-				<string>Actualizar definições</string>
-				<key>ro</key>
-				<string>Actualizează configurările</string>
-				<key>ru</key>
-				<string>Обновить настройки</string>
-				<key>sk</key>
-				<string>Aktualizovať nastavenia</string>
-				<key>sv</key>
-				<string>Uppdatera inställningar</string>
-				<key>th</key>
-				<string>ปรับปรุงค่าติดตั้ง</string>
-				<key>tr</key>
-				<string>Ayarları Güncelle</string>
-				<key>uk</key>
-				<string>Внести зміни</string>
-				<key>zh-Hans</key>
-				<string>更新设置</string>
-				<key>zh-Hant</key>
-				<string>更新設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>أنت تقوم بإجراء تغييرات على إعدادات الثقة في شهادة النظام.</string>
-				<key>ca</key>
-				<string>Esteu efectuant canvis en la configuració dels certificats de confiança del sistema.</string>
-				<key>cs</key>
-				<string>Provádíte změny v systémových nastaveních důvěryhodnosti certifikátů.</string>
-				<key>da</key>
-				<string>Du foretager ændringer i systemcertifikatets godkendelsesindstillinger.</string>
-				<key>de</key>
-				<string>Sie nehmen Änderungen an Ihren Systemeinstellungen für Zertifizierungen vor.</string>
-				<key>el</key>
-				<string>Κάνετε αλλαγές στις ρυθμίσεις αξιοπιστίας πιστοποιητικού συστήματος.</string>
-				<key>en</key>
-				<string>You are making changes to the System Certificate Trust Settings.</string>
-				<key>es</key>
-				<string>Está modificando los ajustes de confianza en certificados del sistema.</string>
-				<key>fi</key>
-				<string>Olet muuttamassa järjestelmävarmenteiden luottoasetuksia.</string>
-				<key>fr</key>
-				<string>Vous effectuez des modifications des réglages de confiance du certificat du système.</string>
-				<key>he</key>
-				<string>הינך עורך/ת שינויים בהגדרות האמון של אישורי המערכת.</string>
-				<key>hr</key>
-				<string>Unosite promjene u postavke pouzdanih certifikata sustava.</string>
-				<key>hu</key>
-				<string>Módosítja a Rendszertanúsítványok megbízhatósági beállításait.</string>
-				<key>it</key>
-				<string>Stai apportando modifiche alle impostazioni System Certificate Trust.</string>
-				<key>ja</key>
-				<string>“システム証明書の信頼性”環境設定を変更しようとしています。</string>
-				<key>ko</key>
-				<string>시스템 인증서 신뢰 설정을 변경하고 있습니다.</string>
-				<key>nb</key>
-				<string>Du endrer tillitsinnstillingene for systemsertifikater.</string>
-				<key>nl</key>
-				<string>U wijzigt de systeeminstellingen voor het vertrouwen van certificaten.</string>
-				<key>pl</key>
-				<string>Wprowadzasz zmiany w ustawieniach zaufania certyfikatu systemowego.</string>
-				<key>pt</key>
-				<string>Você está fazendo alterações nos Ajustes de Confiança dos Certificados do Sistema.</string>
-				<key>pt-PT</key>
-				<string>Está a alterar as definições de segurança do certificado do sistema.</string>
-				<key>ro</key>
-				<string>Efectuați modificări ale configurărilor de încredere pentru certificatul de sistem.</string>
-				<key>ru</key>
-				<string>Вы вносите изменения в настройки доверия системы.</string>
-				<key>sk</key>
-				<string>Vykonávate zmeny v nastaveniach dôveryhodnosti systémových certifikátov.</string>
-				<key>sv</key>
-				<string>Du gör ändringar i systemets tillförlitlighetsinställningar för certifikat.</string>
-				<key>th</key>
-				<string>คุณกำลังเปลี่ยนแปลงค่าติดตั้งใบรับรองที่เชื่อถือของระบบ</string>
-				<key>tr</key>
-				<string>Sistem Sertifikası Güven Ayarları’nda değişiklikler yapıyorsunuz.</string>
-				<key>uk</key>
-				<string>Ви вносите зміни до системних параметрів довіри сертифікатам.</string>
-				<key>zh-Hans</key>
-				<string>您正在更改“系统证书信任设置”。</string>
-				<key>zh-Hant</key>
-				<string>您正在更改“系統憑證信任設定”。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-		</dict>
-		<key>com.apple.trust-settings.user</key>
-		<dict>
-			<key>comment</key>
-			<string>For modifying per-user Trust Settings.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تحديث الإعدادات</string>
-				<key>ca</key>
-				<string>Actualitzar la configuració</string>
-				<key>cs</key>
-				<string>Aktualizovat nastavení</string>
-				<key>da</key>
-				<string>Opdater indstillinger</string>
-				<key>de</key>
-				<string>Einstellungen aktualisieren</string>
-				<key>el</key>
-				<string>Ενημέρωση ρυθμίσεων</string>
-				<key>en</key>
-				<string>Update Settings</string>
-				<key>es</key>
-				<string>Actualizar ajustes</string>
-				<key>fi</key>
-				<string>Päivitä asetukset</string>
-				<key>fr</key>
-				<string>Mettre à jour les réglages</string>
-				<key>he</key>
-				<string>עדכן הגדרות</string>
-				<key>hr</key>
-				<string>Ažuriraj postavke</string>
-				<key>hu</key>
-				<string>Beállítások frissítése</string>
-				<key>it</key>
-				<string>Aggiorna impostazioni</string>
-				<key>ja</key>
-				<string>設定をアップデート</string>
-				<key>ko</key>
-				<string>설정 업데이트</string>
-				<key>nb</key>
-				<string>Oppdater innstillinger</string>
-				<key>nl</key>
-				<string>Werk instellingen bij</string>
-				<key>pl</key>
-				<string>Uaktualnij ustawienia</string>
-				<key>pt</key>
-				<string>Atualizar Ajustes</string>
-				<key>pt-PT</key>
-				<string>Actualizar definições</string>
-				<key>ro</key>
-				<string>Actualizează configurările</string>
-				<key>ru</key>
-				<string>Обновить настройки</string>
-				<key>sk</key>
-				<string>Aktualizovať nastavenia</string>
-				<key>sv</key>
-				<string>Uppdatera inställningar</string>
-				<key>th</key>
-				<string>ปรับปรุงค่าติดตั้ง</string>
-				<key>tr</key>
-				<string>Ayarları Güncelle</string>
-				<key>uk</key>
-				<string>Внести зміни</string>
-				<key>zh-Hans</key>
-				<string>更新设置</string>
-				<key>zh-Hant</key>
-				<string>更新設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>أنت تقوم بإجراء تغييرات على إعدادات الثقة في شهادة النظام.</string>
-				<key>ca</key>
-				<string>Esteu efectuant canvis en la configuració dels certificats de confiança.</string>
-				<key>cs</key>
-				<string>Provádíte změny v nastaveních důvěryhodnosti certifikátů.</string>
-				<key>da</key>
-				<string>Du foretager ændringer i systemcertifikatets godkendelsesindstillinger.</string>
-				<key>de</key>
-				<string>Sie nehmen Änderungen an Ihren Systemeinstellungen für Zertifizierungen vor.</string>
-				<key>el</key>
-				<string>Κάνετε αλλαγές στις ρυθμίσεις αξιοπιστίας πιστοποιητικού.</string>
-				<key>en</key>
-				<string>You are making changes to your Certificate Trust Settings.</string>
-				<key>es</key>
-				<string>Está modificando los ajustes de confianza en certificados.</string>
-				<key>fi</key>
-				<string>Olet muuttamassa varmenteiden luottoasetuksia.</string>
-				<key>fr</key>
-				<string>Vous effectuez des modifications de vos réglages de confiance du certificat.</string>
-				<key>he</key>
-				<string>הינך עורך/ת שינויים בהגדרות האמון של אישורי המערכת.</string>
-				<key>hr</key>
-				<string>Unosite promjene u postavke pouzdanih certifikata.</string>
-				<key>hu</key>
-				<string>Módosítja a saját tanúsítványainak megbízhatósági beállításait.</string>
-				<key>it</key>
-				<string>Stai apportando modifiche alle impostazioni Certificate Trust.</string>
-				<key>ja</key>
-				<string>“システム証明書の信頼性”環境設定を変更しようとしています。</string>
-				<key>ko</key>
-				<string>사용자의 인증서 신뢰 설정을 변경하고 있습니다.</string>
-				<key>nb</key>
-				<string>Du endrer tillitsinnstillingene for sertifikater.</string>
-				<key>nl</key>
-				<string>U wijzigt uw instellingen voor het vertrouwen van certificaten.</string>
-				<key>pl</key>
-				<string>Wprowadzasz zmiany w ustawieniach zaufania swojego certyfikatu.</string>
-				<key>pt</key>
-				<string>Você está fazendo alterações nos seus Ajustes de Confiança dos Certificados.</string>
-				<key>pt-PT</key>
-				<string>Está a alterar as suas definições de segurança do certificado do sistema.</string>
-				<key>ro</key>
-				<string>Efectuați modificări ale configurărilor de încredere pentru certificatul dvs.</string>
-				<key>ru</key>
-				<string>Вы вносите изменения в свои настройки доверия.</string>
-				<key>sk</key>
-				<string>Vykonávate zmeny v nastaveniach dôveryhodnosti vašich certifikátov.</string>
-				<key>sv</key>
-				<string>Du gör ändringar i dina tillförlitlighetsinställningar för certifikat.</string>
-				<key>th</key>
-				<string>คุณกำลังเปลี่ยนแปลงค่าติดตั้งใบรับรองที่ชื่อถือของคุณ</string>
-				<key>tr</key>
-				<string>Sertifika Güven Ayarları’nızda değişiklikler yapıyorsunuz.</string>
-				<key>uk</key>
-				<string>Ви вносите зміни до своїх параметрів довіри сертифікатам.</string>
-				<key>zh-Hans</key>
-				<string>您正在更改您的“证书信任设置”。</string>
-				<key>zh-Hant</key>
-				<string>您正在更改您的“憑證信任設定”。</string>
-			</dict>
-			<key>rule</key>
-			<string>entitled-session-owner-or-authenticate-session-owner</string>
-		</dict>
-		<key>com.apple.uninstalld.uninstall</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>حذف</string>
-				<key>ca</key>
-				<string>Eliminar</string>
-				<key>cs</key>
-				<string>Smazat</string>
-				<key>da</key>
-				<string>Slet</string>
-				<key>de</key>
-				<string>Löschen</string>
-				<key>el</key>
-				<string>Διαγραφή</string>
-				<key>en</key>
-				<string>Delete</string>
-				<key>es</key>
-				<string>Eliminar</string>
-				<key>fi</key>
-				<string>Poista</string>
-				<key>fr</key>
-				<string>Supprimer</string>
-				<key>he</key>
-				<string>מחק</string>
-				<key>hr</key>
-				<string>Obriši</string>
-				<key>hu</key>
-				<string>Törlés</string>
-				<key>it</key>
-				<string>Elimina</string>
-				<key>ja</key>
-				<string>削除</string>
-				<key>ko</key>
-				<string>삭제</string>
-				<key>nb</key>
-				<string>Slett</string>
-				<key>nl</key>
-				<string>Verwijder</string>
-				<key>pl</key>
-				<string>Usuń</string>
-				<key>pt</key>
-				<string>Apagar</string>
-				<key>pt-PT</key>
-				<string>Apagar</string>
-				<key>ro</key>
-				<string>Șterge</string>
-				<key>ru</key>
-				<string>Удалить</string>
-				<key>sk</key>
-				<string>Vymazať</string>
-				<key>sv</key>
-				<string>Radera</string>
-				<key>th</key>
-				<string>ลบ</string>
-				<key>tr</key>
-				<string>Sil</string>
-				<key>uk</key>
-				<string>Видалити</string>
-				<key>zh-Hans</key>
-				<string>删除</string>
-				<key>zh-Hant</key>
-				<string>刪除</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ حذف التطبيق.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant eliminar una aplicació.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší smazat aplikaci.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at slette et program.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, ein Programm zu löschen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να διαγράψει μια εφαρμογή.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to delete an application.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando eliminar una aplicación.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää poistaa ohjelmaa.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie de supprimer une application.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש למחוק יישום.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava obrisati aplikaciju.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál egy alkalmazást törölni.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di eliminare un'applicazione.</string>
-				<key>ja</key>
-				<string>__APPNAME__ がアプリケーションを削除しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__에서 응용 프로그램을 삭제하려고 시도 중입니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å slette et program.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert een programma te verwijderen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje usunąć program.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando apagar um aplicativo.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar apagar uma aplicação.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să șteargă o aplicație.</string>
-				<key>ru</key>
-				<string>__APPNAME__ пытается удалить программу.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša vymazať aplikáciu.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker radera ett program.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามลบแอปพลิเคชัน</string>
-				<key>tr</key>
-				<string>__APPNAME__, bir uygulamayı silmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається видалити програму.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图删除应用程序。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試刪除應用程式。</string>
-			</dict>
-			<key>rule</key>
-			<string>entitled-admin-or-authenticate-admin</string>
-		</dict>
-		<key>config.add.</key>
-		<dict>
-			<key>class</key>
-			<string>allow</string>
-			<key>comment</key>
-			<string>Wildcard right for adding rights.  Anyone is allowed to add any (non-wildcard) rights.</string>
-		</dict>
-		<key>config.config.</key>
-		<dict>
-			<key>class</key>
-			<string>deny</string>
-			<key>comment</key>
-			<string>Wildcard right for any change to meta-rights for db modification.  Not allowed programmatically (just edit this file).</string>
-		</dict>
-		<key>config.modify.</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Wildcard right for modifying rights.  Admins are allowed to modify any (non-wildcard) rights.  Root does not require authentication.</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>authenticate-admin</string>
-			</array>
-		</dict>
-		<key>config.remove.</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Wildcard right for deleting rights.  Admins are allowed to delete any (non-wildcard) rights.  Root does not require authentication.</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>authenticate-admin</string>
-			</array>
-		</dict>
-		<key>config.remove.system.</key>
-		<dict>
-			<key>class</key>
-			<string>deny</string>
-			<key>comment</key>
-			<string>Wildcard right for deleting system rights.</string>
-		</dict>
-		<key>sys.openfile.</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>See authopen(1) for information on the use of this right.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح</string>
-				<key>ca</key>
-				<string>Obrir</string>
-				<key>cs</key>
-				<string>Otevřít</string>
-				<key>da</key>
-				<string>Åben</string>
-				<key>de</key>
-				<string>Öffnen</string>
-				<key>el</key>
-				<string>Άνοιγμα</string>
-				<key>en</key>
-				<string>Open</string>
-				<key>es</key>
-				<string>Abrir</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Ouvrir</string>
-				<key>he</key>
-				<string>פתח</string>
-				<key>hr</key>
-				<string>Otvori</string>
-				<key>hu</key>
-				<string>Megnyitás</string>
-				<key>it</key>
-				<string>Apri</string>
-				<key>ja</key>
-				<string>開く</string>
-				<key>ko</key>
-				<string>열기</string>
-				<key>nb</key>
-				<string>Åpne</string>
-				<key>nl</key>
-				<string>Open</string>
-				<key>pl</key>
-				<string>Otwórz</string>
-				<key>pt</key>
-				<string>Abrir</string>
-				<key>pt-PT</key>
-				<string>Abrir</string>
-				<key>ro</key>
-				<string>Deschide</string>
-				<key>ru</key>
-				<string>Открыть</string>
-				<key>sk</key>
-				<string>Otvoriť</string>
-				<key>sv</key>
-				<string>Öppna</string>
-				<key>th</key>
-				<string>เปิด</string>
-				<key>tr</key>
-				<string>Aç</string>
-				<key>uk</key>
-				<string>Відкрити</string>
-				<key>zh-Hans</key>
-				<string>打开</string>
-				<key>zh-Hant</key>
-				<string>打開</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ فتح الملف الذي تم اختياره.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant obrir l’arxiu seleccionat.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší otevřít vybraný soubor.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at åbne det valgte arkiv.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die gewählte Datei zu öffnen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ανοίξει το επιλεγμένο αρχείο.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to open the chosen file.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando abrir el archivo seleccionado.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää avata valittua tiedostoa.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye d'ouvrir le fichier sélectionné.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לפתוח את הקובץ הנבחר.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava otvoriti odabranu datoteku.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja megnyitni a kiválasztott fájlt.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di aprire il documento prescelto.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、選択中のファイルを開こうとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 선택된 파일을 열려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å åpne den valgte filen.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het gekozen bestand te openen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje otworzyć wybrany plik.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando abrir o arquivo escolhido.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar abrir o ficheiro escolhido.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să deschidă fișierul ales.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается открыть новый файл.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša otvoriť vybraný súbor.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker öppna den valda filen.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามเปิดไฟล์ที่เลือก</string>
-				<key>tr</key>
-				<string>__APPNAME__, seçilen dosyayı açmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відкрити вибраний файл.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图打开所选文件。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試打開所選檔案。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-			<key>timeout</key>
-			<integer>300</integer>
-		</dict>
-		<key>system.</key>
-		<dict>
-			<key>rule</key>
-			<string>default</string>
-		</dict>
-		<key>system.burn</key>
-		<dict>
-			<key>class</key>
-			<string>allow</string>
-			<key>comment</key>
-			<string>For burning media.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>نسخ قرص</string>
-				<key>ca</key>
-				<string>Gravar</string>
-				<key>cs</key>
-				<string>Vypálit</string>
-				<key>da</key>
-				<string>Brænd</string>
-				<key>de</key>
-				<string>Brennen</string>
-				<key>el</key>
-				<string>Εγγραφή</string>
-				<key>en</key>
-				<string>Burn</string>
-				<key>es</key>
-				<string>Grabar</string>
-				<key>fi</key>
-				<string>Polta</string>
-				<key>fr</key>
-				<string>Graver</string>
-				<key>he</key>
-				<string>צרוב</string>
-				<key>hr</key>
-				<string>Snimi</string>
-				<key>hu</key>
-				<string>Írás</string>
-				<key>it</key>
-				<string>Masterizza</string>
-				<key>ja</key>
-				<string>ディスクを作成</string>
-				<key>ko</key>
-				<string>굽기</string>
-				<key>nb</key>
-				<string>Brenn</string>
-				<key>nl</key>
-				<string>Brand</string>
-				<key>pl</key>
-				<string>Nagraj</string>
-				<key>pt</key>
-				<string>Gravar</string>
-				<key>pt-PT</key>
-				<string>Gravar</string>
-				<key>ro</key>
-				<string>Inscripționează</string>
-				<key>ru</key>
-				<string>Записать</string>
-				<key>sk</key>
-				<string>Vypáliť</string>
-				<key>sv</key>
-				<string>Bränn</string>
-				<key>th</key>
-				<string>เขียน</string>
-				<key>tr</key>
-				<string>Diske Bas</string>
-				<key>uk</key>
-				<string>Записати</string>
-				<key>zh-Hans</key>
-				<string>刻录</string>
-				<key>zh-Hant</key>
-				<string>燒錄</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ إنشاء قرص.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant gravar un disc.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší vypálit disk.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at brænde en disk.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, eine CD/DVD zu brennen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να εγγράψει ένα δίσκο.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to burn a disc.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando grabar un disco.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää polttaa levyn.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de graver un disque.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לצרוב תקליטור.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava snimiti disk.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál egy lemezt írni.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di masterizzare un disco.</string>
-				<key>ja</key>
-				<string>__APPNAME__ はディスクを作成しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 디스크를 구우려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å brenne en plate.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert een schijf te branden.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje nagrać na płycie.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando gravar um disco.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar gravar um disco.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să inscripționeaze un disc.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается записать диск.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša vypáliť disk.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker bränna en skiva.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามเขียนลงดิสก์</string>
-				<key>tr</key>
-				<string>__APPNAME__, diske basmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається записати оптичний диск.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图刻录光盘。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試燒錄光碟。</string>
-			</dict>
-		</dict>
-		<key>system.csfde.requestpassword</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Used by CoreStorage Full Disk Encryption to request the user's password.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح القفل</string>
-				<key>ca</key>
-				<string>Desbloquejar</string>
-				<key>cs</key>
-				<string>Odemknout</string>
-				<key>da</key>
-				<string>LÃ¥s op</string>
-				<key>de</key>
-				<string>Entsperren</string>
-				<key>el</key>
-				<string>Ξεκλείδωμα</string>
-				<key>en</key>
-				<string>Unlock</string>
-				<key>es</key>
-				<string>Desbloquear</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Déverrouiller</string>
-				<key>he</key>
-				<string>בטל/י את הנעילה</string>
-				<key>hr</key>
-				<string>Otključaj</string>
-				<key>hu</key>
-				<string>Feloldás</string>
-				<key>it</key>
-				<string>Sblocca</string>
-				<key>ja</key>
-				<string>ロックを解除</string>
-				<key>ko</key>
-				<string>잠금 해제</string>
-				<key>nb</key>
-				<string>LÃ¥s opp</string>
-				<key>nl</key>
-				<string>Ontgrendel</string>
-				<key>pl</key>
-				<string>Odblokuj</string>
-				<key>pt</key>
-				<string>Desbloquear</string>
-				<key>pt-PT</key>
-				<string>Desproteger</string>
-				<key>ro</key>
-				<string>Deblochează</string>
-				<key>ru</key>
-				<string>Снять защиту</string>
-				<key>sk</key>
-				<string>Odomknúť</string>
-				<key>sv</key>
-				<string>LÃ¥s upp</string>
-				<key>th</key>
-				<string>ปลดล็อก</string>
-				<key>tr</key>
-				<string>Kilidi Aç</string>
-				<key>uk</key>
-				<string>Відімкнути</string>
-				<key>zh-Hans</key>
-				<string>解锁</string>
-				<key>zh-Hant</key>
-				<string>解鎖</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>‏يلزم __APPNAME__ فك قفل القرص الخاص بك.</string>
-				<key>ca</key>
-				<string>__APPNAME__ necessita desbloquejar el disc.</string>
-				<key>cs</key>
-				<string>__APPNAME__ potřebuje odemknout předvolby disku.</string>
-				<key>da</key>
-				<string>__APPNAME__ skal låse disken op.</string>
-				<key>de</key>
-				<string>__APPNAME__ muss Ihr Volume entsperren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ πρέπει να ξεκλειδώσει το δίσκο σας.</string>
-				<key>en</key>
-				<string>__APPNAME__ needs to unlock your disk.</string>
-				<key>es</key>
-				<string>__APPNAME__ debe desbloquear el disco.</string>
-				<key>fi</key>
-				<string>Ohjelman __APPNAME__ pitää avata levy.</string>
-				<key>fr</key>
-				<string>__APPNAME__ à besoin de déverrouiller votre disque.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ צריך לבטל את הנעילה של הכונן.</string>
-				<key>hr</key>
-				<string>__APPNAME__ treba otključati vaš disk.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ alkalmazásnak fel kell oldania a lemezt.</string>
-				<key>it</key>
-				<string>__APPNAME__ deve sbloccare il disco.</string>
-				<key>ja</key>
-				<string>__APPNAME__はディスクのロックを解除する必要があります。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 사용자 디스크를 잠금 해제해야 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ må låse opp disken.</string>
-				<key>nl</key>
-				<string>__APPNAME__ moet de beveiliging van uw schijf opheffen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ musi odblokować dysk.</string>
-				<key>pt</key>
-				<string>__APPNAME__ precisa desbloquear seu disco.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ precisa de desproteger o disco.</string>
-				<key>ro</key>
-				<string>__APPNAME__ trebuie să deblocheze discul dvs.</string>
-				<key>ru</key>
-				<string>Программе «__APPNAME__» необходимо снять защиту с Вашего диска.</string>
-				<key>sk</key>
-				<string>__APPNAME__ potrebuje odomknúť váš disk.</string>
-				<key>sv</key>
-				<string>__APPNAME__ måste låsa upp skivan.</string>
-				<key>th</key>
-				<string>__APPNAME__ จำเป็นต้องปลดล็อกดิสก์ของคุณ</string>
-				<key>tr</key>
-				<string>__APPNAME__ uygulamasının diskinizin kilidini açması gerekiyor.</string>
-				<key>uk</key>
-				<string>Програмі «__APPNAME__» потрібно відімкнути ваш диск.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”需要解锁您的磁盘。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”需要解鎖您的磁碟。</string>
-			</dict>
-			<key>extract-password</key>
-			<true/>
-			<key>group</key>
-			<string>staff</string>
-			<key>shared</key>
-			<false/>
-			<key>timeout</key>
-			<integer>0</integer>
-		</dict>
-		<key>system.device.dvd.setregion.initial</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Used by the DVD player to set the region code the first time.  Note that changing the region code after it has been set requires a different right (system.device.dvd.setregion.change).</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعيين</string>
-				<key>ca</key>
-				<string>Definir</string>
-				<key>cs</key>
-				<string>Nastavit</string>
-				<key>da</key>
-				<string>Indstil</string>
-				<key>de</key>
-				<string>Festlegen</string>
-				<key>el</key>
-				<string>Ορισμός</string>
-				<key>en</key>
-				<string>Set</string>
-				<key>es</key>
-				<string>Definir</string>
-				<key>fi</key>
-				<string>Aseta</string>
-				<key>fr</key>
-				<string>Définir</string>
-				<key>he</key>
-				<string>הגדר</string>
-				<key>hr</key>
-				<string>Podesi</string>
-				<key>hu</key>
-				<string>Beállítás</string>
-				<key>it</key>
-				<string>Imposta</string>
-				<key>ja</key>
-				<string>設定</string>
-				<key>ko</key>
-				<string>설정</string>
-				<key>nb</key>
-				<string>Angi</string>
-				<key>nl</key>
-				<string>Stel in</string>
-				<key>pl</key>
-				<string>Ustal</string>
-				<key>pt</key>
-				<string>Definir</string>
-				<key>pt-PT</key>
-				<string>Definir</string>
-				<key>ro</key>
-				<string>Configurează</string>
-				<key>ru</key>
-				<string>Установить</string>
-				<key>sk</key>
-				<string>Nastaviť</string>
-				<key>sv</key>
-				<string>Ställ in</string>
-				<key>th</key>
-				<string>ตั้งค่า</string>
-				<key>tr</key>
-				<string>Ayarla</string>
-				<key>uk</key>
-				<string>Задати</string>
-				<key>zh-Hans</key>
-				<string>Set</string>
-				<key>zh-Hant</key>
-				<string>設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعيين رمز منطقة الـ DVD لأول مرة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant definir el codi de la regió del DVD per primer cop.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší poprvé nastavit kód DVD regionu.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at indstille dvd-områdekoden for første gang.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, den Ländercode zum ersten Mal einzustellen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ορίσει τον κωδικό περιοχής DVD για πρώτη φορά.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to set the DVD region code for the first time.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando definir el código de región del DVD por primera vez.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää asettaa DVD-aluekoodia ensimmäistä kertaa.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de régler le code de région du lecteur pour la première fois.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש להגדיר את האזור של כונן ה-DVD בפעם הראשונה.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava po prvi put podesiti DVD regionalni kôd.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja először beállítani a DVD régiókódját.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di impostare il codice regionale del DVD per la prima volta.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、DVD のリージョンコードをはじめて設定しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 처음으로 DVD 지역 코드를 설정하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å angi DVD-regionkoden for første gang.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de dvd-regiocode voor het eerst in te stellen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje ustawić kod regionu DVD po raz pierwszy.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando definir o código de região do DVD pela primeira vez.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar definir o código regional de DVD pela primeira vez.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să configureze codul regiunii DVD pentru prima dată.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается впервые установить код региона DVD.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša nastaviť kód regiónu pre DVD (iniciálne nastavenie).</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ställa in DVD-spelarens regionkod för första gången.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามตั้งค่ารหัสพื้นที่ดีวีดีของคุณเป็นครั้งแรก</string>
-				<key>tr</key>
-				<string>__APPNAME__, DVD bölge kodunu ilk kez ayarlamaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається вперше задати код регіону DVD.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”首次试图设置 DVD 注册号。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試初次設定 DVD 的區域碼。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>system.disk.unlock</key>
-		<dict>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>comment</key>
-			<string>Do not modify.</string>
-			<key>mechanisms</key>
-			<array>
-				<string>DiskUnlock:prompt</string>
-				<string>DiskUnlock:unlock,privileged</string>
-			</array>
-		</dict>
-		<key>system.global-login-items.</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>إضافة</string>
-				<key>ca</key>
-				<string>Afegir</string>
-				<key>cs</key>
-				<string>Přidat</string>
-				<key>da</key>
-				<string>Tilføj</string>
-				<key>de</key>
-				<string>Hinzufügen</string>
-				<key>el</key>
-				<string>Προσθήκη</string>
-				<key>en</key>
-				<string>Add</string>
-				<key>es</key>
-				<string>Añadir</string>
-				<key>fi</key>
-				<string>Lisää</string>
-				<key>fr</key>
-				<string>Ajouter</string>
-				<key>he</key>
-				<string>הוסף</string>
-				<key>hr</key>
-				<string>Dodaj</string>
-				<key>hu</key>
-				<string>Hozzáadás</string>
-				<key>it</key>
-				<string>Aggiungi</string>
-				<key>ja</key>
-				<string>追加</string>
-				<key>ko</key>
-				<string>추가</string>
-				<key>nb</key>
-				<string>Legg til</string>
-				<key>nl</key>
-				<string>Voeg toe</string>
-				<key>pl</key>
-				<string>Dodaj</string>
-				<key>pt</key>
-				<string>Adicionar</string>
-				<key>pt-PT</key>
-				<string>Adicionar</string>
-				<key>ro</key>
-				<string>Adaugă</string>
-				<key>ru</key>
-				<string>Добавить</string>
-				<key>sk</key>
-				<string>Pridať</string>
-				<key>sv</key>
-				<string>Lägg till</string>
-				<key>th</key>
-				<string>เพิ่ม</string>
-				<key>tr</key>
-				<string>Ekle</string>
-				<key>uk</key>
-				<string>Додати</string>
-				<key>zh-Hans</key>
-				<string>添加</string>
-				<key>zh-Hant</key>
-				<string>加入</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ إضافة عنصر الدخول.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant afegir un ítem de connexió.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší přidat přihlašovací položku.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at tilføje et log ind-emne.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, ein neues Startobjekt hinzufügen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να προσθέσει ένα στοιχείο εισόδου.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to add a login item.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando añadir un ítem de arranque.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää lisätä sisäänkirjautumiskohteen.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye d’ajouter un élément d’ouverture de session.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש להוסיף פריט להתחברות.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava dodati stavku za prijavu.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál hozzáadni egy bejelentkezési elemet.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di aggiungere un elemento di login.</string>
-				<key>ja</key>
-				<string> __APPNAME__ はログイン項目を追加しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 로그인 항목을 추가하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å legge til et påloggingsobjekt.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert een inlogonderdeel toe te voegen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje dodać rzecz otwieraną podczas logowania.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando adicionar um item de início de sessão.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar adicionar um elemento de início de sessão.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să adauge un articol de lansat la login.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается добавить объект входа.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša pridať položku spúšťanú pri prihlásení.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker lägga till ett startobjekt.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามเพิ่มรายการเข้าสู่ระบบ</string>
-				<key>tr</key>
-				<string>__APPNAME__, bir oturum açma öğesi eklemeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається додати елемент автозапуску.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图添加登录项。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試加入登入項目。</string>
-			</dict>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-admin</string>
-				<string>default</string>
-			</array>
-		</dict>
-		<key>system.hdd.smart</key>
-		<dict>
-			<key>class</key>
-			<string>allow</string>
-			<key>comment</key>
-			<string>For modifying SMART settings.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل الإعدادات</string>
-				<key>ca</key>
-				<string>Modificar la configuració</string>
-				<key>cs</key>
-				<string>Změnit nastavení</string>
-				<key>da</key>
-				<string>Juster indstillinger</string>
-				<key>de</key>
-				<string>Einstellungen ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση ρυθμίσεων</string>
-				<key>en</key>
-				<string>Modify Settings</string>
-				<key>es</key>
-				<string>Modificar ajustes</string>
-				<key>fi</key>
-				<string>Muokkaa asetuksia</string>
-				<key>fr</key>
-				<string>Modifer les réglages</string>
-				<key>he</key>
-				<string>ערוך/י הגדרות</string>
-				<key>hr</key>
-				<string>Preinači postavke</string>
-				<key>hu</key>
-				<string>Beállítások módosítása</string>
-				<key>it</key>
-				<string>Modifica impostazioni</string>
-				<key>ja</key>
-				<string>設定を変更</string>
-				<key>ko</key>
-				<string>설정 수정</string>
-				<key>nb</key>
-				<string>Endre innstillinger</string>
-				<key>nl</key>
-				<string>Wijzig instellingen</string>
-				<key>pl</key>
-				<string>Zmień ustawienia</string>
-				<key>pt</key>
-				<string>Modificar Ajustes</string>
-				<key>pt-PT</key>
-				<string>Modificar definições</string>
-				<key>ro</key>
-				<string>Schimbă configurările</string>
-				<key>ru</key>
-				<string>Модифицировать настройки</string>
-				<key>sk</key>
-				<string>Upraviť nastavenia</string>
-				<key>sv</key>
-				<string>Ändra inställningar</string>
-				<key>th</key>
-				<string>แก้ไขค่าติดตั้ง</string>
-				<key>tr</key>
-				<string>Ayarları Değiştir</string>
-				<key>uk</key>
-				<string>Змінити параметри</string>
-				<key>zh-Hans</key>
-				<string>修改设置</string>
-				<key>zh-Hant</key>
-				<string>修改設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل إعدادات التشخيص لمحرك الأقراص الثابتة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar la configuració del diagnòstic del vostre disc dur.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit nastavení diagnostiky pevného disku.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at ændre diagnosticeringsindstillingerne til harddisken.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Diagnoseeinstellungen für Ihre Festplatte zu ändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τροποποιήσει τις διαγνωστικές ρυθμίσεις για το σκληρό δίσκο σας.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify the diagnostic settings for your hard drive.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar los ajustes del diagnóstico del disco duro.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata kovalevyn diagnostiikka-asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de modifier les réglages de diagnostic de votre disque dur.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לערוך שינויים את הגדרות האבחון עבור הכונן שלך.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preinačiti dijagnostičke postavke za vaš tvrdi disk.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja módosítani a merevlemez diagnosztikai beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di modificare le impostazioni di diagnostica del disco rigido.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、ハード・ドライブの診断設定を変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 사용자의 하드 드라이브에 대한 진단 설정을 변경하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre diagnostikkinnstillingene for harddisken.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de diagnostische instellingen voor uw harde schijf te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zmienić ustawienia diagnostyki dysku twardego.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar os ajustes de diagnóstico para seu disco rígido.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar modificar as definições de diagnóstico do disco rígido.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să schimbe configurările de diagnoză pentru hard discul dvs.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать настройки диагностики для Вашего жесткого диска.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša upraviť nastavenia diagnostiky vášho pevného disku.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra de diagnostiska inställningarna för din hårddisk.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขค่าติดตั้งการวินิจฉัยสำหรับฮาร์ดไดร์ฟของคุณ</string>
-				<key>tr</key>
-				<string>__APPNAME__, sabit sürücünüzün tanı ayarlarını değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається змінити параметри діагностики вашого жорсткого диска.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改硬盘的诊断设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改硬碟的診斷設定。</string>
-			</dict>
-		</dict>
-		<key>system.identity.write.</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>For creating, changing or deleting local user accounts and groups.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تحديث المستخدمين</string>
-				<key>ca</key>
-				<string>Actualitzar els usuaris</string>
-				<key>cs</key>
-				<string>Aktualizovat uživatele</string>
-				<key>da</key>
-				<string>Opdater brugere</string>
-				<key>de</key>
-				<string>Benutzer aktualisieren</string>
-				<key>el</key>
-				<string>Ενημέρωση χρηστών</string>
-				<key>en</key>
-				<string>Update Users</string>
-				<key>es</key>
-				<string>Actualizar usuarios</string>
-				<key>fi</key>
-				<string>Päivitä käyttäjät</string>
-				<key>fr</key>
-				<string>Mettre à jour les utilisateurs</string>
-				<key>he</key>
-				<string>עדכן/י משתמשים</string>
-				<key>hr</key>
-				<string>Ažuriraj korisnike</string>
-				<key>hu</key>
-				<string>Felhasználók frissítése</string>
-				<key>it</key>
-				<string>Aggiorna gli utenti</string>
-				<key>ja</key>
-				<string>ユーザをアップデート</string>
-				<key>ko</key>
-				<string>사용자 업데이트</string>
-				<key>nb</key>
-				<string>Oppdater brukere</string>
-				<key>nl</key>
-				<string>Werk gebruikers bij</string>
-				<key>pl</key>
-				<string>Uaktualnij użytkowników</string>
-				<key>pt</key>
-				<string>Atualizar Usuários</string>
-				<key>pt-PT</key>
-				<string>Actualizar utilizadores</string>
-				<key>ro</key>
-				<string>Actualizează utilizatorii</string>
-				<key>ru</key>
-				<string>Обновить пользователей</string>
-				<key>sk</key>
-				<string>Aktualizovať užívateľov</string>
-				<key>sv</key>
-				<string>Uppdatera användare</string>
-				<key>th</key>
-				<string>ปรับปรุงผู้ใช้</string>
-				<key>tr</key>
-				<string>Kullanıcıları Güncelle</string>
-				<key>uk</key>
-				<string>Оновити користувачів</string>
-				<key>zh-Hans</key>
-				<string>更新用户</string>
-				<key>zh-Hant</key>
-				<string>更新使用者</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول__APPNAME__ تحديث مجموعة المستخدمين المحليين.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant actualitzar el conjunt d’usuaris locals.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší aktualizovat sadu místních uživatelů.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at opdatere gruppen af lokale brugere.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Gruppe der lokalen Benutzer zu aktualisieren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ενημερώσει το σύνολο των τοπικών χρηστών.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to update the set of local users.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando actualizar el conjunto de usuarios locales.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää päivittää paikallisia käyttäjiä.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de mettre à jour le groupe d’utilisateurs locaux.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לעדכן את קבוצת המשתמשים המקוריים.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava ažurirati set lokalnih korisnika.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja frissíteni a helyi felhasználók csoportját.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di aggiornare una serie di utenti locali.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、ローカルユーザのセットをアップデートしようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 로컬 사용자 모음을 업데이트하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å oppdatere settet med lokale brukere.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de set met lokale gebruikers bij te werken.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje uaktualnić zastaw użytkowników lokalnych.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando atualizar o grupo de usuários locais.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar actualizar o conjunto de utilizadores locais.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să actualizeze setul de utilizatori locali.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается обновить набор локальных пользователей.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša aktualizovať lokálnych užívateľov.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker uppdatera uppsättningen lokala användare.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปรับปรุงกลุ่มผู้ใช้ภายใน</string>
-				<key>tr</key>
-				<string>__APPNAME__, yerel kullanıcılar kümesini güncellemeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається оновити набір локальних користувачів.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图更新本地用户组。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試更新本機使用者群組。</string>
-			</dict>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-admin</string>
-				<string>authenticate-admin</string>
-			</array>
-		</dict>
-		<key>system.identity.write.credential</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Checked when changing authentication credentials (password or certificate) for a local user account.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تحديث الاعتمادات</string>
-				<key>ca</key>
-				<string>Actualitzar les credencials</string>
-				<key>cs</key>
-				<string>Aktualizovat pověření</string>
-				<key>da</key>
-				<string>Opdater beviser</string>
-				<key>de</key>
-				<string>Accountdaten aktualisieren</string>
-				<key>el</key>
-				<string>Ενημέρωση διαπιστευτηρίων</string>
-				<key>en</key>
-				<string>Update Credentials</string>
-				<key>es</key>
-				<string>Actualizar credenciales</string>
-				<key>fi</key>
-				<string>Päivitä valtakirjat</string>
-				<key>fr</key>
-				<string>Mettre à jour les références</string>
-				<key>he</key>
-				<string>עדכן/י אישורים</string>
-				<key>hr</key>
-				<string>Ažuriraj vjerodajnice</string>
-				<key>hu</key>
-				<string>Hitelesítés frissítése</string>
-				<key>it</key>
-				<string>Aggiorna credenziali</string>
-				<key>ja</key>
-				<string>資格情報をアップデート</string>
-				<key>ko</key>
-				<string>자격 증명 업데이트</string>
-				<key>nb</key>
-				<string>Oppdater akkreditiver</string>
-				<key>nl</key>
-				<string>Werk toegangsgegevens bij</string>
-				<key>pl</key>
-				<string>Uaktualnij dane uwierzytelniania</string>
-				<key>pt</key>
-				<string>Atualizar Credenciais</string>
-				<key>pt-PT</key>
-				<string>Actualizar credenciais</string>
-				<key>ro</key>
-				<string>Actualizează acreditările</string>
-				<key>ru</key>
-				<string>Обновить учетные данные</string>
-				<key>sk</key>
-				<string>Aktualizovať prihlasovacie údaje</string>
-				<key>sv</key>
-				<string>Uppdatera ID-handlingar</string>
-				<key>th</key>
-				<string>ปรับปรุงการรับรอง</string>
-				<key>tr</key>
-				<string>Kimlik Bilgilerini Güncelle</string>
-				<key>uk</key>
-				<string>Оновити інформацію</string>
-				<key>zh-Hans</key>
-				<string>更新凭证</string>
-				<key>zh-Hant</key>
-				<string>更新憑證</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تحديث بيانات المصادقة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant actualitzar les credencials d’autenticació.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší aktualizovat pověření pro ověření totožnosti.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at opdatere godkendelsesoplysningerne.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Accountdaten zur Authentifizierung zu aktualisieren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ενημερώσει τα διαπιστευτήρια ελέγχου ταυτότητας.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to update the authentication credentials.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando actualizar las credenciales de autenticación.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää päivittää todentamisen valtakirjoja.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de mettre à jour les informations d’authentification.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לעדכן את אישורי האימות.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava ažurirati vjerodajnice za autorizaciju.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja frissíteni a hitelesítési adatokat.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di aggiornare le credenziali di autenticazione.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は認証資格情報をアップデートしようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 인증 증명서를 업데이트하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å oppdatere godkjenningsakkreditivene.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de gegevens voor identiteitscontrole bij te werken.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje uaktualnić dane uwierzytelniania.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando atualizar as credenciais de autenticação.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar actualizar as credenciais de autenticação.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să actualizeze acreditările de autentificare.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается обновить учетные данные для аутентификации.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša aktualizovať autentifikačné údaje.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker uppdatera autentiseringsuppgifterna.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปรับปรุงการรับรองการอนุญาตของคุณ</string>
-				<key>tr</key>
-				<string>__APPNAME__, kimlik doğrulama bilgilerini güncellemeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається оновити інформацію авторизації.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图更新鉴定凭证。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試更新認證憑證。</string>
-			</dict>
-			<key>rule</key>
-			<string>default</string>
-		</dict>
-		<key>system.identity.write.self</key>
-		<dict>
-			<key>authenticate-user</key>
-			<false/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked when changing authentication credentials (password or certificate) for the current user's account.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تحديث الاعتمادات</string>
-				<key>ca</key>
-				<string>Actualitzar les credencials</string>
-				<key>cs</key>
-				<string>Aktualizovat pověření</string>
-				<key>da</key>
-				<string>Opdater beviser</string>
-				<key>de</key>
-				<string>Accountdaten aktualisieren</string>
-				<key>el</key>
-				<string>Ενημέρωση διαπιστευτηρίων</string>
-				<key>en</key>
-				<string>Update Credentials</string>
-				<key>es</key>
-				<string>Actualizar credenciales</string>
-				<key>fi</key>
-				<string>Päivitä valtakirjat</string>
-				<key>fr</key>
-				<string>Mettre à jour les références</string>
-				<key>he</key>
-				<string>עדכן אישורים</string>
-				<key>hr</key>
-				<string>Ažuriraj vjerodajnice</string>
-				<key>hu</key>
-				<string>Hitelesítés frissítése</string>
-				<key>it</key>
-				<string>Aggiorna credenziali</string>
-				<key>ja</key>
-				<string>資格情報をアップデート</string>
-				<key>ko</key>
-				<string>자격 증명 업데이트</string>
-				<key>nb</key>
-				<string>Oppdater akkreditiver</string>
-				<key>nl</key>
-				<string>Werk toegangsgegevens bij</string>
-				<key>pl</key>
-				<string>Uaktualnij dane uwierzytelniania</string>
-				<key>pt</key>
-				<string>Atualizar Credenciais</string>
-				<key>pt-PT</key>
-				<string>Actualizar credenciais</string>
-				<key>ro</key>
-				<string>Actualizează acreditările</string>
-				<key>ru</key>
-				<string>Обновить учетные данные</string>
-				<key>sk</key>
-				<string>Aktualizovať prihlasovacie údaje</string>
-				<key>sv</key>
-				<string>Uppdatera ID-handlingar</string>
-				<key>th</key>
-				<string>ปรับปรุงการรับรอง</string>
-				<key>tr</key>
-				<string>Kimlik Bilgilerini Güncelle</string>
-				<key>uk</key>
-				<string>Оновити інформацію</string>
-				<key>zh-Hans</key>
-				<string>更新凭证</string>
-				<key>zh-Hant</key>
-				<string>更新憑證</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تحديث بيانات المصادقة الخاصة بك.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant actualitzar les credencials d’autenticació.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší aktualizovat vaše pověření pro ověření totožnosti.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at opdatere dine godkendelsesoplysninger.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, Ihre Accountdaten zur Authentifizierung zu aktualisieren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ενημερώσει τα διαπιστευτήρια ελέγχου ταυτότητάς σας.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to update your authentication credentials.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando actualizar sus credenciales de autenticación.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää päivittää todentamisen valtakirjoja.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de mettre à jour vos informations d’authentification.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לעדכן את אישורי האימות שלך.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava ažurirati vaše vjerodajnice za autorizaciju.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja frissíteni az Ön hitelesítési adatait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di aggiornare le tue credenziali di autenticazione.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、認証資格情報をアップデートしようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 사용자의 인증 증명서를 업데이트하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å oppdatere godkjenningsakkreditivene.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert uw gegevens voor identiteitscontrole bij te werken.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje uaktualnić dane uwierzytelniania.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando atualizar suas credenciais de autenticação.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar actualizar as suas credenciais de autenticação.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să actualizeze acreditările dvs. de autentificare.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается обновить Ваши учетные данные для аутентификации.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša aktualizovať autentifikačné údaje.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker uppdatera dina autentiseringsuppgifter.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปรับปรุงการรับรองการอนุญาตของคุณ</string>
-				<key>tr</key>
-				<string>__APPNAME__, kimlik doğrulama bilgilerinizi güncellemeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається оновити вашу інформацію авторизації.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图更新您的鉴定凭证。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試更新您的認證憑證。</string>
-			</dict>
-			<key>session-owner</key>
-			<true/>
-		</dict>
-		<key>system.install.app-store-software</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Checked when user is installing software from the App Store.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تثبيت البرنامج</string>
-				<key>ca</key>
-				<string>Instal·lar programari</string>
-				<key>cs</key>
-				<string>Nainstalovat software</string>
-				<key>da</key>
-				<string>Installer software</string>
-				<key>de</key>
-				<string>Software installieren</string>
-				<key>el</key>
-				<string>Εγκατάσταση λογισμικού</string>
-				<key>en</key>
-				<string>Install Software</string>
-				<key>es</key>
-				<string>Instalar software</string>
-				<key>fi</key>
-				<string>Asenna ohjelmisto</string>
-				<key>fr</key>
-				<string>Installer le logiciel</string>
-				<key>he</key>
-				<string>התקן/י</string>
-				<key>hr</key>
-				<string>Instaliraj softver</string>
-				<key>hu</key>
-				<string>Szoftver telepítése</string>
-				<key>it</key>
-				<string>Installa software</string>
-				<key>ja</key>
-				<string>ソフトウェアをインストール</string>
-				<key>ko</key>
-				<string>소프트웨어 설치</string>
-				<key>nb</key>
-				<string>Installer programvare</string>
-				<key>nl</key>
-				<string>Installeer software</string>
-				<key>pl</key>
-				<string>Zainstaluj oprogramowanie</string>
-				<key>pt</key>
-				<string>Instalar Software</string>
-				<key>pt-PT</key>
-				<string>Instalar software</string>
-				<key>ro</key>
-				<string>Instalează software-ul</string>
-				<key>ru</key>
-				<string>Установить ПО</string>
-				<key>sk</key>
-				<string>Inštalovať softvér</string>
-				<key>sv</key>
-				<string>Installera programvara</string>
-				<key>th</key>
-				<string>ติดตั้งซอฟต์แวร์</string>
-				<key>tr</key>
-				<string>Yazılımı Yükle</string>
-				<key>uk</key>
-				<string>Інсталювати ПЗ</string>
-				<key>zh-Hans</key>
-				<string>安装软件</string>
-				<key>zh-Hant</key>
-				<string>安裝軟體</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تثبيت البرنامج.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant instal·lar programari.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší nainstalovat software.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at installere software.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, Software zu installieren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να εγκαταστήσει λογισμικό.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to install software.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando instalar software.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää asentaa ohjelmistoa.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie d’installer un logiciel.</string>
-				<key>he</key>
-				<string>‏__APPNAME__ מנסה להתקין תוכנה.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava instalirati softver.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál szoftvert telepíteni.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di installare il software.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、ソフトウェアをインストールしようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 소프트웨어를 설치하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å installere programvare.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert software te installeren.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zainstalować oprogramowanie.</string>
-				<key>pt</key>
-				<string>__APPNAME__está tentando instalar um software.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar instalar software.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să instaleze software.</string>
-				<key>ru</key>
-				<string>__APPNAME__ пытается установить ПО.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša inštalovať softvér.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker installera programvara.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามติดตั้งซอฟต์แวร์</string>
-				<key>tr</key>
-				<string>__APPNAME__, yazılım yüklemeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається інсталювати програмне забезпечення.</string>
-				<key>zh-Hans</key>
-				<string>__APPNAME__ 正在尝试安装软件。</string>
-				<key>zh-Hant</key>
-				<string>__APPNAME__ 正在嘗試安裝軟體。</string>
-			</dict>
-			<key>rule</key>
-			<string>entitled-appstore-or-entitled-authenticate-appstore</string>
-		</dict>
-		<key>system.install.apple-config-data</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>rule</string>
-			<key>rule</key>
-			<string>entitled</string>
-		</dict>
-		<key>system.install.apple-software</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Checked when user is installing Apple-provided software.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تثبيت البرنامج</string>
-				<key>ca</key>
-				<string>Instal·lar programari</string>
-				<key>cs</key>
-				<string>Nainstalovat software</string>
-				<key>da</key>
-				<string>Installer software</string>
-				<key>de</key>
-				<string>Software installieren</string>
-				<key>el</key>
-				<string>Εγκατάσταση λογισμικού</string>
-				<key>en</key>
-				<string>Install Software</string>
-				<key>es</key>
-				<string>Instalar software</string>
-				<key>fi</key>
-				<string>Asenna ohjelmisto</string>
-				<key>fr</key>
-				<string>Installer le logiciel</string>
-				<key>he</key>
-				<string>התקן/י</string>
-				<key>hr</key>
-				<string>Instaliraj softver</string>
-				<key>hu</key>
-				<string>Szoftver telepítése</string>
-				<key>it</key>
-				<string>Installa software</string>
-				<key>ja</key>
-				<string>ソフトウェアをインストール</string>
-				<key>ko</key>
-				<string>소프트웨어 설치</string>
-				<key>nb</key>
-				<string>Installer programvare</string>
-				<key>nl</key>
-				<string>Installeer software</string>
-				<key>pl</key>
-				<string>Zainstaluj oprogramowanie</string>
-				<key>pt</key>
-				<string>Instalar Software</string>
-				<key>pt-PT</key>
-				<string>Instalar software</string>
-				<key>ro</key>
-				<string>Instalează software</string>
-				<key>ru</key>
-				<string>Установить ПО</string>
-				<key>sk</key>
-				<string>Inštalovať softvér</string>
-				<key>sv</key>
-				<string>Installera programvara</string>
-				<key>th</key>
-				<string>ติดตั้งซอฟต์แวร์</string>
-				<key>tr</key>
-				<string>Yazılımı Yükle</string>
-				<key>uk</key>
-				<string>Інсталювати ПЗ</string>
-				<key>zh-Hans</key>
-				<string>安装软件</string>
-				<key>zh-Hant</key>
-				<string>安裝軟體</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تثبيت البرنامج الموّفَر من Apple.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant instal·lar programari subministrat per Apple.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší nainstalovat software poskytovaný společností Apple.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at installere software leveret af Apple.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, von Apple bereitgestellte Software zu installieren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να εγκαταστήσει λογισμικό που παρέχεται από την Apple.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to install Apple-provided software.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando instalar software proporcionado por Apple.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää asentaa Applen ohjelmistoa.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie d’installer un logiciel fourni par Apple.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש להתקין תוכנות מבית Apple.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava instalirati Apple softver.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál egy Apple által szolgáltatott szoftvert telepíteni.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di installare il software fornito da Apple.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、アップル提供のソフトウェアをインストールしようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) Apple에서 제공한 소프트웨어를 설치하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å installere programvare som er levert av Apple.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert van Apple afkomstige software te installeren.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zainstalować oprogramowanie udostępnione przez Apple.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando instalar um software fornecido pela Apple.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar instalar software da Apple.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să instaleze software furnizat de Apple.</string>
-				<key>ru</key>
-				<string>__APPNAME__ пытается установить ПО, предоставленное компанией Apple.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša inštalovať softvér spoločnosti Apple.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker installera programvara från Apple.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามติดตั้งซอฟต์แวร์ที่ให้มาโดย Apple</string>
-				<key>tr</key>
-				<string>__APPNAME__, Apple tarafından sağlanan yazılımı yüklemeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається інсталювати програмне забезпечення Apple.</string>
-				<key>zh-Hans</key>
-				<string>__APPNAME__ 正在尝试安装 Apple 提供的软件。</string>
-				<key>zh-Hant</key>
-				<string>__APPNAME__ 正在嘗試安裝 Apple 提供的軟體。</string>
-			</dict>
-			<key>rule</key>
-			<string>root-or-entitled-admin-or-authenticate-admin</string>
-		</dict>
-		<key>system.install.software</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked when user is installing new software.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تثبيت البرنامج</string>
-				<key>ca</key>
-				<string>Instal·lar programari</string>
-				<key>cs</key>
-				<string>Nainstalovat software</string>
-				<key>da</key>
-				<string>Installer software</string>
-				<key>de</key>
-				<string>Software installieren</string>
-				<key>el</key>
-				<string>Εγκατάσταση λογισμικού</string>
-				<key>en</key>
-				<string>Install Software</string>
-				<key>es</key>
-				<string>Instalar software</string>
-				<key>fi</key>
-				<string>Asenna ohjelmisto</string>
-				<key>fr</key>
-				<string>Installer le logiciel</string>
-				<key>he</key>
-				<string>התקן/י</string>
-				<key>hr</key>
-				<string>Instaliraj softver</string>
-				<key>hu</key>
-				<string>Szoftver telepítése</string>
-				<key>it</key>
-				<string>Installa software</string>
-				<key>ja</key>
-				<string>ソフトウェアをインストール</string>
-				<key>ko</key>
-				<string>소프트웨어 설치</string>
-				<key>nb</key>
-				<string>Installer programvare</string>
-				<key>nl</key>
-				<string>Installeer software</string>
-				<key>pl</key>
-				<string>Zainstaluj oprogramowanie</string>
-				<key>pt</key>
-				<string>Instalar Software</string>
-				<key>pt-PT</key>
-				<string>Instalar software</string>
-				<key>ro</key>
-				<string>Instalează software</string>
-				<key>ru</key>
-				<string>Установить ПО</string>
-				<key>sk</key>
-				<string>Inštalovať softvér</string>
-				<key>sv</key>
-				<string>Installera programvara</string>
-				<key>th</key>
-				<string>ติดตั้งซอฟต์แวร์</string>
-				<key>tr</key>
-				<string>Yazılımı Yükle</string>
-				<key>uk</key>
-				<string>Інсталювати ПЗ</string>
-				<key>zh-Hans</key>
-				<string>安装软件</string>
-				<key>zh-Hant</key>
-				<string>安裝軟體</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تثبيت برنامج جديد.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant instal·lar programari nou.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší nainstalovat nový software.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at installere ny software.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, neue Software zu installieren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να εγκαταστήσει νέο λογισμικό.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to install new software.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando instalar software nuevo.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää asentaa uutta ohjelmistoa.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye d’installer un nouveau logiciel.</string>
-				<key>he</key>
-				<string>״__APPNAME__״ מבקש להתקין תוכנות חדשות.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava instalirati novi softver.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál egy új szoftvert telepíteni.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di installare nuovo software.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、新しいソフトウェアをインストールしようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 새로운 소프트웨어를 설치하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å installere ny programvare.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert nieuwe software te installeren.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zainstalować nowe oprogramowanie.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando instalar um novo software.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar instalar software novo.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să instaleze software nou.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается установить новое ПО.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša inštalovať nový softvér.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker installera ny programvara.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามติดตั้งซอฟต์แวร์ใหม่</string>
-				<key>tr</key>
-				<string>__APPNAME__, yeni yazılım yüklemeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається інсталювати нове програмне забезпечення.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图安装新软件。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試安裝新的軟體。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-			<key>timeout</key>
-			<integer>300</integer>
-		</dict>
-		<key>system.keychain.create.loginkc</key>
-		<dict>
-			<key>allow-root</key>
-			<false/>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>comment</key>
-			<string>Used by the Security framework when you add an item to an unconfigured default keychain.</string>
-			<key>mechanisms</key>
-			<array>
-				<string>loginKC:queryCreate</string>
-				<string>loginKC:showPasswordUI</string>
-				<string>authinternal</string>
-			</array>
-			<key>session-owner</key>
-			<true/>
-			<key>shared</key>
-			<false/>
-		</dict>
-		<key>system.keychain.modify</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Used by Keychain Access when editing a system keychain.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل Keychain</string>
-				<key>ca</key>
-				<string>Modificar el clauer</string>
-				<key>cs</key>
-				<string>Změnit svazek klíčů</string>
-				<key>da</key>
-				<string>Juster nøglering</string>
-				<key>de</key>
-				<string>Schlüsselbund ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση κλειδοθήκης</string>
-				<key>en</key>
-				<string>Modify Keychain</string>
-				<key>es</key>
-				<string>Modificar llavero</string>
-				<key>fi</key>
-				<string>Muokkaa avainnippua</string>
-				<key>fr</key>
-				<string>Modifer le trousseau</string>
-				<key>he</key>
-				<string>ערוך/י את צרור המפתחות</string>
-				<key>hr</key>
-				<string>Preinači keychain</string>
-				<key>hu</key>
-				<string>Kulcskarika módosítása</string>
-				<key>it</key>
-				<string>Modifica portachiavi</string>
-				<key>ja</key>
-				<string>キーチェーンを変更</string>
-				<key>ko</key>
-				<string>키체인 수정</string>
-				<key>nb</key>
-				<string>Endre nøkkelring</string>
-				<key>nl</key>
-				<string>Wijzig sleutelhanger</string>
-				<key>pl</key>
-				<string>Zmień pęk kluczy</string>
-				<key>pt</key>
-				<string>Modificar Chaves</string>
-				<key>pt-PT</key>
-				<string>Modificar porta‑chaves</string>
-				<key>ro</key>
-				<string>Modifică portcheiul</string>
-				<key>ru</key>
-				<string>Модифицировать связку ключей</string>
-				<key>sk</key>
-				<string>Upraviť kľúčenku</string>
-				<key>sv</key>
-				<string>Ändra nyckelringen</string>
-				<key>th</key>
-				<string>แก้ไขคีย์เชน</string>
-				<key>tr</key>
-				<string>Anahtar Zincirini Değiştir</string>
-				<key>uk</key>
-				<string>Змінити в’язку</string>
-				<key>zh-Hans</key>
-				<string>修改钥匙串</string>
-				<key>zh-Hant</key>
-				<string>修改鑰匙圈</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل سلسلة مفاتيح النظام.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar el clauer del sistema.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit systémový svazek klíčů.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at ændre systemnøgleringen.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, den System-Schlüsselbund zu ändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τροποποιήσει την κλειδοθήκη συστήματος.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify the system keychain.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar el llavero del sistema.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata järjestelmän avainnippua.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de modifier le trousseau du système.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לערוך שינויים בצרור המפתחות של המערכת.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preinačiti keychain bazu sustava.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja módosítani a rendszer-kulcskarikát.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di modificare il portachiavi di sistema.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、システムキーチェーンを変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 시스템 키체인을 변경하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre systemnøkkelringen.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de systeemsleutelhanger te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zmodyfikować systemowy pęk kluczy.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar as chaves do sistema.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar modificar o porta‑chaves do sistema.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să modifice portcheiul de sistem.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать связку ключей системы.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša upraviť systémovú kľúčenku.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra systemets nyckelring.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขคีย์เชนของระบบ</string>
-				<key>tr</key>
-				<string>__APPNAME__, sistem anahtar zincirini değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається змінити системну в’язку ключів.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改系统钥匙串。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改系統鑰匙圈。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-			<key>timeout</key>
-			<integer>30</integer>
-		</dict>
-		<key>system.login.console</key>
-		<dict>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>comment</key>
-			<string>Login mechanism based rule.  Not for general use, yet.</string>
-			<key>mechanisms</key>
-			<array>
-				<string>builtin:policy-banner</string>
-				<string>loginwindow:login</string>
-				<string>builtin:login-begin</string>
-				<string>builtin:reset-password,privileged</string>
-				<string>builtin:forward-login,privileged</string>
-				<string>builtin:auto-login,privileged</string>
-				<string>builtin:authenticate,privileged</string>
-				<string>PKINITMechanism:auth,privileged</string>
-				<string>builtin:login-success</string>
-				<string>loginwindow:success</string>
-				<string>HomeDirMechanism:login,privileged</string>
-				<string>HomeDirMechanism:status</string>
-				<string>MCXMechanism:login</string>
-				<string>loginwindow:done</string>
-			</array>
-		</dict>
-		<key>system.login.done</key>
-		<dict>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>mechanisms</key>
-			<array/>
-		</dict>
-		<key>system.login.screensaver</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>The owner or any administrator can unlock the screensaver.</string>
-			<key>rule</key>
-			<string>authenticate-session-owner-or-admin</string>
-		</dict>
-		<key>system.login.tty</key>
-		<dict>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>mechanisms</key>
-			<array>
-				<string>push_hints_to_context</string>
-				<string>authinternal</string>
-			</array>
-			<key>tries</key>
-			<integer>1</integer>
-		</dict>
-		<key>system.preferences</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked by the Admin framework when making changes to certain System Preferences.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل الإعدادات</string>
-				<key>ca</key>
-				<string>Modificar la configuració</string>
-				<key>cs</key>
-				<string>Změnit nastavení</string>
-				<key>da</key>
-				<string>Juster indstillinger</string>
-				<key>de</key>
-				<string>Einstellungen ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση ρυθμίσεων</string>
-				<key>en</key>
-				<string>Modify Settings</string>
-				<key>es</key>
-				<string>Modificar ajustes</string>
-				<key>fi</key>
-				<string>Muokkaa asetuksia</string>
-				<key>fr</key>
-				<string>Modifer les réglages</string>
-				<key>he</key>
-				<string>ערוך/י הגדרות</string>
-				<key>hr</key>
-				<string>Preinači postavke</string>
-				<key>hu</key>
-				<string>Beállítások módosítása</string>
-				<key>it</key>
-				<string>Modifica impostazioni</string>
-				<key>ja</key>
-				<string>設定を変更</string>
-				<key>ko</key>
-				<string>설정 수정</string>
-				<key>nb</key>
-				<string>Endre innstillinger</string>
-				<key>nl</key>
-				<string>Wijzig instellingen</string>
-				<key>pl</key>
-				<string>Zmień ustawienia</string>
-				<key>pt</key>
-				<string>Modificar Ajustes</string>
-				<key>pt-PT</key>
-				<string>Modificar definições</string>
-				<key>ro</key>
-				<string>Schimbă configurările</string>
-				<key>ru</key>
-				<string>Модифицировать настройки</string>
-				<key>sk</key>
-				<string>Upraviť nastavenia</string>
-				<key>sv</key>
-				<string>Ändra inställningar</string>
-				<key>th</key>
-				<string>แก้ไขค่าติดตั้ง</string>
-				<key>tr</key>
-				<string>Ayarları Değiştir</string>
-				<key>uk</key>
-				<string>Змінити параметри</string>
-				<key>zh-Hans</key>
-				<string>修改设置</string>
-				<key>zh-Hant</key>
-				<string>修改設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل إعدادات النظام الخاص بك.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar la configuració del sistema.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit systémová nastavení.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at ændre systemindstillingerne.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, Ihre Systemeinstellungen zu ändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τροποποιήσει τις ρυθμίσεις του συστήματός σας.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify your system settings.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar los ajustes del sistema.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata järjestelmän asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de modifier vos réglages de système.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לערוך שינויים את ההגדרות במחשב.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preinačiti vaše postavke sustava.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja módosítani a rendszerbeállításokat.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di modificare le impostazioni del sistema.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、システムの設定を変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 사용자의 시스템 설정을 변경하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre systeminnstillingene.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert uw systeeminstellingen te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zmienić ustawienia systemowe.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar seus ajustes do sistema.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar modificar as definições do sistema.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să schimbe configurările dvs. de sistem.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать Ваши системные настройки.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša upraviť vaše systémové nastavenia.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra systemets inställningar.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขค่าติดตั้งระบบของคุณ</string>
-				<key>tr</key>
-				<string>__APPNAME__, sistem ayarlarınızı değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається змінити ваші системні параметри.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改您的系统设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改您的系統設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>system.preferences.accessibility</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked by the Admin framework when enabling or disabling the Accessibility APIs.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح القفل</string>
-				<key>ca</key>
-				<string>Desbloquejar</string>
-				<key>cs</key>
-				<string>Odemknout</string>
-				<key>da</key>
-				<string>LÃ¥s op</string>
-				<key>de</key>
-				<string>Entsperren</string>
-				<key>el</key>
-				<string>Ξεκλείδωμα</string>
-				<key>en</key>
-				<string>Unlock</string>
-				<key>es</key>
-				<string>Desbloquear</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Déverrouiller</string>
-				<key>he</key>
-				<string>בטל/י את הנעילה</string>
-				<key>hr</key>
-				<string>Otključaj</string>
-				<key>hu</key>
-				<string>Feloldás</string>
-				<key>it</key>
-				<string>Sblocca</string>
-				<key>ja</key>
-				<string>ロックを解除</string>
-				<key>ko</key>
-				<string>잠금 해제</string>
-				<key>nb</key>
-				<string>LÃ¥s opp</string>
-				<key>nl</key>
-				<string>Ontgrendel</string>
-				<key>pl</key>
-				<string>Odblokuj</string>
-				<key>pt</key>
-				<string>Desbloquear</string>
-				<key>pt-PT</key>
-				<string>Desproteger</string>
-				<key>ro</key>
-				<string>Deblochează</string>
-				<key>ru</key>
-				<string>Снять защиту</string>
-				<key>sk</key>
-				<string>Odomknúť</string>
-				<key>sv</key>
-				<string>LÃ¥s upp</string>
-				<key>th</key>
-				<string>ปลดล็อก</string>
-				<key>tr</key>
-				<string>Kilidi Aç</string>
-				<key>uk</key>
-				<string>Відімкнути</string>
-				<key>zh-Hans</key>
-				<string>解锁</string>
-				<key>zh-Hant</key>
-				<string>解鎖</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ إلغاء قفل تفضيلات إمكانية الوصول.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està provant de desbloquejar les preferències d’Accessibilitat.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odemknout předvolby Zpřístupnění.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at låse indstillingerne i Tilgængelighed op.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, den Schutz der Systemeinstellung „Bedienungshilfen“ aufzuheben.</string>
-				<key>el</key>
-				<string>Η εφαρμογή «__APPNAME__» προσπαθεί να ξεκλειδώσει τις προτιμήσεις για την Προσβασιμότητα.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to unlock Accessibility preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando desbloquear las preferencias del panel Accesibilidad.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää avata Käyttöapu-asetukset.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de déverrouiller les préférences Accessibilité.</string>
-				<key>he</key>
-				<string>__APPNAME__ מנסה לבטל את הנעילה של העדפות ״נגישות״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava otključati postavke pristupačnosti.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja feloldani a Kisegítő lehetőségek beállításainak zárolását.</string>
-				<key>it</key>
-				<string>__APPNAME__ tenta di sbloccare le preferenze Accessibilità.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、“アクセシビリティ”環境設定のロックを解除しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 손쉬운 사용 환경설정을 잠금 해제하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å låse opp Tilgjengelighet-valg.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de Toegankelijkheid-voorkeuren te ontgrendelen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje odblokować panel preferencji Dostępność.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando desbloquear as preferências Acessibilidade.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar desproteger as preferências da Acessibilidade.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să deblocheze preferințele Accesibilitate.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается снять защиту с настроек Универсального доступа.</string>
-				<key>sk</key>
-				<string>Aplikácia __APPNAME__ sa pokúša odomknúť nastavenia Prístupnosti.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker låsa upp inställningarna för Hjälpmedel.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปลดล็อกการตั้งค่าผู้พิการ</string>
-				<key>tr</key>
-				<string>__APPNAME__, Erişilebilirlik tercihlerinin kilidini açmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>__APPNAME__ намагається відімкнути параметри Спеціальних можливостей.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正在尝试解锁“辅助功能”偏好设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試解鎖“輔助使用”偏好設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-			<key>timeout</key>
-			<integer>0</integer>
-		</dict>
-		<key>system.preferences.accounts</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked by the Admin framework when making changes to the Users &amp; Groups preference pane.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح القفل</string>
-				<key>ca</key>
-				<string>Desbloquejar</string>
-				<key>cs</key>
-				<string>Odemknout</string>
-				<key>da</key>
-				<string>LÃ¥s op</string>
-				<key>de</key>
-				<string>Entsperren</string>
-				<key>el</key>
-				<string>Ξεκλείδωμα</string>
-				<key>en</key>
-				<string>Unlock</string>
-				<key>es</key>
-				<string>Desbloquear</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Déverrouiller</string>
-				<key>he</key>
-				<string>בטל/י את הנעילה</string>
-				<key>hr</key>
-				<string>Otključaj</string>
-				<key>hu</key>
-				<string>Feloldás</string>
-				<key>it</key>
-				<string>Sblocca</string>
-				<key>ja</key>
-				<string>ロックを解除</string>
-				<key>ko</key>
-				<string>잠금 해제</string>
-				<key>nb</key>
-				<string>LÃ¥s opp</string>
-				<key>nl</key>
-				<string>Ontgrendel</string>
-				<key>pl</key>
-				<string>Odblokuj</string>
-				<key>pt</key>
-				<string>Desbloquear</string>
-				<key>pt-PT</key>
-				<string>Desproteger</string>
-				<key>ro</key>
-				<string>Deblochează</string>
-				<key>ru</key>
-				<string>Снять защиту</string>
-				<key>sk</key>
-				<string>Odomknúť</string>
-				<key>sv</key>
-				<string>LÃ¥s upp</string>
-				<key>th</key>
-				<string>ปลดล็อก</string>
-				<key>tr</key>
-				<string>Kilidi Aç</string>
-				<key>uk</key>
-				<string>Відімкнути</string>
-				<key>zh-Hans</key>
-				<string>解锁</string>
-				<key>zh-Hant</key>
-				<string>解鎖</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ فك قفل تفضيلات المستخدمين والمجموعات.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant debloquejar el tauler de preferències Usuaris i Grups.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odemknout předvolby Uživatelé a skupiny.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at låse Brugere &amp; grupper op.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Systemeinstellung „Benutzer &amp; Gruppen“ zu entsperren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ξεκλειδώσει τις προτιμήσεις χρηστών και ομάδων.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to unlock Users &amp; Groups preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando desbloquear el panel de preferencias Usuarios y Grupos.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää avata Käyttäjät ja ryhmät -asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de déverrouiller les préférences Utilisateurs et groupes.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לבטל את הנעילה של העדפות ״משתמשים וקבוצות״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava otključati postavke Korisnici i grupe.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja feloldani a Csoportok és felhasználók beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di sbloccare le preferenze di gruppi e utenti.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、“ユーザとグループ”環境設定のロックを解除しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 사용자 및 그룹 환경설정을 잠금 해제하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å låse opp Brukere og grupper-valgpanelet.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het voorkeurenpaneel 'Gebruikers en groepen' te ontgrendelen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ odblokować preferencje Użytkownicy i grupy.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando desbloquear as preferências Usuários e Grupos.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar desproteger as preferências de Utilizadores e Grupos.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să deblocheze preferințele Utilizatori și grupuri.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается снять защиту с настроек «Пользователи и группы».</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odomknúť nastavenia Užívatelia a skupina.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker låsa upp inställningarna för Användare och grupper.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปลดล็อกค่าปรับแต่งผู้ใช้และกลุ่ม</string>
-				<key>tr</key>
-				<string>__APPNAME__, Kullanıcılar ve Gruplar tercihlerinin kilidini açmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відімкнути параметри Користувачів і груп.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图解锁“用户与群组”偏好设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試解鎖“使用者與群組”偏好設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-		</dict>
-		<key>system.preferences.datetime</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked by the Admin framework when making changes to the Date &amp; Time preference pane.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح القفل</string>
-				<key>ca</key>
-				<string>Desbloquejar</string>
-				<key>cs</key>
-				<string>Odemknout</string>
-				<key>da</key>
-				<string>LÃ¥s op</string>
-				<key>de</key>
-				<string>Entsperren</string>
-				<key>el</key>
-				<string>Ξεκλείδωμα</string>
-				<key>en</key>
-				<string>Unlock</string>
-				<key>es</key>
-				<string>Desbloquear</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Déverrouiller</string>
-				<key>he</key>
-				<string>בטל/י את הנעילה</string>
-				<key>hr</key>
-				<string>Otključaj</string>
-				<key>hu</key>
-				<string>Feloldás</string>
-				<key>it</key>
-				<string>Sblocca</string>
-				<key>ja</key>
-				<string>ロック解除</string>
-				<key>ko</key>
-				<string>잠금 해제</string>
-				<key>nb</key>
-				<string>LÃ¥s opp</string>
-				<key>nl</key>
-				<string>Ontgrendel</string>
-				<key>pl</key>
-				<string>Odblokuj</string>
-				<key>pt</key>
-				<string>Desbloquear</string>
-				<key>pt-PT</key>
-				<string>Desproteger</string>
-				<key>ro</key>
-				<string>Deblochează</string>
-				<key>ru</key>
-				<string>Снять защиту</string>
-				<key>sk</key>
-				<string>Odomknúť</string>
-				<key>sv</key>
-				<string>LÃ¥s upp</string>
-				<key>th</key>
-				<string>ปลดล็อก</string>
-				<key>tr</key>
-				<string>Kilidi Aç</string>
-				<key>uk</key>
-				<string>Відімкнути</string>
-				<key>zh-Hans</key>
-				<string>解锁</string>
-				<key>zh-Hant</key>
-				<string>解鎖</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>حاول __APPNAME__ فتح قفل تفضيلات التاريخ والوقت.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant debloquejar el tauler de preferències Data i Hora.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odemknout předvolby Datum a čas.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at låse vinduet Dato &amp; tid op.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Systemeinstellung „Datum &amp; Uhrzeit“ zu entsperren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ξεκλειδώσει τις προτιμήσεις ημερομηνίας και ώρας.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to unlock the Date &amp; Time preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando desbloquear el panel de preferencias Fecha y Hora.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää avata Päivämäärä ja aika -asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie de déverrouiller les préférences Date et heure</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לבטל את הנעילה של העדפות ״שעה ותאריך״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava otključati postavke Datum i vrijeme.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja feloldani a Dátum és idő beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di sbloccare le preferenze di Data e ora.</string>
-				<key>ja</key>
-				<string>__APPNAME__ が“日付と時刻”環境設定のロックを解除しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 날짜와 시간 환경설정을 잠금 해제하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å låse opp Dato og tid-valgpanelet.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het voorkeurenpaneel 'Datum en tijd' te ontgrendelen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje odblokować preferencje daty i czasu.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando desbloquear as preferências Data e Hora.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar desproteger as preferências de Data e Hora.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să deblocheze preferințele Dată și oră.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается снять защиту с настроек панели «Дата и время».</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odomknúť nastavenia dátumu a času.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker låsa upp inställningarna för Datum och tid.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปลอดล็อกค่าปรับแต่งวันที่และเวลา</string>
-				<key>tr</key>
-				<string>__APPNAME__, Tarih ve Saat tercihlerinin kilidini açmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відімкнути параметри Дати і часу.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图解锁“日期与事件”偏好设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試解鎖“日期與時間”偏好設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>system.preferences.energysaver</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked by the Admin framework when making changes to the Energy Saver preference pane.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح القفل</string>
-				<key>ca</key>
-				<string>Desbloquejar</string>
-				<key>cs</key>
-				<string>Odemknout</string>
-				<key>da</key>
-				<string>LÃ¥s op</string>
-				<key>de</key>
-				<string>Entsperren</string>
-				<key>el</key>
-				<string>Ξεκλείδωμα</string>
-				<key>en</key>
-				<string>Unlock</string>
-				<key>es</key>
-				<string>Desbloquear</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Déverrouiller</string>
-				<key>he</key>
-				<string>בטל/י את הנעילה</string>
-				<key>hr</key>
-				<string>Otključaj</string>
-				<key>hu</key>
-				<string>Feloldás</string>
-				<key>it</key>
-				<string>Sblocca</string>
-				<key>ja</key>
-				<string>ロック解除</string>
-				<key>ko</key>
-				<string>잠금 해제</string>
-				<key>nb</key>
-				<string>LÃ¥s opp</string>
-				<key>nl</key>
-				<string>Ontgrendel</string>
-				<key>pl</key>
-				<string>Odblokuj</string>
-				<key>pt</key>
-				<string>Desbloquear</string>
-				<key>pt-PT</key>
-				<string>Desproteger</string>
-				<key>ro</key>
-				<string>Deblochează</string>
-				<key>ru</key>
-				<string>Снять защиту</string>
-				<key>sk</key>
-				<string>Odomknúť</string>
-				<key>sv</key>
-				<string>LÃ¥s upp</string>
-				<key>th</key>
-				<string>ปลดล็อก</string>
-				<key>tr</key>
-				<string>Kilidi Aç</string>
-				<key>uk</key>
-				<string>Відімкнути</string>
-				<key>zh-Hans</key>
-				<string>解锁</string>
-				<key>zh-Hant</key>
-				<string>解鎖</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>_يحاول __APPNAME__ فتح قفل تفضيلات موفر الطاقة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant desbloquejar el tauler de preferències Economitzador.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odemknout předvolby Úspora energie.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at låse vinduet Energibesparelse op.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Systemeinstellung „Energie sparen“ zu entsperren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ξεκλειδώσει τις προτιμήσεις εξοικονόμησης ενέργειας.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to unlock the Energy Saver preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando desbloquear el panel de preferencias Economizador.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää avata Energiansäästäjä-asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie de déverrouiller les préférences Économiseur d’énergie.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לבטל את הנעילה של העדפות ״חסכון באנרגיה״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava otključati postavke Štednja energije.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja feloldani az Energiatakarékos mód beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di sbloccare le preferenze di Risparmio di energia.</string>
-				<key>ja</key>
-				<string>__APPNAME__ が“省エネルギー”環境設定のロックを解除しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 에너지 절약 환경설정을 잠금 해제하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å låse opp Strømsparing-valgpanelet.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het voorkeurenpaneel 'Energiestand' te ontgrendelen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje odblokować preferencje oszczędzania energii.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando desbloquear as preferências Economizador de Energia.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar desproteger as preferências de Poupança de Energia.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să deblocheze preferințele Economizor.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается снять защиту с настроек панели «Экономия энергии».</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odomknúť nastavenia šetriča energie.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker låsa upp inställningarna för Strömsparare.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปลดล็อกค่าปรับแต่งตัวช่วยประหยัดพลังงาน</string>
-				<key>tr</key>
-				<string>__APPNAME__, Enerji Tasarrufu tercihlerinin kilidini açmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відімкнути параметри Збереження енергії.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图解锁“节能器”偏好设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試解鎖“能源節約器”偏好設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>system.preferences.location</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>For changing the network location from the Apple menu.</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>on-console</string>
-				<string>is-admin</string>
-				<string>is-root</string>
-			</array>
-		</dict>
-		<key>system.preferences.network</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked by the Admin framework when making changes to the Network preference pane.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح القفل</string>
-				<key>ca</key>
-				<string>Desbloquejar</string>
-				<key>cs</key>
-				<string>Odemknout</string>
-				<key>da</key>
-				<string>LÃ¥s op</string>
-				<key>de</key>
-				<string>Entsperren</string>
-				<key>el</key>
-				<string>Ξεκλείδωμα</string>
-				<key>en</key>
-				<string>Unlock</string>
-				<key>es</key>
-				<string>Desbloquear</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Déverrouiller</string>
-				<key>he</key>
-				<string>בטל/י את הנעילה</string>
-				<key>hr</key>
-				<string>Otključaj</string>
-				<key>hu</key>
-				<string>Feloldás</string>
-				<key>it</key>
-				<string>Sblocca</string>
-				<key>ja</key>
-				<string>ロックを解除</string>
-				<key>ko</key>
-				<string>잠금 해제</string>
-				<key>nb</key>
-				<string>LÃ¥s opp</string>
-				<key>nl</key>
-				<string>Ontgrendel</string>
-				<key>pl</key>
-				<string>Odblokuj</string>
-				<key>pt</key>
-				<string>Desbloquear</string>
-				<key>pt-PT</key>
-				<string>Desproteger</string>
-				<key>ro</key>
-				<string>Deblochează</string>
-				<key>ru</key>
-				<string>Снять защиту</string>
-				<key>sk</key>
-				<string>Odomknúť</string>
-				<key>sv</key>
-				<string>LÃ¥s upp</string>
-				<key>th</key>
-				<string>ปลดล็อก</string>
-				<key>tr</key>
-				<string>Kilidi Aç</string>
-				<key>uk</key>
-				<string>Відімкнути</string>
-				<key>zh-Hans</key>
-				<string>解锁</string>
-				<key>zh-Hant</key>
-				<string>解鎖</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ فك قفل تفضيلات الشبكة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant desbloquejar el tauler de preferències Xarxa.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odemknout předvolby Síť.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at låse Netværk op.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Systemeinstellung „Netzwerk“ zu entsperren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ξεκλειδώσει τις προτιμήσεις δικτύου.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to unlock the Network preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando desbloquear el panel de preferencias Red.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää avata Verkko-asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de déverrouiller les préférences Réseau.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לבטל את הנעילה של העדפות ״רשת״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava otključati postavke Mreža.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja feloldani a Hálózat beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di sbloccare le preferenze Network.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、“ネットワーク”環境設定のロックを解除しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 네트워크 환경설정을 잠금 해제하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å låse opp Nettverk-valgpanelet.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het voorkeurenpaneel 'Netwerk' te ontgrendelen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje odblokować preferencje Sieć.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando desbloquear as preferências Rede.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar desproteger as preferências de Rede.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să deblocheze preferințele Rețea.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается установить новый инструмент справки</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odomknúť nastavenia siete.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker låsa upp nätverksinställningarna.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปลดล็อกค่าปรับแต่งเครือข่าย</string>
-				<key>tr</key>
-				<string>__APPNAME__, Ağ tercihlerinin kilidini açmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відімкнути параметри Мережі.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图解锁“网络”偏好设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試解鎖“網路”偏好設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>system.preferences.nvram</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>entitled</string>
-				<string>admin</string>
-			</array>
-		</dict>
-		<key>system.preferences.parental-controls</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked when making changes to the Parental Controls preference pane.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح القفل</string>
-				<key>ca</key>
-				<string>Desbloquejar</string>
-				<key>cs</key>
-				<string>Odemknout</string>
-				<key>da</key>
-				<string>LÃ¥s op</string>
-				<key>de</key>
-				<string>Entsperren</string>
-				<key>el</key>
-				<string>Ξεκλείδωμα</string>
-				<key>en</key>
-				<string>Unlock</string>
-				<key>es</key>
-				<string>Desbloquear</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Déverrouiller</string>
-				<key>he</key>
-				<string>בטל/י את הנעילה</string>
-				<key>hr</key>
-				<string>Otključaj</string>
-				<key>hu</key>
-				<string>Feloldás</string>
-				<key>it</key>
-				<string>Sblocca</string>
-				<key>ja</key>
-				<string>ロックを解除</string>
-				<key>ko</key>
-				<string>잠금 해제</string>
-				<key>nb</key>
-				<string>LÃ¥s opp</string>
-				<key>nl</key>
-				<string>Ontgrendel</string>
-				<key>pl</key>
-				<string>Odblokuj</string>
-				<key>pt</key>
-				<string>Desbloquear</string>
-				<key>pt-PT</key>
-				<string>Desproteger</string>
-				<key>ro</key>
-				<string>Deblochează</string>
-				<key>ru</key>
-				<string>Снять защиту</string>
-				<key>sk</key>
-				<string>Odomknúť</string>
-				<key>sv</key>
-				<string>LÃ¥s upp</string>
-				<key>th</key>
-				<string>ปลดล็อก</string>
-				<key>tr</key>
-				<string>Kilidi Aç</string>
-				<key>uk</key>
-				<string>Відімкнути</string>
-				<key>zh-Hans</key>
-				<string>解锁</string>
-				<key>zh-Hant</key>
-				<string>解鎖</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ فتح قفل تفضيلات الإشراف العائلي.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant desbloquejar el tauler de preferències Controls Parentals.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odemknout předvolby Rodičovský dohled.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at låse Børnesikring op.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Systemeinstellung „Kindersicherung“ zu entsperren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ξεκλειδώσει τις προτιμήσεις γονικού ελέγχου.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to unlock Parental Controls preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando desbloquear el panel de preferencias Controles Parentales.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää avata Käyttörajoitukset-asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de déverrouiller les préférences Contrôle parental.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לבטל את הנעילה של העדפות ״כלי בקרה להורים״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava otključati postavke Roditeljske kontrole.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja feloldani a Szülői felügyelet beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di sbloccare le preferenze dei controlli censura.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、“ペアレンタルコントロール”環境設定のロックを解除しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 유해 콘텐츠 차단 환경설정을 잠금 해제하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å låse opp Foreldrekontroll-valgpanelet.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het voorkeurenpaneel 'Ouderlijk toezicht' te ontgrendelen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje odblokować preferencje Nadzór rodzicielski.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando desbloquear as preferências de Controles Parentais.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar desproteger as preferências do Controlo Parental.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să deblocheze preferințele Control parental.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается снять защиту с настроек Родительского контроля.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odomknúť nastavenia rodičovskej ochrany.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker låsa upp Föräldrakontrollsinställningarna.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปลดล็อกค่าปรับแต่งการควบคุมโดยผู้ปกครอง</string>
-				<key>tr</key>
-				<string>__APPNAME__, Ebeveyn Denetimleri tercihlerinin kilidini açmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відімкнути параметри Бітьківського контролю.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图解锁“家长控制”偏好设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試解鎖“分級保護控制”偏好設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-		</dict>
-		<key>system.preferences.printing</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked by the Admin framework when making changes to the Printing preference pane.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح القفل</string>
-				<key>ca</key>
-				<string>Desbloquejar</string>
-				<key>cs</key>
-				<string>Odemknout</string>
-				<key>da</key>
-				<string>LÃ¥s op</string>
-				<key>de</key>
-				<string>Entsperren</string>
-				<key>el</key>
-				<string>Ξεκλείδωμα</string>
-				<key>en</key>
-				<string>Unlock</string>
-				<key>es</key>
-				<string>Desbloquear</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Déverrouiller</string>
-				<key>he</key>
-				<string>בטל/י את הנעילה</string>
-				<key>hr</key>
-				<string>Otključaj</string>
-				<key>hu</key>
-				<string>Feloldás</string>
-				<key>it</key>
-				<string>Sblocca</string>
-				<key>ja</key>
-				<string>ロック解除</string>
-				<key>ko</key>
-				<string>잠금 해제</string>
-				<key>nb</key>
-				<string>LÃ¥s opp</string>
-				<key>nl</key>
-				<string>Ontgrendel</string>
-				<key>pl</key>
-				<string>Odblokuj</string>
-				<key>pt</key>
-				<string>Desbloquear</string>
-				<key>pt-PT</key>
-				<string>Desproteger</string>
-				<key>ro</key>
-				<string>Deblochează</string>
-				<key>ru</key>
-				<string>Снять защиту</string>
-				<key>sk</key>
-				<string>Odomknúť</string>
-				<key>sv</key>
-				<string>LÃ¥s upp</string>
-				<key>th</key>
-				<string>ปลดล็อก</string>
-				<key>tr</key>
-				<string>Kilidi Aç</string>
-				<key>uk</key>
-				<string>Відімкнути</string>
-				<key>zh-Hans</key>
-				<string>解锁</string>
-				<key>zh-Hant</key>
-				<string>解鎖</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ فتح قفل تفضيلات الطباعة والمسح الضوئي.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant desbloquejar el tauler de preferències Impressió i Escaneig.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odemknout předvolby Tisk a fax.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at låse vinduet Udskriv &amp; scan op.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Systemeinstellung „Drucken &amp; Scannen“ zu entsperren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ξεκλειδώσει τις προτιμήσεις εκτύπωσης και σάρωσης.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to unlock the Print &amp; Scan preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando desbloquear el panel de preferencias Impresión y Escaneado.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää avata Tulostus ja skannaus -asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie de déverrouiller les préférences Imprimantes et scanners.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לבטל את הנעילה של העדפות ״הדפסה וסריקה״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava otključati postavke Ispis i skeniranje.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja feloldani a Nyomtatás és szkennelés beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di sbloccare le preferenze di Stampa e scansione.</string>
-				<key>ja</key>
-				<string>__APPNAME__ が“プリントとファクス”環境設定のロックを解除しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 프린트 및 스캔 환경설정을 잠금 해제하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å låse opp Utskrift- og skanning-valgpanelet.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het voorkeurenpaneel 'Afdrukken en scannen' te ontgrendelen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje odblokować preferencje drukarki i skanera.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando desbloquear as preferências Impressão e Escaneamento.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar desproteger as preferências de Impressão e Digitalização.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să deblocheze preferințele Tipărire și scanare.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается снять защиту с настроек панели «Печать и факс».</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odomknúť nastavenia tlačiarní a skenerov.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker låsa upp inställningarna för Skrivare och skanner.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปลดล็อกค่าปรับแต่งการพิมพ์และสแกน</string>
-				<key>tr</key>
-				<string>__APPNAME__, Kağıda Dökme ve Tarama tercihlerinin kilidini açmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відімкнути параметри Принтерів і сканерів.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图解锁“打印与扫描”偏好设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”在嘗試解鎖“列印與掃描”偏好設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>system.preferences.security</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked by the Admin framework when making changes to the Security preference pane.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح القفل</string>
-				<key>ca</key>
-				<string>Desbloquejar</string>
-				<key>cs</key>
-				<string>Odemknout</string>
-				<key>da</key>
-				<string>LÃ¥s op</string>
-				<key>de</key>
-				<string>Entsperren</string>
-				<key>el</key>
-				<string>Ξεκλείδωμα</string>
-				<key>en</key>
-				<string>Unlock</string>
-				<key>es</key>
-				<string>Desbloquear</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Déverrouiller</string>
-				<key>he</key>
-				<string>בטל/י את הנעילה</string>
-				<key>hr</key>
-				<string>Otključaj</string>
-				<key>hu</key>
-				<string>Feloldás</string>
-				<key>it</key>
-				<string>Sblocca</string>
-				<key>ja</key>
-				<string>ロックを解除</string>
-				<key>ko</key>
-				<string>잠금 해제</string>
-				<key>nb</key>
-				<string>LÃ¥s opp</string>
-				<key>nl</key>
-				<string>Ontgrendel</string>
-				<key>pl</key>
-				<string>Odblokuj</string>
-				<key>pt</key>
-				<string>Desbloquear</string>
-				<key>pt-PT</key>
-				<string>Desproteger</string>
-				<key>ro</key>
-				<string>Deblochează</string>
-				<key>ru</key>
-				<string>Снять защиту</string>
-				<key>sk</key>
-				<string>Odomknúť</string>
-				<key>sv</key>
-				<string>LÃ¥s upp</string>
-				<key>th</key>
-				<string>ปลดล็อก</string>
-				<key>tr</key>
-				<string>Kilidi Aç</string>
-				<key>uk</key>
-				<string>Відімкнути</string>
-				<key>zh-Hans</key>
-				<string>解锁</string>
-				<key>zh-Hant</key>
-				<string>解鎖</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ إلغاء تأمين تفضيلات الأمن والخصوصية.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant desbloquejar el tauler de preferències Seguretat i Privadesa.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odemknout předvolby Zabezpečení a soukromí.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at låse Sikkerhed &amp; anonymitet op.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Systemeinstellung „Sicherheit &amp; Privatsphäre“ zu entsperren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ξεκλειδώσει τις προτιμήσεις ασφάλειας και απορρήτου.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to unlock Security &amp; Privacy preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando desbloquear el panel de preferencias Seguridad y Privacidad.</string>
-				<key>fi</key>
-				<string>__APPNAME__  yrittää avata Suojaus ja yksityisyys -asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de déverrouiller les préférences Sécurité et confidentialité.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לבטל את הנעילה של העדפות ״אבטחה ופרטיות״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava otključati postavke Sigurnost i privatnost.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja feloldani a Biztonság ás adatvédelem beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di sbloccare le preferenze Sicurezza e Privacy.</string>
-				<key>ja</key>
-				<string>“__APPNAME__”により“セキュリティとプライバシー”環境設定のロックが解除されます。</string>
-				<key>ko</key>
-				<string>__APPNAME__ 이(가) 보안 및 개인 정보 환경설정을 잠금 해제하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å låse opp Sikkerhet og personvern-valgpanelet.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het voorkeurenpaneel 'Beveiliging en privacy' te ontgrendelen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje odblokować preferencje Ochrona i prywatność.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando desbloquear as preferências Segurança e Privacidade.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar desproteger as preferências de Segurança e Privacidade.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să deblocheze preferințele Securitate și confidențialitate.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается снять защиту с панели «Защита и безопасность».</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odomknúť nastavenia súkromia a bezpečnosti.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker låsa upp inställningarna för Säkerhet och integritet.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปลดล็อกค่าปรับแต่งความปลอดภัยและความเป็นส่วนตัว</string>
-				<key>tr</key>
-				<string>__APPNAME__, Güvenlik ve Gizlilik tercihlerinin kilidini açmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відімкнути параметри Захисту і безпеки.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图解锁“安全性与隐私”偏好设置。</string>
-				<key>zh-Hant</key>
-				<string>__APPNAME__ 正在嘗試解鎖“安全性與隱私”偏好設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-		</dict>
-		<key>system.preferences.security.remotepair</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>Used by Bezel Services to gate IR remote pairing.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>اقتران</string>
-				<key>ca</key>
-				<string>Enllaçar</string>
-				<key>cs</key>
-				<string>Párovat</string>
-				<key>da</key>
-				<string>Dan par</string>
-				<key>de</key>
-				<string>Koppeln</string>
-				<key>el</key>
-				<string>Ζευγοποίηση</string>
-				<key>en</key>
-				<string>Pair</string>
-				<key>es</key>
-				<string>Enlazar</string>
-				<key>fi</key>
-				<string>Muodosta pari</string>
-				<key>fr</key>
-				<string>Jumeler</string>
-				<key>he</key>
-				<string>קשר/י</string>
-				<key>hr</key>
-				<string>Upari</string>
-				<key>hu</key>
-				<string>Párosítás</string>
-				<key>it</key>
-				<string>Abbina</string>
-				<key>ja</key>
-				<string>登録</string>
-				<key>ko</key>
-				<string>연결</string>
-				<key>nb</key>
-				<string>Sammenkoble</string>
-				<key>nl</key>
-				<string>Koppel</string>
-				<key>pl</key>
-				<string>Łącz w parę</string>
-				<key>pt</key>
-				<string>Emparelhar</string>
-				<key>pt-PT</key>
-				<string>Emparelhar</string>
-				<key>ro</key>
-				<string>Asociază</string>
-				<key>ru</key>
-				<string>Создать пару</string>
-				<key>sk</key>
-				<string>Spárovať</string>
-				<key>sv</key>
-				<string>Parkoppla</string>
-				<key>th</key>
-				<string>เข้าคู่</string>
-				<key>tr</key>
-				<string>Eşle</string>
-				<key>uk</key>
-				<string>Створити пару</string>
-				<key>zh-Hans</key>
-				<string>配对</string>
-				<key>zh-Hant</key>
-				<string>配對</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ الاقتران بوحدة التحكم عن بعد.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant un enllaç remot.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší párovat ovladač.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at danne par med fjernbetjeningen.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Fernbedienung zu koppeln.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ζευγοποιήσει το τηλεχειριστήριο.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to pair the remote.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando enlazar un mando a distancia.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muodostaa paria kaukosäätimen kanssa.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de jumeler la télécommande.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לקשר את השלט.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava upariti daljinski upravljač.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja párosítani a távvezérlőt.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di abbinare il telecomando.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は Remote を登録しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 리모컨을 연결하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å sammenkoble fjernkontrollen.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de afstandsbediening te koppelen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje połączyć pilota w parę.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando emparelhar o controle remoto.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar emparelhar o comando.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să asocieze telecomanda.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается создать пару с пультом ДУ.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša spárovať diaľkový ovládač.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker parkoppla fjärrkontrollen.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามเข้าคู่ระยะไกล</string>
-				<key>tr</key>
-				<string>__APPNAME__, uzaktan kumandayı eşlemeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається створити пару з пультом дистанційного керування.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图与遥控器配对。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試配對遙控器。</string>
-			</dict>
-			<key>rule</key>
-			<string>entitled-admin-or-authenticate-admin</string>
-		</dict>
-		<key>system.preferences.sharing</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked by the Admin framework when making changes to the Sharing preference pane.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح القفل</string>
-				<key>ca</key>
-				<string>Desbloquejar</string>
-				<key>cs</key>
-				<string>Odemknout</string>
-				<key>da</key>
-				<string>LÃ¥s op</string>
-				<key>de</key>
-				<string>Entsperren</string>
-				<key>el</key>
-				<string>Ξεκλείδωμα</string>
-				<key>en</key>
-				<string>Unlock</string>
-				<key>es</key>
-				<string>Desbloquear</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Déverrouiller</string>
-				<key>he</key>
-				<string>בטל/י את הנעילה</string>
-				<key>hr</key>
-				<string>Otključaj</string>
-				<key>hu</key>
-				<string>Feloldás</string>
-				<key>it</key>
-				<string>Sblocca</string>
-				<key>ja</key>
-				<string>ロック解除</string>
-				<key>ko</key>
-				<string>잠금 해제</string>
-				<key>nb</key>
-				<string>LÃ¥s opp</string>
-				<key>nl</key>
-				<string>Ontgrendel</string>
-				<key>pl</key>
-				<string>Odblokuj</string>
-				<key>pt</key>
-				<string>Desbloquear</string>
-				<key>pt-PT</key>
-				<string>Desproteger</string>
-				<key>ro</key>
-				<string>Deblochează</string>
-				<key>ru</key>
-				<string>Снять защиту</string>
-				<key>sk</key>
-				<string>Odomknúť</string>
-				<key>sv</key>
-				<string>LÃ¥s upp</string>
-				<key>th</key>
-				<string>ปลดล็อก</string>
-				<key>tr</key>
-				<string>Kilidi Aç</string>
-				<key>uk</key>
-				<string>Відімкнути</string>
-				<key>zh-Hans</key>
-				<string>解锁</string>
-				<key>zh-Hant</key>
-				<string>解鎖</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ فتح قفل تفضيلات المشاركة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant desbloquejar el tauler de preferències Compartir.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odemknout předvolby Sdílení.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at låse vinduet Deling op.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Systemeinstellung „Freigaben“ zu entsperren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ξεκλειδώσει τις προτιμήσεις κοινής χρήσης.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to unlock the Sharing preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando desbloquear el panel de preferencias Compartir.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää avata Jako-asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie de déverrouiller les préférences Partage.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לבטל את הנעילה של העדפות ״שיתוף״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava otključati postavke Dijeljenje.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja feloldani a Megosztás beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di sbloccare le preferenze di Condivisione.</string>
-				<key>ja</key>
-				<string>__APPNAME__ が“共有”環境設定のロックを解除しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 공유 환경설정을 잠금 해제하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å låse opp Deling-valgpanelet.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het voorkeurenpaneel 'Delen' te ontgrendelen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje odblokować preferencje udostępniania.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando desbloquear as preferências Compartilhamento.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar desproteger as preferências de Partilha.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să deblocheze preferințele Partajare.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается снять защиту с настроек панели «Общий доступ».</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odomknúť nastavenia zdieľania.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker låsa upp inställningarna för Delning.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปลดล็อกค่าปรับแต่งการแบ่งปัน</string>
-				<key>tr</key>
-				<string>__APPNAME__, Paylaşma tercihlerinin kilidini açmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відімкнути параметри Спільного доступу.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图解锁“共享”偏好设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試解鎖“共享”偏好設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>system.preferences.softwareupdate</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked by the Admin framework when making changes to the Software Update preference pane.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح القفل</string>
-				<key>ca</key>
-				<string>Desbloquejar</string>
-				<key>cs</key>
-				<string>Odemknout</string>
-				<key>da</key>
-				<string>LÃ¥s op</string>
-				<key>de</key>
-				<string>Entsperren</string>
-				<key>el</key>
-				<string>Ξεκλείδωμα</string>
-				<key>en</key>
-				<string>Unlock</string>
-				<key>es</key>
-				<string>Desbloquear</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Déverrouiller</string>
-				<key>he</key>
-				<string>בטל/י את הנעילה</string>
-				<key>hr</key>
-				<string>Otključaj</string>
-				<key>hu</key>
-				<string>Feloldás</string>
-				<key>it</key>
-				<string>Sblocca</string>
-				<key>ja</key>
-				<string>ロック解除</string>
-				<key>ko</key>
-				<string>잠금 해제</string>
-				<key>nb</key>
-				<string>LÃ¥s opp</string>
-				<key>nl</key>
-				<string>Ontgrendel</string>
-				<key>pl</key>
-				<string>Odblokuj</string>
-				<key>pt</key>
-				<string>Desbloquear</string>
-				<key>pt-PT</key>
-				<string>Desproteger</string>
-				<key>ro</key>
-				<string>Deblochează</string>
-				<key>ru</key>
-				<string>Снять защиту</string>
-				<key>sk</key>
-				<string>Odomknúť</string>
-				<key>sv</key>
-				<string>LÃ¥s upp</string>
-				<key>th</key>
-				<string>ปลดล็อก</string>
-				<key>tr</key>
-				<string>Kilidi Aç</string>
-				<key>uk</key>
-				<string>Відімкнути</string>
-				<key>zh-Hans</key>
-				<string>解锁</string>
-				<key>zh-Hant</key>
-				<string>解鎖</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ فتح قفل تفضيلات محدث البرامج.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant desbloquejar el tauler de preferències Actualització de Programari.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odemknout předvolby Aktualizace softwaru.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at låse vinduet Softwareopdatering op.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Systemeinstellung „Softwareaktualisierung“ zu entsperren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ξεκλειδώσει τις προτιμήσεις ενημέρωσης λογισμικού.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to unlock the Software Update preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando desbloquear el panel de preferencias Actualización de Software.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää avata Ohjelmiston päivitys -asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie de déverrouiller les préférences Mise à jour de logiciels.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לבטל את הנעילה של העדפות ״עדכוני תוכנה״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava otključati postavke Ažuriranje softvera.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja feloldani a szoftverfrissítés beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di sbloccare le preferenze di Aggiornamento Software.</string>
-				<key>ja</key>
-				<string>__APPNAME__ が“ソフトウェア・アップデート”環境設定のロックを解除しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 소프트웨어 업데이트 환경설정을 잠금 해제하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å låse opp Programvareoppdatering-valgpanelet.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het voorkeurenpaneel 'Software-update' te ontgrendelen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje odblokować preferencje uaktualnień programów.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando desbloquear as preferências Atualização de Software.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar desproteger as preferências de Actualização de Software.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să deblocheze preferințele Actualizare software.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается снять защиту с настроек панели «Обновление программ».</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odomknúť nastavenia aktualizácie softvéru.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker låsa upp inställningarna för Programuppdatering.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปลดล็อกค่าปรับแต่งการอัปเดตซอฟต์แวร์</string>
-				<key>tr</key>
-				<string>__APPNAME__, Yazılım Güncelleme tercihlerinin kilidini açmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відімкнути параметри Оновлення системи.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图解锁“软件更新”偏好设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試解鎖“軟體更新”偏好設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>system.preferences.startupdisk</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked by the Admin framework when making changes to the Startup Disk preference pane.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح القفل</string>
-				<key>ca</key>
-				<string>Desbloquejar</string>
-				<key>cs</key>
-				<string>Odemknout</string>
-				<key>da</key>
-				<string>LÃ¥s op</string>
-				<key>de</key>
-				<string>Entsperren</string>
-				<key>el</key>
-				<string>Ξεκλείδωμα</string>
-				<key>en</key>
-				<string>Unlock</string>
-				<key>es</key>
-				<string>Desbloquear</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Déverrouiller</string>
-				<key>he</key>
-				<string>בטל/י את הנעילה</string>
-				<key>hr</key>
-				<string>Otključaj</string>
-				<key>hu</key>
-				<string>Feloldás</string>
-				<key>it</key>
-				<string>Sblocca</string>
-				<key>ja</key>
-				<string>ロック解除</string>
-				<key>ko</key>
-				<string>잠금 해제</string>
-				<key>nb</key>
-				<string>LÃ¥s opp</string>
-				<key>nl</key>
-				<string>Ontgrendel</string>
-				<key>pl</key>
-				<string>Odblokuj</string>
-				<key>pt</key>
-				<string>Desbloquear</string>
-				<key>pt-PT</key>
-				<string>Desproteger</string>
-				<key>ro</key>
-				<string>Deblochează</string>
-				<key>ru</key>
-				<string>Снять защиту</string>
-				<key>sk</key>
-				<string>Odomknúť</string>
-				<key>sv</key>
-				<string>LÃ¥s upp</string>
-				<key>th</key>
-				<string>ปลดล็อก</string>
-				<key>tr</key>
-				<string>Kilidi Aç</string>
-				<key>uk</key>
-				<string>Відімкнути</string>
-				<key>zh-Hans</key>
-				<string>解锁</string>
-				<key>zh-Hant</key>
-				<string>解鎖</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ فتح قفل تفضيلات قرص بدء التشغيل.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant desbloquejar el tauler de preferències Disc d’Arrencada.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odemknout předvolby Startovací disk.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at låse vinduet Startdisk op.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Systemeinstellung „Startvolume“ zu entsperren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ξεκλειδώσει τις προτιμήσεις δίσκου εκκίνησης.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to unlock the Startup Disk preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando desbloquear el panel de preferencias Disco de Arranque.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää avata Käynnistyslevy-asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie de déverrouiller les préférences Démarrage.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לבטל את הנעילה של העדפות ״כונן ההפעלה״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava otključati postavke Pokretački disk.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja feloldani a Rendszerindító lemez beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di sbloccare le preferenze del Disco di avvio.</string>
-				<key>ja</key>
-				<string>__APPNAME__ が“起動ディスク”環境設定のロックを解除しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 시동 디스크 환경설정을 잠금 해제하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å låse opp Startdisk-valgpanelet.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het voorkeurenpaneel 'Opstartschijf' te ontgrendelen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje odblokować preferencje dysku startowego.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando desbloquear as preferências Disco de Inicialização.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar desproteger as preferências de Disco de Arranque.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să deblocheze preferințele Disc de inițializare.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается снять защиту с настроек панели «Загрузочный том».</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odomknúť nastavenia štartovacieho disku.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker låsa upp inställningarna för Startskiva.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปลดล็อกค่าปรับแต่งดิสก์เริ่มต้น</string>
-				<key>tr</key>
-				<string>__APPNAME__, Başlangıç Diski tercihlerinin kilidini açmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відімкнути параметри Стартового диска.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图解锁“启动磁盘”偏好设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試解鎖“啟動磁碟”偏好設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>system.preferences.timemachine</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked by the Admin framework when making changes to the Time Machine preference pane.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>فتح القفل</string>
-				<key>ca</key>
-				<string>Desbloquejar</string>
-				<key>cs</key>
-				<string>Odemknout</string>
-				<key>da</key>
-				<string>LÃ¥s op</string>
-				<key>de</key>
-				<string>Entsperren</string>
-				<key>el</key>
-				<string>Ξεκλείδωμα</string>
-				<key>en</key>
-				<string>Unlock</string>
-				<key>es</key>
-				<string>Desbloquear</string>
-				<key>fi</key>
-				<string>Avaa</string>
-				<key>fr</key>
-				<string>Déverrouiller</string>
-				<key>he</key>
-				<string>בטל/י את הנעילה</string>
-				<key>hr</key>
-				<string>Otključaj</string>
-				<key>hu</key>
-				<string>Feloldás</string>
-				<key>it</key>
-				<string>Sblocca</string>
-				<key>ja</key>
-				<string>ロック解除</string>
-				<key>ko</key>
-				<string>잠금 해제</string>
-				<key>nb</key>
-				<string>LÃ¥s opp</string>
-				<key>nl</key>
-				<string>Ontgrendel</string>
-				<key>pl</key>
-				<string>Odblokuj</string>
-				<key>pt</key>
-				<string>Desbloquear</string>
-				<key>pt-PT</key>
-				<string>Desproteger</string>
-				<key>ro</key>
-				<string>Deblochează</string>
-				<key>ru</key>
-				<string>Снять защиту</string>
-				<key>sk</key>
-				<string>Odomknúť</string>
-				<key>sv</key>
-				<string>LÃ¥s upp</string>
-				<key>th</key>
-				<string>ปลดล็อก</string>
-				<key>tr</key>
-				<string>Kilidi Aç</string>
-				<key>uk</key>
-				<string>Відімкнути</string>
-				<key>zh-Hans</key>
-				<string>解锁</string>
-				<key>zh-Hant</key>
-				<string>解鎖</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ فتح قفل تفضيلات Time Machine.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant desbloquejar el tauler de preferències Time Machine.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší odemknout předvolby Time Machine.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at låse vinduet Time Machine op.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Systemeinstellung „Time Machine“ zu entsperren.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να ξεκλειδώσει τις προτιμήσεις του Time Machine.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to unlock the Time Machine preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando desbloquear el panel de preferencias Time Machine.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää avata Time Machine -asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaie de déverrouiller les préférences Time Machine.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לבטל את הנעילה של ההעדפות של Time Machine.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava otključati Time Machine postavke.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja feloldani a Time Machine beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di sbloccare le preferenze di Time Machine.</string>
-				<key>ja</key>
-				<string>__APPNAME__ が“Time Machine”環境設定のロックを解除しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) Time Machine 환경설정을 잠금 해제하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å låse opp Time Machine-valgpanelet.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het voorkeurenpaneel 'Time Machine' te ontgrendelen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje odblokować preferencje Time Machine.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando desbloquear as preferências Time Machine.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar desproteger as preferências de Time Machine.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să deblocheze preferințele Time Machine.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается снять защиту с настроек панели Time Machine.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odomknúť nastavenia Time Machine.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker låsa upp inställningarna för Time Machine.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามปลดล็อกค่าปรับแต่ง Time Machine</string>
-				<key>tr</key>
-				<string>__APPNAME__, Time Machine tercihlerinin kilidini açmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається відімкнути параметри Time Machine.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图解锁 Time Machine 偏好设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試解鎖 Time Machine 偏好設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>system.preferences.version-cue</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>For gating modifications to Adobe Version Cue preferences.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل التفضيلات</string>
-				<key>ca</key>
-				<string>Modificar les preferències</string>
-				<key>cs</key>
-				<string>Změnit předvolby</string>
-				<key>da</key>
-				<string>Juster indstillinger</string>
-				<key>de</key>
-				<string>Einstellungen ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση προτιμήσεων</string>
-				<key>en</key>
-				<string>Modify Preferences</string>
-				<key>es</key>
-				<string>Modificar preferencias</string>
-				<key>fi</key>
-				<string>Muokkaa asetuksia</string>
-				<key>fr</key>
-				<string>Modifier les préférences</string>
-				<key>he</key>
-				<string>ערוך/י את ההעדפות</string>
-				<key>hr</key>
-				<string>Preinači postavke</string>
-				<key>hu</key>
-				<string>Beállítások módosítása</string>
-				<key>it</key>
-				<string>Modifica preferenze</string>
-				<key>ja</key>
-				<string>環境設定を変更</string>
-				<key>ko</key>
-				<string>환경설정 수정</string>
-				<key>nb</key>
-				<string>Endre valg</string>
-				<key>nl</key>
-				<string>Wijzig voorkeuren</string>
-				<key>pl</key>
-				<string>Zmień preferencje</string>
-				<key>pt</key>
-				<string>Modificar Preferências</string>
-				<key>pt-PT</key>
-				<string>Modificar as preferências</string>
-				<key>ro</key>
-				<string>Modifică preferințele</string>
-				<key>ru</key>
-				<string>Модифицировать настройки</string>
-				<key>sk</key>
-				<string>Upraviť nastavenia</string>
-				<key>sv</key>
-				<string>Ändra inställningar</string>
-				<key>th</key>
-				<string>แก้ไขค่าปรับแต่ง</string>
-				<key>tr</key>
-				<string>Tercihleri Değiştir</string>
-				<key>uk</key>
-				<string>Modify Preferences</string>
-				<key>zh-Hans</key>
-				<string>修改偏好设置</string>
-				<key>zh-Hant</key>
-				<string>修改偏好設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل تفضيلات رمز الإصدار.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar el tauler de preferències Version Cue.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit předvolby Version Cue.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at ændre indstillingerne til versionindikatoren.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Systemeinstellung „Version Cue“ zu ändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τροποποιήσει τις προτιμήσεις του Version Cue.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify the Version Cue preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar las preferencias de la indicación de versión.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata Version Cue -asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de modifier les préférences de Version Cue.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לערוך שינויים בהעדפות של Version Cue.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preinačiti postavke za red verzije.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja feloldani a Version Cue beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di modificare le preferenze Version Cue.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、“Version Cue”環境設定を変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) Version Cue 환경설정을 수정하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre Version Cue-valgpanelet.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de Version Cue-voorkeuren te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zmienić preferencje Version Cue.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar os ajustes do aplicativo Version Cue.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar modificar as preferências de Version Cue.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să modifice preferințele Version Cue.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать настройки Version Cue.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša odomknúť nastavenia Version Cue.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra inställningarna för Version Cue.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขค่าปรับแต่ง Version Cue</string>
-				<key>tr</key>
-				<string>__APPNAME__, Version Cue tercihlerini değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається змінити параметри Version Cue.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改 Version Cue 的偏好设置</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改 Version Cue 偏好設定。</string>
-			</dict>
-			<key>rule</key>
-			<string>authenticate-admin</string>
-		</dict>
-		<key>system.print.admin</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل الإعدادات</string>
-				<key>ca</key>
-				<string>Modificar la configuració</string>
-				<key>cs</key>
-				<string>Změnit nastavení</string>
-				<key>da</key>
-				<string>Juster indstillinger</string>
-				<key>de</key>
-				<string>Einstellungen ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση ρυθμίσεων</string>
-				<key>en</key>
-				<string>Modify Settings</string>
-				<key>es</key>
-				<string>Modificar ajustes</string>
-				<key>fi</key>
-				<string>Muokkaa asetuksia</string>
-				<key>fr</key>
-				<string>Modifer les réglages</string>
-				<key>he</key>
-				<string>ערוך/י את ההגדרות</string>
-				<key>hr</key>
-				<string>Preinači postavke</string>
-				<key>hu</key>
-				<string>Beállítások módosítása</string>
-				<key>it</key>
-				<string>Modifica impostazioni</string>
-				<key>ja</key>
-				<string>設定を変更</string>
-				<key>ko</key>
-				<string>설정 수정</string>
-				<key>nb</key>
-				<string>Endre innstillinger</string>
-				<key>nl</key>
-				<string>Wijzig instellingen</string>
-				<key>pl</key>
-				<string>Zmień ustawienia</string>
-				<key>pt</key>
-				<string>Modificar Ajustes</string>
-				<key>pt-PT</key>
-				<string>Modificar definições</string>
-				<key>ro</key>
-				<string>Schimbă configurările</string>
-				<key>ru</key>
-				<string>Модифицировать настройки</string>
-				<key>sk</key>
-				<string>Upraviť nastavenia</string>
-				<key>sv</key>
-				<string>Ändra inställningar</string>
-				<key>th</key>
-				<string>แก้ไขค่าปรับแต่ง</string>
-				<key>tr</key>
-				<string>Ayarları Değiştir</string>
-				<key>uk</key>
-				<string>Змінити параметри</string>
-				<key>zh-Hans</key>
-				<string>修改设置</string>
-				<key>zh-Hant</key>
-				<string>修改設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل إعدادات الطابعة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar la configuració de la impressora.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit nastavení tiskárny.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at ændre printerindstillingerne.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Druckereinstellungen zu ändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τροποποιήσει τις ρυθμίσεις εκτυπωτή.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify the printer settings.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar los ajustes de la impresora.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata tulostimen asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de modifier les réglages d’imprimante.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לערוך שינויים בהגדרות המדפסת.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preinačiti postavke pisača.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja módosítani a nyomtató beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di modificare le impostazioni della stampante.</string>
-				<key>ja</key>
-				<string>__APPNAME__ はプリンタの設定を変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 프린터 설정을 변경하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre skriverinnstillingene.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de printerinstellingen te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zmienić ustawienia drukarki.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar os ajustes da impressora.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar modificar as definições de impressão.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să schimbe configurările imprimantei.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать настройки принтера.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša upraviť nastavenia tlačiarne.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra skrivarinställningarna.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขค่าปรับแต่งเครื่องพิมพ์</string>
-				<key>tr</key>
-				<string>__APPNAME__, yazıcı ayarlarını değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається змінити параметри принтера.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改打印机设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改印表機設定。</string>
-			</dict>
-			<key>rule</key>
-			<string>root-or-lpadmin</string>
-		</dict>
-		<key>system.print.operator</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>السماح بالطباعة</string>
-				<key>ca</key>
-				<string>Permetre la impressió</string>
-				<key>cs</key>
-				<string>Povolit tisk</string>
-				<key>da</key>
-				<string>Tillad udskrivning</string>
-				<key>de</key>
-				<string>Drucken erlauben</string>
-				<key>el</key>
-				<string>Να επιτρέπεται η εκτύπωση</string>
-				<key>en</key>
-				<string>Allow Printing</string>
-				<key>es</key>
-				<string>Permitir impresión</string>
-				<key>fi</key>
-				<string>Salli tulostus</string>
-				<key>fr</key>
-				<string>Autoriser l’impression</string>
-				<key>he</key>
-				<string>אפשר הדפסה</string>
-				<key>hr</key>
-				<string>Dozvoli ispis</string>
-				<key>hu</key>
-				<string>Nyomtatás engedélyezése</string>
-				<key>it</key>
-				<string>Consenti stampa</string>
-				<key>ja</key>
-				<string>プリントを許可</string>
-				<key>ko</key>
-				<string>프린트 허용</string>
-				<key>nb</key>
-				<string>Tillat utskrift</string>
-				<key>nl</key>
-				<string>Sta afdrukken toe</string>
-				<key>pl</key>
-				<string>Pozwól na drukowanie</string>
-				<key>pt</key>
-				<string>Permitir Impressão</string>
-				<key>pt-PT</key>
-				<string>Permitir imprimir</string>
-				<key>ro</key>
-				<string>Permite tipărirea</string>
-				<key>ru</key>
-				<string>Разрешить печать</string>
-				<key>sk</key>
-				<string>Povoliť tlač</string>
-				<key>sv</key>
-				<string>Tillåt utskrifter</string>
-				<key>th</key>
-				<string>อนุญาตการพิมพ์</string>
-				<key>tr</key>
-				<string>Kağıda Dökmeye İzin Ver</string>
-				<key>uk</key>
-				<string>Дозволити друк</string>
-				<key>zh-Hans</key>
-				<string>允许打印</string>
-				<key>zh-Hant</key>
-				<string>允許列印</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ استخدام الطابعة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant utilitzar la impressora.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší použít tiskárnu.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at bruge printeren.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, den Drucker zu benutzen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να χρησιμοποιήσει τον εκτυπωτή.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to use the printer.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando usar la impresora.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää käyttää tulostinta.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye d’utiliser l’imprimante.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש להשתמש במדפסת.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava koristiti pisač.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja használni a nyomtatót.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di usare la stampante.</string>
-				<key>ja</key>
-				<string>__APPNAME__ はプリンタを使用しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 프린터를 사용하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å bruke skriveren.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de printer te gebruiken.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje użyć drukarki.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando usar a impressora.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar usar a impressora.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să utilizeze imprimanta.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается использовать принтер.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša použiť tlačiareň.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker använda skrivaren.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามใช้งานเครื่องพิมพ์</string>
-				<key>tr</key>
-				<string>__APPNAME__, yazıcıyı kullanmaya çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається використати принтер.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图使用打印机。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試使用印表機。</string>
-			</dict>
-			<key>group</key>
-			<string>_lpoperator</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>system.printingmanager</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>For printing to locked printers.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>طباعة</string>
-				<key>ca</key>
-				<string>Print</string>
-				<key>cs</key>
-				<string>Tisknout</string>
-				<key>da</key>
-				<string>Udskriv</string>
-				<key>de</key>
-				<string>Drucken</string>
-				<key>el</key>
-				<string>Εκτύπωση</string>
-				<key>en</key>
-				<string>Print</string>
-				<key>es</key>
-				<string>Imprimir</string>
-				<key>fi</key>
-				<string>Tulosta</string>
-				<key>fr</key>
-				<string>Imprimer</string>
-				<key>he</key>
-				<string>הדפס</string>
-				<key>hr</key>
-				<string>Ispis</string>
-				<key>hu</key>
-				<string>Nyomtatás</string>
-				<key>it</key>
-				<string>Stampa</string>
-				<key>ja</key>
-				<string>プリント</string>
-				<key>ko</key>
-				<string>프린트</string>
-				<key>nb</key>
-				<string>Skriv ut</string>
-				<key>nl</key>
-				<string>Druk af</string>
-				<key>pl</key>
-				<string>Drukuj</string>
-				<key>pt</key>
-				<string>Imprimir</string>
-				<key>pt-PT</key>
-				<string>Imprimir</string>
-				<key>ro</key>
-				<string>Tipărește</string>
-				<key>ru</key>
-				<string>Напечатать</string>
-				<key>sk</key>
-				<string>Tlačiť</string>
-				<key>sv</key>
-				<string>Skriv ut</string>
-				<key>th</key>
-				<string>พิมพ์</string>
-				<key>tr</key>
-				<string>Kağıda Dök</string>
-				<key>uk</key>
-				<string>Друкувати</string>
-				<key>zh-Hans</key>
-				<string>打印</string>
-				<key>zh-Hant</key>
-				<string>列印</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ الطباعة على طابعة مقفلة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant imprimir amb una impressora bloquejada.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší tisknout na uzamčené tiskárně.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at udskrive til en låst printer.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, auf einem gesperrten Drucker zu drucken.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να εκτυπώσει σε κλειδωμένο εκτυπωτή.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to print to a locked printer.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando imprimir en una impresora bloqueada.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää tulostaa lukitulle tulostimelle.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye d’imprimer vers une imprimante verrouillée.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש להדפיס דרך מדפסת נעולה.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava ispisivati na zaključanom pisaču.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbál nyomtatni egy zárolt nyomtatóra</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di stampare su una stampante bloccata.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、ロック中のプリンタを使ってプリントしようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 잠겨있는 프린터에서 프린트하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å skrive ut på en låst skriver.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert een vergrendelde printer te gebruiken.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje drukować na zablokowanej drukarce.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando imprimir em uma impressora bloqueada.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar imprimir através de uma impressora que se encontra bloqueada.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să tipărească pe o imprimantă blocată.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается выполнить печать на защищенном принтере.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša tlačiť na zamknutej tlačiarni.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker skriva ut på en låst skrivare.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามพิมพ์สู่เครื่องพิมพ์ที่ล็อกไว้</string>
-				<key>tr</key>
-				<string>__APPNAME__, kilitli bir yazıcıda kağıda dökmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається друкувати на замкненому принтері.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图打印到已锁定的打印机。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試列印至鎖定的印表機。</string>
-			</dict>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-admin</string>
-				<string>authenticate-admin</string>
-			</array>
-		</dict>
-		<key>system.privilege.admin</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Used by AuthorizationExecuteWithPrivileges(...).  
-		AuthorizationExecuteWithPrivileges() is used by programs requesting
-		to run a tool as root (e.g., some installers).</string>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-			<key>timeout</key>
-			<integer>300</integer>
-		</dict>
-		<key>system.privilege.taskport</key>
-		<dict>
-			<key>allow-root</key>
-			<false/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Used by task_for_pid(...).
-		Task_for_pid is called by programs requesting full control over another program
-		for things like debugging or performance analysis. This authorization only applies
-		if the requesting and target programs are run by the same user; it will never
-		authorize access to the program of another user.  WARNING: administrators are advised not to modify this right.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>التحكم</string>
-				<key>ca</key>
-				<string>Prendre el control</string>
-				<key>cs</key>
-				<string>Převzít kontrolu</string>
-				<key>da</key>
-				<string>Overtag kontrol</string>
-				<key>de</key>
-				<string>Steuerung übernehmen</string>
-				<key>el</key>
-				<string>Ανάληψη ελέγχου</string>
-				<key>en</key>
-				<string>Take Control</string>
-				<key>es</key>
-				<string>Controlar</string>
-				<key>fi</key>
-				<string>Ota hallintaan</string>
-				<key>fr</key>
-				<string>Prendre le contrôle</string>
-				<key>he</key>
-				<string>השתלט</string>
-				<key>hr</key>
-				<string>Preuzmi kontrolu</string>
-				<key>hu</key>
-				<string>Vezérlés átvétele</string>
-				<key>it</key>
-				<string>Prendi il controllo</string>
-				<key>ja</key>
-				<string>制御</string>
-				<key>ko</key>
-				<string>제어하기</string>
-				<key>nb</key>
-				<string>Ta kontroll</string>
-				<key>nl</key>
-				<string>Beheer</string>
-				<key>pl</key>
-				<string>Przejmij kontrolę</string>
-				<key>pt</key>
-				<string>Recuperar Controle</string>
-				<key>pt-PT</key>
-				<string>Recuperar controlo</string>
-				<key>ro</key>
-				<string>Preia controlul</string>
-				<key>ru</key>
-				<string>Управлять</string>
-				<key>sk</key>
-				<string>Prevziať kontrolu</string>
-				<key>sv</key>
-				<string>Ta kontroll</string>
-				<key>th</key>
-				<string>ควบคุม</string>
-				<key>tr</key>
-				<string>Yönetimi Ele Geçir</string>
-				<key>uk</key>
-				<string>Отримати контроль</string>
-				<key>zh-Hans</key>
-				<string>控制</string>
-				<key>zh-Hant</key>
-				<string>控制</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ أن يسيطر على عملية أخرى.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant prendre el control d’un altre procés.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší převzít kontrolu nad jiným procesem.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at overtage kontrollen af en anden proces.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Steuerung eines anderen Vorgangs zu übernehmen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να λάβει τον έλεγχο άλλης διεργασίας.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to take control of another process.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando controlar otro proceso.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää ottaa hallintaan toista prosessia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de prendre le contrôle d’un autre processus.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש להשתלט על תהליך אחר.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preuzeti kontrolu nad drugim procesom.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja átvenni egy másik folyamat vezérlését.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di prendere il controllo di un altro processo.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、ほかのプロセスを制御しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 다른 프로세스를 제어하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å styre en annen prosess.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het beheer van een ander proces over te nemen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje przejąć kontrolę nad innym procesem.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando assumir o controle de outro processo.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar controlar outro processo.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să preia controlul unui alt proces.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается взять под контроль другой процесс.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša prevziať kontrolu nad iným procesom.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ta kontroll över en annan process.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามเข้าควบคุมการดำเนินการอื่น</string>
-				<key>tr</key>
-				<string>__APPNAME__, başka bir işlemin yönetimini ele geçirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається отримати контроль над іншим процесом.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图控制另一进程。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試控制另一個程序。</string>
-			</dict>
-			<key>group</key>
-			<string>_developer</string>
-			<key>shared</key>
-			<true/>
-			<key>timeout</key>
-			<integer>36000</integer>
-		</dict>
-		<key>system.privilege.taskport.debug</key>
-		<dict>
-			<key>allow-root</key>
-			<false/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>For use by Apple.  WARNING: administrators are advised
-            not to modify this right.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>متابعة</string>
-				<key>ca</key>
-				<string>Continuar</string>
-				<key>cs</key>
-				<string>Pokračovat</string>
-				<key>da</key>
-				<string>Fortsæt</string>
-				<key>de</key>
-				<string>Fortfahren</string>
-				<key>el</key>
-				<string>Συνέχεια</string>
-				<key>en</key>
-				<string>Continue</string>
-				<key>es</key>
-				<string>Continuar</string>
-				<key>fi</key>
-				<string>Jatka</string>
-				<key>fr</key>
-				<string>Continuer</string>
-				<key>he</key>
-				<string>המשך</string>
-				<key>hr</key>
-				<string>Nastavi</string>
-				<key>hu</key>
-				<string>Folytatás</string>
-				<key>it</key>
-				<string>Continua</string>
-				<key>ja</key>
-				<string>続ける</string>
-				<key>ko</key>
-				<string>계속</string>
-				<key>nb</key>
-				<string>Fortsett</string>
-				<key>nl</key>
-				<string>Ga door</string>
-				<key>pl</key>
-				<string>Dalej</string>
-				<key>pt</key>
-				<string>Continuar</string>
-				<key>pt-PT</key>
-				<string>Continuar</string>
-				<key>ro</key>
-				<string>Continuă</string>
-				<key>ru</key>
-				<string>Продолжить</string>
-				<key>sk</key>
-				<string>Pokračovať</string>
-				<key>sv</key>
-				<string>Fortsätt</string>
-				<key>th</key>
-				<string>ดำเนินการต่อ</string>
-				<key>tr</key>
-				<string>Sürdür</string>
-				<key>uk</key>
-				<string>Продовжити</string>
-				<key>zh-Hans</key>
-				<string>继续</string>
-				<key>zh-Hant</key>
-				<string>繼續</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ أن يسيطر على عملية أخرى لتصحيح الأخطاء للاستمرار.</string>
-				<key>ca</key>
-				<string>__APPNAME__ necessita prendre el control d’un altre procés per continuar amb la depuració.</string>
-				<key>cs</key>
-				<string>__APPNAME__ potřebuje pro pokračování ladění převzít kontrolu nad jiným procesem.</string>
-				<key>da</key>
-				<string>__APPNAME__ bliver nødt til at overtage kontrollen af en anden process, for at fejlfinding kan fortsætte.</string>
-				<key>de</key>
-				<string>__APPNAME__ muss zum Fortsetzen der Fehlerbehebung die Steuerung eines anderen Vorgangs übernehmen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ πρέπει να λάβει τον έλεγχο άλλης διεργασίας για να συνεχιστεί η εκσφαλμάτωση.</string>
-				<key>en</key>
-				<string>__APPNAME__ needs to take control of another process for debugging to continue.</string>
-				<key>es</key>
-				<string>Para continuar con la depuración, __APPNAME__ debe controlar otro proceso.</string>
-				<key>fi</key>
-				<string>Ohjelman __APPNAME__ pitää ottaa toinen prosessi hallintaan, jotta virheidenmääritys voi jatkua.</string>
-				<key>fr</key>
-				<string>__APPNAME__ à besoin de prendre le contrôle d’un autre processus pour continuer le débogage.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ צריך להשתלט על תהליך אחר על-מנת להמשיך בניפוי השגיאות.</string>
-				<key>hr</key>
-				<string>__APPNAME__ treba preuzeti kontrolu nad drugim procesom kako bi se moglo nastaviti uklanjanje grešaka.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ alkalmazásnak át kell vennie egy másik folyamat vezérlését a hibakeresés folytatásához.</string>
-				<key>it</key>
-				<string>__APPNAME__ deve prendere il controllo di un altro processo affinché possa continuare il debugging.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、デバッグを続けるためにほかのプロセスを制御する必要があります。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 다른 프로세스를 제어해야 디버깅을 계속할 수 있습니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ må styre en annen prosess for at feilsøkingen skal fortsette.</string>
-				<key>nl</key>
-				<string>__APPNAME__ moet het beheer van een ander proces overnemen voordat de foutopsporing kan worden voortgezet.</string>
-				<key>pl</key>
-				<string>__APPNAME__ musi przejąć kontrolę nad innym procesem na potrzeby usuwania błędów, aby kontynuować.</string>
-				<key>pt</key>
-				<string>__APPNAME__ precisa assumir o controle de outro processo para que a depuração possa continuar.</string>
-				<key>pt-PT</key>
-				<string>Para poder continuar a depuração, o __APPNAME__ necessita de controlar outro processo.</string>
-				<key>ro</key>
-				<string>__APPNAME__ trebuie să preia controlul unui alt proces pentru a continua depanarea.</string>
-				<key>ru</key>
-				<string>Программе «__APPNAME__» необходимо взять под контроль другой процесс, чтобы отладка могла быть продолжена.</string>
-				<key>sk</key>
-				<string>__APPNAME__ potrebuje kvôli riešeniu problémov prevziať kontrolu nad iným procesom.</string>
-				<key>sv</key>
-				<string>__APPNAME__ måste ta kontroll över en annan process för att kunna fortsätta felsöka.</string>
-				<key>th</key>
-				<string>__APPNAME__ จำเป็นต้องเข้าควบคุมการดำเนินการอื่นเพื่อดำเนินการแก้ไขข้อผิดพลาดต่อ</string>
-				<key>tr</key>
-				<string>__APPNAME__, başka bir işlemin yönetimini ele geçirmeden hata ayıklama sürdürülemez.</string>
-				<key>uk</key>
-				<string>Програмі «__APPNAME__» для продовження відладки потрібно отримати контроль над іншим процесом.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”需控制另一进程，才能继续调试。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”需要控制另一個程序才能繼續除錯。</string>
-			</dict>
-			<key>group</key>
-			<string>_developer</string>
-			<key>shared</key>
-			<true/>
-			<key>timeout</key>
-			<integer>36000</integer>
-		</dict>
-		<key>system.privilege.taskport.safe</key>
-		<dict>
-			<key>class</key>
-			<string>allow</string>
-			<key>comment</key>
-			<string>For use by Apple.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>التحكم</string>
-				<key>ca</key>
-				<string>Prendre el control</string>
-				<key>cs</key>
-				<string>Převzít kontrolu</string>
-				<key>da</key>
-				<string>Overtag kontrol</string>
-				<key>de</key>
-				<string>Steuerung übernehmen</string>
-				<key>el</key>
-				<string>Ανάληψη ελέγχου</string>
-				<key>en</key>
-				<string>Take Control</string>
-				<key>es</key>
-				<string>Controlar</string>
-				<key>fi</key>
-				<string>Ota hallintaan</string>
-				<key>fr</key>
-				<string>Prendre le contrôle</string>
-				<key>he</key>
-				<string>השתלט</string>
-				<key>hr</key>
-				<string>Preuzmi kontrolu</string>
-				<key>hu</key>
-				<string>Vezérlés átvétele</string>
-				<key>it</key>
-				<string>Prendi il controllo</string>
-				<key>ja</key>
-				<string>制御</string>
-				<key>ko</key>
-				<string>제어하기</string>
-				<key>nb</key>
-				<string>Ta kontroll</string>
-				<key>nl</key>
-				<string>Beheer</string>
-				<key>pl</key>
-				<string>Przejmij kontrolę</string>
-				<key>pt</key>
-				<string>Recuperar Controle</string>
-				<key>pt-PT</key>
-				<string>Recuperar controlo</string>
-				<key>ro</key>
-				<string>Preia controlul</string>
-				<key>ru</key>
-				<string>Управлять</string>
-				<key>sk</key>
-				<string>Prevziať kontrolu</string>
-				<key>sv</key>
-				<string>Ta kontroll</string>
-				<key>th</key>
-				<string>ควบคุม</string>
-				<key>tr</key>
-				<string>Yönetimi Ele Geçir</string>
-				<key>uk</key>
-				<string>Отримати контроль</string>
-				<key>zh-Hans</key>
-				<string>控制</string>
-				<key>zh-Hant</key>
-				<string>控制</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ أن يسيطر على عملية أخرى.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant prendre el control d’un altre procés.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší převzít kontrolu nad jiným procesem.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at overtage kontrollen af en anden proces.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Steuerung eines anderen Vorgangs zu übernehmen.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να λάβει τον έλεγχο άλλης διεργασίας.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to take control of another process.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando controlar otro proceso.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää ottaa hallintaan toista prosessia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de prendre le contrôle d’un autre processus.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש להשתלט על תהליך אחר.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preuzeti kontrolu nad drugim procesom.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja átvenni egy másik folyamat vezérlését.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di prendere il controllo di un altro processo.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、ほかのプロセスを制御しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 다른 프로세스를 제어하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å styre en annen prosess.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het beheer van een ander proces over te nemen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje przejąć kontrolę nad innym procesem.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando assumir o controle de outro processo.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar controlar outro processo.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să preia controlul unui alt proces.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается взять под контроль другой процесс.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša prevziať kontrolu nad iným procesom.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ta kontroll över en annan process.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามเข้าควบคุมการดำเนินการอื่น</string>
-				<key>tr</key>
-				<string>__APPNAME__, başka bir işlemin yönetimini ele geçirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається отримати контроль над іншим процесом.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图控制另一进程。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試控制另一個程序。</string>
-			</dict>
-		</dict>
-		<key>system.restart</key>
-		<dict>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>comment</key>
-			<string>Checked if the foreground console user tries to restart the system while other users are logged in via fast-user switching.</string>
-			<key>mechanisms</key>
-			<array>
-				<string>RestartAuthorization:restart</string>
-				<string>builtin:authenticate,privileged</string>
-				<string>RestartAuthorization:success</string>
-			</array>
-		</dict>
-		<key>system.services.directory.configure</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>For making Directory Services changes.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل التكوين</string>
-				<key>ca</key>
-				<string>Modificar la configuració</string>
-				<key>cs</key>
-				<string>Změnit konfiguraci</string>
-				<key>da</key>
-				<string>Juster konfiguration</string>
-				<key>de</key>
-				<string>Konfiguration ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση ρύθμισης παραμέτρων</string>
-				<key>en</key>
-				<string>Modify Configuration</string>
-				<key>es</key>
-				<string>Modificar configuración</string>
-				<key>fi</key>
-				<string>Muokkaa määrittelyä</string>
-				<key>fr</key>
-				<string>Modifier la configuration</string>
-				<key>he</key>
-				<string>ערוך/י את התצורה</string>
-				<key>hr</key>
-				<string>Preinači konfiguraciju</string>
-				<key>hu</key>
-				<string>Konfiguráció módosítása</string>
-				<key>it</key>
-				<string>Modifica configurazione</string>
-				<key>ja</key>
-				<string>構成を変更</string>
-				<key>ko</key>
-				<string>구성 수정</string>
-				<key>nb</key>
-				<string>Endre konfigurasjon</string>
-				<key>nl</key>
-				<string>Wijzig configuratie</string>
-				<key>pl</key>
-				<string>Zmień konfigurację</string>
-				<key>pt</key>
-				<string>Modificar Configuração </string>
-				<key>pt-PT</key>
-				<string>Modificar configuração</string>
-				<key>ro</key>
-				<string>Schimbă configurația</string>
-				<key>ru</key>
-				<string>Модифицировать конфигурацию</string>
-				<key>sk</key>
-				<string>Upraviť konfiguráciu</string>
-				<key>sv</key>
-				<string>Ändra konfiguration</string>
-				<key>th</key>
-				<string>แก้ไขการกำหนดค่า</string>
-				<key>tr</key>
-				<string>Konfigürasyonu Değiştir</string>
-				<key>uk</key>
-				<string>Змінити конфігурацію</string>
-				<key>zh-Hans</key>
-				<string>修改配置</string>
-				<key>zh-Hant</key>
-				<string>修改設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل تكوين خدمات الدليل.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar la configuració de Serveis de Directori.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit konfiguraci Adresářových služeb.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at ændre konfigurationen Bibliotekstjenester.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Konfiguration der Verzeichnisdienste zu ändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τροποποιήσει τη ρύθμιση παραμέτρων των Υπηρεσιών καταλόγου.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify the Directory Services configuration.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar la configuración de los servicios de directorio.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata hakemistopalvelujen määrittelyä.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de modifier la configuration des services d’annuaire.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לערוך שינויים בתצורה של Directory Services.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preinačiti konfiguraciju usluga direktorija.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja módosítani a Könyvtárszolgáltatások konfigurációját.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di modificare la configurazione dei Servizi di directory.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、ディレクトリサービスの構成を変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 디렉토리 서비스 구성을 변경하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre Katalogtjenester-konfigurasjonen.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de configuratie van Adreslijstvoorzieningen te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zmienić konfigurację programu Usługi katalogowe.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar a configuração dos Serviços de Diretório.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar modificar a configuração dos serviços de directório.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să schimbe configurația serviciilor de director.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать настройку Службы каталогов.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa pokúša upraviť konfiguráciu adresárových služieb.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra konfigurationen för Katalogtjänster.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขการกำหนดค่าบริการไดเร็กเทอรี่</string>
-				<key>tr</key>
-				<string>__APPNAME__, Dizin Servisleri konfigürasyonunu değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається змінити конфігурацію Служб каталогів.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改“目录服务”的配置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改“目錄服務”設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<false/>
-		</dict>
-		<key>system.services.systemconfiguration.network</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>For making change to network configuration via System Configuration.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل التكوين</string>
-				<key>ca</key>
-				<string>Modificar la configuració</string>
-				<key>cs</key>
-				<string>Změna konfigurace</string>
-				<key>da</key>
-				<string>Rediger konfiguration</string>
-				<key>de</key>
-				<string>Konfiguration ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση ρύθμισης παραμέτρων</string>
-				<key>en</key>
-				<string>Modify Configuration</string>
-				<key>es</key>
-				<string>Modificar configuración</string>
-				<key>fi</key>
-				<string>Muokkaa määritystä</string>
-				<key>fr</key>
-				<string>Modifier la configuration</string>
-				<key>he</key>
-				<string>שינוי תצורה</string>
-				<key>hr</key>
-				<string>Promijeni konfiguraciju</string>
-				<key>hu</key>
-				<string>Konfiguráció módosítása</string>
-				<key>it</key>
-				<string>Modifica configurazione</string>
-				<key>ja</key>
-				<string>構成を変更</string>
-				<key>ko</key>
-				<string>구성 수정</string>
-				<key>nb</key>
-				<string>Endre konfigurasjon</string>
-				<key>nl</key>
-				<string>Configuratiewijziging</string>
-				<key>pl</key>
-				<string>Modifikuj konfigurację</string>
-				<key>pt</key>
-				<string>Modificação de Configuração</string>
-				<key>pt-PT</key>
-				<string>Modificação de configuração</string>
-				<key>ro</key>
-				<string>Modificare configurație</string>
-				<key>ru</key>
-				<string>Модифицировать конфигурацию</string>
-				<key>sk</key>
-				<string>Upraviť nastavenie</string>
-				<key>sv</key>
-				<string>Ändra konfiguration</string>
-				<key>th</key>
-				<string>การกำหนดค่าการแก้ไข</string>
-				<key>tr</key>
-				<string>Konfigürasyonu Değiştir</string>
-				<key>uk</key>
-				<string>Змінити конфігурацію</string>
-				<key>zh-Hans</key>
-				<string>修改配置</string>
-				<key>zh-Hant</key>
-				<string>修改設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>__APPNAME__ يحاول تعديل تكوين شبكة النظام‫.‬</string>
-				<key>ca</key>
-				<string>__APPNAME__ està provant de modificar la configuració de xarxa del sistema.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit síťovou konfiguraci systému.</string>
-				<key>da</key>
-				<string>__APPNAME__ prøver at ændre systemets netværkskonfiguration.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Netzwerkkonfiguration des Systems zu ändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή «__APPNAME__» προσπαθεί να τροποποιήσει τη ρύθμιση παραμέτρων του δικτύου συστήματος.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify the system network configuration.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar la configuración de red del sistema.</string>
-				<key>fi</key>
-				<string>__APPNAME__yrittää muokata järjestelmän verkkomääritysta.</string>
-				<key>fr</key>
-				<string>__APPNAME__ souhaite modifier la configuration réseau de votre ordinateur.</string>
-				<key>he</key>
-				<string>__APPNAME__ מנסה לשנות את תצורת הרשת של המערכת.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava promijeniti mrežnu konfiguraciju sustava.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ módosítani próbálja a rendszer hálózati konfigurációját.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta tentando di modificare la configurazione network del sistema.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、システムネットワークの構成を変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 시스템 네트워크 구성을 수정하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre systemets nettverkskonfigurasjon.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert de netwerkconfiguratie van het systeem te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zmodyfikować systemową konfigurację sieci.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar a configuração de rede do sistema.</string>
-				<key>pt-PT</key>
-				<string>__APPNAME__ está a tentar modificar a configuração de rede do sistema.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să modifice configurația de rețea a sistemului.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать сетевую конфигурацию системы.</string>
-				<key>sk</key>
-				<string>Aplikácia __APPNAME__ sa pokúša upraviť systémové nastavenie siete.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra systemets nätverksinställning.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขการกำหนดค่าเครือข่ายระบบ</string>
-				<key>tr</key>
-				<string>__APPNAME__, sistemin ağ konfigürasyonunu değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>__APPNAME__ намагається змінити мережеву конфігурацію системи.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改系统的网络配置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改系統網路設定。</string>
-			</dict>
-			<key>rule</key>
-			<string>root-or-entitled-admin-or-app-specific-admin</string>
-		</dict>
-		<key>system.sharepoints.</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Checked when making changes to the Sharepoints.</string>
-			<key>default-button</key>
-			<dict>
-				<key>ar</key>
-				<string>تعديل التفضيلات</string>
-				<key>ca</key>
-				<string>Modificar les preferències</string>
-				<key>cs</key>
-				<string>Změnit předvolby</string>
-				<key>da</key>
-				<string>Juster indstillinger</string>
-				<key>de</key>
-				<string>Einstellungen ändern</string>
-				<key>el</key>
-				<string>Τροποποίηση προτιμήσεων</string>
-				<key>en</key>
-				<string>Modify Preferences</string>
-				<key>es</key>
-				<string>Modificar preferencias</string>
-				<key>fi</key>
-				<string>Muokkaa asetuksia</string>
-				<key>fr</key>
-				<string>Modifier les préférences</string>
-				<key>he</key>
-				<string>ערוך/י שינויים</string>
-				<key>hr</key>
-				<string>Preinači postavke</string>
-				<key>hu</key>
-				<string>Beállítások módosítása</string>
-				<key>it</key>
-				<string>Modifica preferenze</string>
-				<key>ja</key>
-				<string>環境設定を変更</string>
-				<key>ko</key>
-				<string>환경설정 수정</string>
-				<key>nb</key>
-				<string>Endre valg</string>
-				<key>nl</key>
-				<string>Wijzig voorkeuren</string>
-				<key>pl</key>
-				<string>Zmień preferencje</string>
-				<key>pt</key>
-				<string>Modificar Preferências</string>
-				<key>pt-PT</key>
-				<string>Modificar as preferências</string>
-				<key>ro</key>
-				<string>Modifică preferințele</string>
-				<key>ru</key>
-				<string>Модифицировать настройки</string>
-				<key>sk</key>
-				<string>Upraviť nastavenia</string>
-				<key>sv</key>
-				<string>Ändra inställningar</string>
-				<key>th</key>
-				<string>แก้ไขค่าปรับแต่ง</string>
-				<key>tr</key>
-				<string>Tercihleri Değiştir</string>
-				<key>uk</key>
-				<string>Змінити параметри</string>
-				<key>zh-Hans</key>
-				<string>修改偏好设置</string>
-				<key>zh-Hant</key>
-				<string>修改偏好設定</string>
-			</dict>
-			<key>default-prompt</key>
-			<dict>
-				<key>ar</key>
-				<string>يحاول __APPNAME__ تعديل تفضيلات المشاركة.</string>
-				<key>ca</key>
-				<string>__APPNAME__ està intentant modificar el tauler de preferències Compartir.</string>
-				<key>cs</key>
-				<string>__APPNAME__ se pokouší změnit předvolby Sdílení.</string>
-				<key>da</key>
-				<string>__APPNAME__ forsøger at ændre Deling.</string>
-				<key>de</key>
-				<string>__APPNAME__ versucht, die Systemeinstellung „Freigaben“ zu ändern.</string>
-				<key>el</key>
-				<string>Η εφαρμογή __APPNAME__ προσπαθεί να τροποποιήσει τις προτιμήσεις κοινής χρήσης.</string>
-				<key>en</key>
-				<string>__APPNAME__ is trying to modify Sharing preferences.</string>
-				<key>es</key>
-				<string>__APPNAME__ está intentando modificar las preferencias de Compartir.</string>
-				<key>fi</key>
-				<string>__APPNAME__ yrittää muokata Jako-asetuksia.</string>
-				<key>fr</key>
-				<string>__APPNAME__ essaye de modifier les préférences Partage.</string>
-				<key>he</key>
-				<string>״ __APPNAME__״ מבקש לערוך שינויים בהעדפות ״שיתוף״.</string>
-				<key>hr</key>
-				<string>__APPNAME__ pokušava preinačiti postavke dijeljenja.</string>
-				<key>hu</key>
-				<string>A(z) __APPNAME__ megpróbálja módosítani a Megosztás beállításait.</string>
-				<key>it</key>
-				<string>__APPNAME__ sta cercando di modificare le preferenze di condivisione.</string>
-				<key>ja</key>
-				<string>__APPNAME__ は、“共有”環境設定を変更しようとしています。</string>
-				<key>ko</key>
-				<string>__APPNAME__이(가) 공유 환경설정을 변경하려고 합니다.</string>
-				<key>nb</key>
-				<string>__APPNAME__ prøver å endre Deling-valgpanelet.</string>
-				<key>nl</key>
-				<string>__APPNAME__ probeert het voorkeurenpaneel 'Delen' te wijzigen.</string>
-				<key>pl</key>
-				<string>__APPNAME__ próbuje zmienić preferencje Udostępnianie.</string>
-				<key>pt</key>
-				<string>__APPNAME__ está tentando modificar as preferências de Compartilhamento.</string>
-				<key>pt-PT</key>
-				<string>O __APPNAME__ está a tentar desproteger as preferências de Partilha.</string>
-				<key>ro</key>
-				<string>__APPNAME__ încearcă să modifice preferințele Partajare.</string>
-				<key>ru</key>
-				<string>Программа «__APPNAME__» пытается модифицировать настройки Общего доступа.</string>
-				<key>sk</key>
-				<string>__APPNAME__ sa  pokúša upraviť nastavenia zdieľania.</string>
-				<key>sv</key>
-				<string>__APPNAME__ försöker ändra Delningsinställningarna.</string>
-				<key>th</key>
-				<string>__APPNAME__ กำลังพยายามแก้ไขค่าปรับแต่งการแบ่งปัน</string>
-				<key>tr</key>
-				<string>__APPNAME__, Paylaşma tercihlerini değiştirmeye çalışıyor.</string>
-				<key>uk</key>
-				<string>Програма «__APPNAME__» намагається змінити параметри Спільного доступу.</string>
-				<key>zh-Hans</key>
-				<string>“__APPNAME__”正试图修改“共享”偏好设置。</string>
-				<key>zh-Hant</key>
-				<string>“__APPNAME__”正在嘗試修改“共享”偏好設定。</string>
-			</dict>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>system.shutdown</key>
-		<dict>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>comment</key>
-			<string>Checked if the foreground console user tries to shut down the system while other users are logged in via fast-user switching.</string>
-			<key>mechanisms</key>
-			<array>
-				<string>RestartAuthorization:shutdown</string>
-				<string>builtin:authenticate,privileged</string>
-				<string>RestartAuthorization:success</string>
-			</array>
-		</dict>
-		<key>system.volume.</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>system.volume.(external|internal|removable).(adopt|encode|mount|rename|unmount)</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>is-admin</string>
-				<string>authenticate-admin-30</string>
-			</array>
-		</dict>
-		<key>system.volume.external.</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>system.volume.(external|internal|removable).(adopt|encode|mount|rename|unmount)</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>is-admin</string>
-				<string>on-console</string>
-				<string>authenticate-admin-30</string>
-			</array>
-		</dict>
-		<key>system.volume.external.adopt</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>system.volume.(external|internal|removable).(adopt|encode|mount|rename|unmount)</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>is-admin</string>
-				<string>authenticate-admin-30</string>
-			</array>
-		</dict>
-		<key>system.volume.removable.</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>system.volume.(external|internal|removable).(adopt|encode|mount|rename|unmount)</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>is-admin</string>
-				<string>on-console</string>
-				<string>authenticate-admin-30</string>
-			</array>
-		</dict>
-		<key>system.volume.removable.adopt</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>comment</key>
-			<string>system.volume.(external|internal|removable).(adopt|encode|mount|rename|unmount)</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>is-admin</string>
-				<string>authenticate-admin-30</string>
-			</array>
-		</dict>
-	</dict>
-	<key>rules</key>
-	<dict>
-		<key>admin</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>allow</key>
-		<dict>
-			<key>class</key>
-			<string>allow</string>
-			<key>comment</key>
-			<string>Allow anyone.</string>
-		</dict>
-		<key>app-specific-admin</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>group</key>
-			<string>admin</string>
-		</dict>
-		<key>appserver-admin</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>group</key>
-			<string>appserveradm</string>
-		</dict>
-		<key>appserver-user</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>group</key>
-			<string>appserverusr</string>
-		</dict>
-		<key>authenticate</key>
-		<dict>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>mechanisms</key>
-			<array>
-				<string>builtin:authenticate</string>
-				<string>builtin:reset-password,privileged</string>
-				<string>builtin:authenticate,privileged</string>
-				<string>PKINITMechanism:auth,privileged</string>
-			</array>
-		</dict>
-		<key>authenticate-admin</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Authenticate as an administrator.</string>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-			<key>timeout</key>
-			<integer>0</integer>
-		</dict>
-		<key>authenticate-admin-30</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Like the default rule, but 
-            credentials remain valid for only 30 seconds after they've 
-            been obtained.  An acquired credential is shared by all clients.
-			</string>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-			<key>timeout</key>
-			<integer>30</integer>
-		</dict>
-		<key>authenticate-appstore-30</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>group</key>
-			<string>_appstore</string>
-			<key>shared</key>
-			<true/>
-			<key>timeout</key>
-			<integer>30</integer>
-		</dict>
-		<key>authenticate-developer</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Authenticate as a developer.</string>
-			<key>group</key>
-			<string>_developer</string>
-			<key>shared</key>
-			<true/>
-			<key>timeout</key>
-			<integer>36000</integer>
-		</dict>
-		<key>authenticate-session-owner</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Authenticate as the session owner.</string>
-			<key>session-owner</key>
-			<true/>
-		</dict>
-		<key>authenticate-session-owner-or-admin</key>
-		<dict>
-			<key>allow-root</key>
-			<false/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Authenticate either as the owner or as an administrator.</string>
-			<key>group</key>
-			<string>admin</string>
-			<key>session-owner</key>
-			<true/>
-			<key>shared</key>
-			<false/>
-		</dict>
-		<key>authenticate-session-user</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Same as authenticate-session-owner.</string>
-			<key>session-owner</key>
-			<true/>
-		</dict>
-		<key>default</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Default rule.	
-            Credentials remain valid for 5 minutes after they've been obtained. 
-            An acquired credential is shared by all clients.
-			</string>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-			<key>timeout</key>
-			<integer>300</integer>
-		</dict>
-		<key>entitled</key>
-		<dict>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>mechanisms</key>
-			<array>
-				<string>builtin:entitled,privileged</string>
-			</array>
-			<key>tries</key>
-			<integer>1</integer>
-		</dict>
-		<key>entitled-admin</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>k-of-n</key>
-			<integer>2</integer>
-			<key>rule</key>
-			<array>
-				<string>is-admin</string>
-				<string>entitled</string>
-			</array>
-		</dict>
-		<key>entitled-admin-or-authenticate-admin</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>entitled-admin</string>
-				<string>authenticate-admin-30</string>
-			</array>
-		</dict>
-		<key>entitled-appstore</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>k-of-n</key>
-			<integer>2</integer>
-			<key>rule</key>
-			<array>
-				<string>is-appstore</string>
-				<string>entitled</string>
-			</array>
-		</dict>
-		<key>entitled-appstore-or-entitled-authenticate-appstore</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>entitled-appstore</string>
-				<string>entitled-authenticate-appstore</string>
-			</array>
-		</dict>
-		<key>entitled-authenticate-admin</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>k-of-n</key>
-			<integer>2</integer>
-			<key>rule</key>
-			<array>
-				<string>entitled</string>
-				<string>authenticate-admin-30</string>
-			</array>
-		</dict>
-		<key>entitled-authenticate-appstore</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>k-of-n</key>
-			<integer>2</integer>
-			<key>rule</key>
-			<array>
-				<string>entitled</string>
-				<string>authenticate-appstore-30</string>
-			</array>
-		</dict>
-		<key>entitled-session-owner</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>k-of-n</key>
-			<integer>2</integer>
-			<key>rule</key>
-			<array>
-				<string>is-session-owner</string>
-				<string>entitled</string>
-			</array>
-		</dict>
-		<key>entitled-session-owner-or-authenticate-session-owner</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>entitled-session-owner</string>
-				<string>authenticate-session-owner</string>
-			</array>
-		</dict>
-		<key>is-admin</key>
-		<dict>
-			<key>authenticate-user</key>
-			<false/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Verify that the user asking for authorization is an administrator.</string>
-			<key>group</key>
-			<string>admin</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>is-appstore</key>
-		<dict>
-			<key>authenticate-user</key>
-			<false/>
-			<key>class</key>
-			<string>user</string>
-			<key>group</key>
-			<string>_appstore</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>is-developer</key>
-		<dict>
-			<key>authenticate-user</key>
-			<false/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Verify that the user asking for authorization is a developer.</string>
-			<key>group</key>
-			<string>_developer</string>
-		</dict>
-		<key>is-lpadmin</key>
-		<dict>
-			<key>authenticate-user</key>
-			<false/>
-			<key>class</key>
-			<string>user</string>
-			<key>group</key>
-			<string>_lpadmin</string>
-		</dict>
-		<key>is-root</key>
-		<dict>
-			<key>allow-root</key>
-			<true/>
-			<key>authenticate-user</key>
-			<false/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Verify that the process that created this AuthorizationRef is running as root.</string>
-		</dict>
-		<key>is-session-owner</key>
-		<dict>
-			<key>allow-root</key>
-			<false/>
-			<key>authenticate-user</key>
-			<false/>
-			<key>class</key>
-			<string>user</string>
-			<key>comment</key>
-			<string>Verify that the requesting process is running as the session owner.</string>
-			<key>session-owner</key>
-			<true/>
-		</dict>
-		<key>lpadmin</key>
-		<dict>
-			<key>class</key>
-			<string>user</string>
-			<key>group</key>
-			<string>_lpadmin</string>
-			<key>shared</key>
-			<true/>
-		</dict>
-		<key>on-console</key>
-		<dict>
-			<key>class</key>
-			<string>evaluate-mechanisms</string>
-			<key>mechanisms</key>
-			<array>
-				<string>builtin:on-console</string>
-			</array>
-			<key>tries</key>
-			<integer>1</integer>
-		</dict>
-		<key>root-or-entitled-admin-or-admin</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>entitled-admin</string>
-				<string>admin</string>
-			</array>
-		</dict>
-		<key>root-or-entitled-admin-or-app-specific-admin</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>entitled-admin</string>
-				<string>app-specific-admin</string>
-			</array>
-		</dict>
-		<key>root-or-entitled-admin-or-authenticate-admin</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>entitled-admin-or-authenticate-admin</string>
-			</array>
-		</dict>
-		<key>root-or-lpadmin</key>
-		<dict>
-			<key>class</key>
-			<string>rule</string>
-			<key>k-of-n</key>
-			<integer>1</integer>
-			<key>rule</key>
-			<array>
-				<string>is-root</string>
-				<string>is-lpadmin</string>
-				<string>lpadmin</string>
-			</array>
-		</dict>
-	</dict>
-</dict>
-</plist>
diff --git a/etc/com.apple.securityd.plist b/etc/com.apple.securityd.plist
index 3288ac8..1002f4e 100644
--- a/etc/com.apple.securityd.plist
+++ b/etc/com.apple.securityd.plist
@@ -25,5 +25,7 @@
 	<true/>
 	<key>EnableTransactions</key>
 	<true/>
+	<key>POSIXSpawnType</key>
+	<string>Interactive</string>
 </dict>
 </plist>
diff --git a/etc/startup.mk b/etc/startup.mk
index c2fd4bf..7147bf7 100644
--- a/etc/startup.mk
+++ b/etc/startup.mk
@@ -9,8 +9,8 @@ SYSTEM_LIBRARY_DIR=$(DSTROOT)/System/Library
 SYSTEM_CORE_SERVICES_DIR=/System/Library/CoreServices
 ETC_DIR=$(DSTROOT)/private/etc
 LAUNCH_DIR=$(DSTROOT)/System/Library/LaunchDaemons
-AUTHORIZATION_LOCATION=$(ETC_DIR)
-AUTHORIZATION_PLIST=$(AUTHORIZATION_LOCATION)/authorization
+#AUTHORIZATION_LOCATION=$(ETC_DIR)
+#AUTHORIZATION_PLIST=$(AUTHORIZATION_LOCATION)/authorization
 VARDB=$(DSTROOT)/private/var/db
 CANDIDATES=$(VARDB)/CodeEquivalenceCandidates
 
@@ -35,11 +35,11 @@ profile:
 install:
 	mkdir -p $(LAUNCH_DIR)
 	cp $(SRC)/com.apple.securityd.plist $(LAUNCH_DIR)
-	mkdir -p $(AUTHORIZATION_LOCATION)
-	plutil -lint $(SRC)/authorization.plist
-	cp $(SRC)/authorization.plist $(AUTHORIZATION_PLIST)
-	chown root:wheel $(AUTHORIZATION_PLIST)
-	chmod 644 $(AUTHORIZATION_PLIST)
+	#mkdir -p $(AUTHORIZATION_LOCATION)
+	#plutil -lint $(SRC)/authorization.plist
+	#cp $(SRC)/authorization.plist $(AUTHORIZATION_PLIST)
+	#chown root:wheel $(AUTHORIZATION_PLIST)
+	#chmod 644 $(AUTHORIZATION_PLIST)
 	mkdir -p $(VARDB)
 	cp $(SRC)/CodeEquivalenceCandidates $(CANDIDATES)
 	chown root:admin $(CANDIDATES)
diff --git a/libsecurity_agent/lib/agentclient.h b/libsecurity_agent/lib/agentclient.h
index 6459aa7..9e0cec7 100644
--- a/libsecurity_agent/lib/agentclient.h
+++ b/libsecurity_agent/lib/agentclient.h
@@ -65,6 +65,7 @@ enum Reason {
     noLongerNeeded,                 // the queried item is no longer needed
     keychainAddFailed,              // the requested itemed couldn't be added to the keychain
     generalErrorCancel,              // something went wrong so we have to give up now
+    resettingPassword,              // The user has indicated that they wish to reset their password
 	
 	worldChanged = 101
 };
diff --git a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/generate mig.xcscheme b/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/generate mig.xcscheme
deleted file mode 100644
index b85be49..0000000
--- a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/generate mig.xcscheme	
+++ /dev/null
@@ -1,59 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   LastUpgradeVersion = "0500"
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "40E8FACC052E45D000A3D8D1"
-               BuildableName = "generate mig"
-               BlueprintName = "generate mig"
-               ReferencedContainer = "container:libsecurity_agent.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/libsecurity_agent_client.xcscheme b/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/libsecurity_agent_client.xcscheme
deleted file mode 100644
index 93a4202..0000000
--- a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/libsecurity_agent_client.xcscheme
+++ /dev/null
@@ -1,59 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   LastUpgradeVersion = "0500"
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "4CA1FEBD052A3C8100F22E42"
-               BuildableName = "libsecurity_agent_client.a"
-               BlueprintName = "libsecurity_agent_client"
-               ReferencedContainer = "container:libsecurity_agent.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/libsecurity_agent_server.xcscheme b/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/libsecurity_agent_server.xcscheme
deleted file mode 100644
index 658ebde..0000000
--- a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/libsecurity_agent_server.xcscheme
+++ /dev/null
@@ -1,59 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   LastUpgradeVersion = "0500"
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "4CA1FECF052A450F00F22E42"
-               BuildableName = "libsecurity_agent_server.a"
-               BlueprintName = "libsecurity_agent_server"
-               ReferencedContainer = "container:libsecurity_agent.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/world.xcscheme b/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/world.xcscheme
deleted file mode 100644
index d0447cc..0000000
--- a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/world.xcscheme
+++ /dev/null
@@ -1,59 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   LastUpgradeVersion = "0500"
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "40635B69052E4CBD0009891B"
-               BuildableName = "world"
-               BlueprintName = "world"
-               ReferencedContainer = "container:libsecurity_agent.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/xcschememanagement.plist b/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/xcschememanagement.plist
deleted file mode 100644
index 846eca8..0000000
--- a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/xcschememanagement.plist
+++ /dev/null
@@ -1,52 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1.0">
-<dict>
-	<key>SchemeUserState</key>
-	<dict>
-		<key>generate mig.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>7</integer>
-		</dict>
-		<key>libsecurity_agent_client.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>5</integer>
-		</dict>
-		<key>libsecurity_agent_server.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>6</integer>
-		</dict>
-		<key>world.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>4</integer>
-		</dict>
-	</dict>
-	<key>SuppressBuildableAutocreation</key>
-	<dict>
-		<key>40635B69052E4CBD0009891B</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-		<key>40E8FACC052E45D000A3D8D1</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-		<key>4CA1FEBD052A3C8100F22E42</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-		<key>4CA1FECF052A450F00F22E42</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-	</dict>
-</dict>
-</plist>
diff --git a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/generate mig.xcscheme b/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/generate mig.xcscheme
deleted file mode 100644
index 94aba39..0000000
--- a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/generate mig.xcscheme	
+++ /dev/null
@@ -1,59 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   LastUpgradeVersion = "0450"
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "40E8FACC052E45D000A3D8D1"
-               BuildableName = "generate mig"
-               BlueprintName = "generate mig"
-               ReferencedContainer = "container:libsecurity_agent.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/libsecurity_agent_client.xcscheme b/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/libsecurity_agent_client.xcscheme
deleted file mode 100644
index ed61bcd..0000000
--- a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/libsecurity_agent_client.xcscheme
+++ /dev/null
@@ -1,59 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   LastUpgradeVersion = "0450"
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "4CA1FEBD052A3C8100F22E42"
-               BuildableName = "libsecurity_agent_client.a"
-               BlueprintName = "libsecurity_agent_client"
-               ReferencedContainer = "container:libsecurity_agent.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/libsecurity_agent_server.xcscheme b/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/libsecurity_agent_server.xcscheme
deleted file mode 100644
index f99299d..0000000
--- a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/libsecurity_agent_server.xcscheme
+++ /dev/null
@@ -1,59 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   LastUpgradeVersion = "0450"
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "4CA1FECF052A450F00F22E42"
-               BuildableName = "libsecurity_agent_server.a"
-               BlueprintName = "libsecurity_agent_server"
-               ReferencedContainer = "container:libsecurity_agent.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/world.xcscheme b/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/world.xcscheme
deleted file mode 100644
index e279142..0000000
--- a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/world.xcscheme
+++ /dev/null
@@ -1,59 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   LastUpgradeVersion = "0450"
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "40635B69052E4CBD0009891B"
-               BuildableName = "world"
-               BlueprintName = "world"
-               ReferencedContainer = "container:libsecurity_agent.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/xcschememanagement.plist b/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/xcschememanagement.plist
deleted file mode 100644
index 846eca8..0000000
--- a/libsecurity_agent/libsecurity_agent.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/xcschememanagement.plist
+++ /dev/null
@@ -1,52 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1.0">
-<dict>
-	<key>SchemeUserState</key>
-	<dict>
-		<key>generate mig.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>7</integer>
-		</dict>
-		<key>libsecurity_agent_client.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>5</integer>
-		</dict>
-		<key>libsecurity_agent_server.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>6</integer>
-		</dict>
-		<key>world.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>4</integer>
-		</dict>
-	</dict>
-	<key>SuppressBuildableAutocreation</key>
-	<dict>
-		<key>40635B69052E4CBD0009891B</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-		<key>40E8FACC052E45D000A3D8D1</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-		<key>4CA1FEBD052A3C8100F22E42</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-		<key>4CA1FECF052A450F00F22E42</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-	</dict>
-</dict>
-</plist>
diff --git a/securityd.xcodeproj/project.pbxproj b/securityd.xcodeproj/project.pbxproj
index 64bc3cb..887d99e 100644
--- a/securityd.xcodeproj/project.pbxproj
+++ b/securityd.xcodeproj/project.pbxproj
@@ -23,7 +23,6 @@
 			buildConfigurationList = AA6D4B860E6F3B8D0050206D /* Build configuration list for PBXAggregateTarget "startup" */;
 			buildPhases = (
 				AA6D4B800E6F3B210050206D /* ShellScript */,
-				18132F7B148D6DD900CC58B2 /* Run Script (install /etc/authorization.merge) */,
 			);
 			dependencies = (
 			);
@@ -49,7 +48,6 @@
 		1865FFCF1475169A00FD79DF /* libsecurityd_client.a in Frameworks */ = {isa = PBXBuildFile; fileRef = 1865FFCE1475169A00FD79DF /* libsecurityd_client.a */; };
 		1865FFDC14751B0600FD79DF /* libobjc.dylib in Frameworks */ = {isa = PBXBuildFile; fileRef = 18B967B514731B78005A4D2E /* libobjc.dylib */; };
 		1865FFE114751C9100FD79DF /* libauto.dylib in Frameworks */ = {isa = PBXBuildFile; fileRef = 18B967B314731B69005A4D2E /* libauto.dylib */; };
-		1865FFEA1475208000FD79DF /* libsecurity_codesigning.a in Frameworks */ = {isa = PBXBuildFile; fileRef = 1865FFD0147516CF00FD79DF /* libsecurity_codesigning.a */; };
 		1865FFEB1475208B00FD79DF /* libsqlite3.dylib in Frameworks */ = {isa = PBXBuildFile; fileRef = 18B967B114731B55005A4D2E /* libsqlite3.dylib */; };
 		18B27134148C2C3D0087AE98 /* securityd_dtrace.h in Headers */ = {isa = PBXBuildFile; fileRef = 18B27133148C2C3D0087AE98 /* securityd_dtrace.h */; };
 		18B965CD14731612005A4D2E /* libsecurity_agent_client.a in Frameworks */ = {isa = PBXBuildFile; fileRef = 18B965BD147314BE005A4D2E /* libsecurity_agent_client.a */; };
@@ -61,6 +59,7 @@
 		18B965DA147319C8005A4D2E /* libsecurity_cdsa_client.a in Frameworks */ = {isa = PBXBuildFile; fileRef = 18B965D9147319C8005A4D2E /* libsecurity_cdsa_client.a */; };
 		18B965DC147319E5005A4D2E /* libsecurityd_server.a in Frameworks */ = {isa = PBXBuildFile; fileRef = 18B965DB147319E5005A4D2E /* libsecurityd_server.a */; };
 		18B965DD147319F6005A4D2E /* PCSC.framework in Frameworks */ = {isa = PBXBuildFile; fileRef = C276AAD60663E7A400B57276 /* PCSC.framework */; };
+		18CE013F17147A46008C042F /* libsecuritydservice_client.a in Frameworks */ = {isa = PBXBuildFile; fileRef = 18CE013E17147A46008C042F /* libsecuritydservice_client.a */; };
 		4E0BB2B40F79590300BBFEFA /* ccaudit_extensions.h in Headers */ = {isa = PBXBuildFile; fileRef = 4E0BB2B20F79590300BBFEFA /* ccaudit_extensions.h */; };
 		4E0BB2B50F79590300BBFEFA /* ccaudit_extensions.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 4E0BB2B30F79590300BBFEFA /* ccaudit_extensions.cpp */; };
 		AAC707230E6F4335003CC2B2 /* acl_keychain.h in Headers */ = {isa = PBXBuildFile; fileRef = 4C9264990534866F004B0E72 /* acl_keychain.h */; };
@@ -153,6 +152,13 @@
 /* End PBXBuildFile section */
 
 /* Begin PBXContainerItemProxy section */
+		1820DFC71714D3F800CA851F /* PBXContainerItemProxy */ = {
+			isa = PBXContainerItemProxy;
+			containerPortal = 80C7A77A167FF4FF001533BE /* securityd_service.xcodeproj */;
+			proxyType = 1;
+			remoteGlobalIDString = 1843240D1714797D00196B52;
+			remoteInfo = securitydservice_client;
+		};
 		18B965BC147314BE005A4D2E /* PBXContainerItemProxy */ = {
 			isa = PBXContainerItemProxy;
 			containerPortal = 18B965B0147314BE005A4D2E /* libsecurity_agent.xcodeproj */;
@@ -174,6 +180,34 @@
 			remoteGlobalIDString = 40635B69052E4CBD0009891B;
 			remoteInfo = world;
 		};
+		18CE013D17147A46008C042F /* PBXContainerItemProxy */ = {
+			isa = PBXContainerItemProxy;
+			containerPortal = 80C7A77A167FF4FF001533BE /* securityd_service.xcodeproj */;
+			proxyType = 2;
+			remoteGlobalIDString = 1843240E1714797D00196B52;
+			remoteInfo = securitydservice_client;
+		};
+		80C7A78C167FF586001533BE /* PBXContainerItemProxy */ = {
+			isa = PBXContainerItemProxy;
+			containerPortal = 80C7A77A167FF4FF001533BE /* securityd_service.xcodeproj */;
+			proxyType = 2;
+			remoteGlobalIDString = 189D4635166AC95C001D8533;
+			remoteInfo = securityd_service;
+		};
+		80C7A78E167FF586001533BE /* PBXContainerItemProxy */ = {
+			isa = PBXContainerItemProxy;
+			containerPortal = 80C7A77A167FF4FF001533BE /* securityd_service.xcodeproj */;
+			proxyType = 2;
+			remoteGlobalIDString = 189D465B166C15C1001D8533;
+			remoteInfo = securitydservicectrl;
+		};
+		80C7A790167FF9D3001533BE /* PBXContainerItemProxy */ = {
+			isa = PBXContainerItemProxy;
+			containerPortal = 80C7A77A167FF4FF001533BE /* securityd_service.xcodeproj */;
+			proxyType = 1;
+			remoteGlobalIDString = 189D4634166AC95C001D8533;
+			remoteInfo = securityd_service;
+		};
 		AA1A9FF80E71EF08003D0309 /* PBXContainerItemProxy */ = {
 			isa = PBXContainerItemProxy;
 			containerPortal = 4CA1FEB0052A3C5800F22E42 /* Project object */;
@@ -270,7 +304,6 @@
 		4C9264C20534866F004B0E72 /* transition.cpp */ = {isa = PBXFileReference; fileEncoding = 30; lastKnownFileType = sourcecode.cpp.cpp; path = transition.cpp; sourceTree = "<group>"; };
 		4CB5ACB906680AE000F359A9 /* child.cpp */ = {isa = PBXFileReference; fileEncoding = 30; lastKnownFileType = sourcecode.cpp.cpp; path = child.cpp; sourceTree = "<group>"; };
 		4CB5ACBA06680AE000F359A9 /* child.h */ = {isa = PBXFileReference; fileEncoding = 30; lastKnownFileType = sourcecode.c.h; path = child.h; sourceTree = "<group>"; };
-		4CD8CCBC055884E0006B3584 /* authorization.plist */ = {isa = PBXFileReference; fileEncoding = 30; lastKnownFileType = text.plist; path = authorization.plist; sourceTree = "<group>"; };
 		4CD8CCBD055884E0006B3584 /* CodeEquivalenceCandidates */ = {isa = PBXFileReference; fileEncoding = 30; lastKnownFileType = text; path = CodeEquivalenceCandidates; sourceTree = "<group>"; };
 		4CD8CCC0055884E0006B3584 /* startup.mk */ = {isa = PBXFileReference; fileEncoding = 30; lastKnownFileType = text; path = startup.mk; sourceTree = "<group>"; };
 		4CDD5018053765A900FEC36D /* CoreFoundation.framework */ = {isa = PBXFileReference; lastKnownFileType = wrapper.framework; name = CoreFoundation.framework; path = /System/Library/Frameworks/CoreFoundation.framework; sourceTree = "<absolute>"; };
@@ -280,6 +313,7 @@
 		4CE1878706FFC5D60079D235 /* securityd.1 */ = {isa = PBXFileReference; fileEncoding = 30; lastKnownFileType = text.man; path = securityd.1; sourceTree = "<group>"; };
 		4E0BB2B20F79590300BBFEFA /* ccaudit_extensions.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = ccaudit_extensions.h; sourceTree = "<group>"; };
 		4E0BB2B30F79590300BBFEFA /* ccaudit_extensions.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = ccaudit_extensions.cpp; sourceTree = "<group>"; };
+		80C7A77A167FF4FF001533BE /* securityd_service.xcodeproj */ = {isa = PBXFileReference; lastKnownFileType = "wrapper.pb-project"; name = securityd_service.xcodeproj; path = securityd_service/securityd_service.xcodeproj; sourceTree = "<group>"; };
 		AA6D4B8A0E6F3BB80050206D /* securityd */ = {isa = PBXFileReference; explicitFileType = "compiled.mach-o.executable"; includeInIndex = 0; path = securityd; sourceTree = BUILT_PRODUCTS_DIR; };
 		AAA020B10E367BB000A6F842 /* dtrace.mk */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = text; name = dtrace.mk; path = dtrace/dtrace.mk; sourceTree = "<group>"; };
 		C207646305EAD713004FEEDA /* kckey.cpp */ = {isa = PBXFileReference; fileEncoding = 30; lastKnownFileType = sourcecode.cpp.cpp; path = kckey.cpp; sourceTree = "<group>"; };
@@ -339,8 +373,8 @@
 			isa = PBXFrameworksBuildPhase;
 			buildActionMask = 2147483647;
 			files = (
+				18CE013F17147A46008C042F /* libsecuritydservice_client.a in Frameworks */,
 				1865FFEB1475208B00FD79DF /* libsqlite3.dylib in Frameworks */,
-				1865FFEA1475208000FD79DF /* libsecurity_codesigning.a in Frameworks */,
 				1865FFE114751C9100FD79DF /* libauto.dylib in Frameworks */,
 				1865FFDC14751B0600FD79DF /* libobjc.dylib in Frameworks */,
 				18B965CD14731612005A4D2E /* libsecurity_agent_client.a in Frameworks */,
@@ -401,6 +435,7 @@
 		4CA1FEAC052A3C5800F22E42 = {
 			isa = PBXGroup;
 			children = (
+				80C7A77A167FF4FF001533BE /* securityd_service.xcodeproj */,
 				18B965B0147314BE005A4D2E /* libsecurity_agent.xcodeproj */,
 				1865FF9F1474FB1100FD79DF /* config */,
 				4C9264970534866F004B0E72 /* src */,
@@ -427,7 +462,6 @@
 			isa = PBXGroup;
 			children = (
 				C26FB2650BC2C3A300D8EFC8 /* com.apple.securityd.plist */,
-				4CD8CCBC055884E0006B3584 /* authorization.plist */,
 				4CD8CCBD055884E0006B3584 /* CodeEquivalenceCandidates */,
 				4CD8CCC0055884E0006B3584 /* startup.mk */,
 			);
@@ -467,6 +501,16 @@
 			path = doc;
 			sourceTree = "<group>";
 		};
+		80C7A788167FF586001533BE /* Products */ = {
+			isa = PBXGroup;
+			children = (
+				80C7A78D167FF586001533BE /* securityd_service */,
+				80C7A78F167FF586001533BE /* securitydservicectrl */,
+				18CE013E17147A46008C042F /* libsecuritydservice_client.a */,
+			);
+			name = Products;
+			sourceTree = "<group>";
+		};
 		C209B39106ADBB19007B9E6D /* mig */ = {
 			isa = PBXGroup;
 			children = (
@@ -761,6 +805,8 @@
 			buildRules = (
 			);
 			dependencies = (
+				1820DFC81714D3F800CA851F /* PBXTargetDependency */,
+				80C7A791167FF9D3001533BE /* PBXTargetDependency */,
 				18B967B914731BB1005A4D2E /* PBXTargetDependency */,
 				AA1AA00F0E71F2ED003D0309 /* PBXTargetDependency */,
 				AA1AA0110E71F2F7003D0309 /* PBXTargetDependency */,
@@ -776,6 +822,8 @@
 /* Begin PBXProject section */
 		4CA1FEB0052A3C5800F22E42 /* Project object */ = {
 			isa = PBXProject;
+			attributes = {
+			};
 			buildConfigurationList = C27AD4AD0987FCF4001272E0 /* Build configuration list for PBXProject "securityd" */;
 			compatibilityVersion = "Xcode 3.1";
 			developmentRegion = English;
@@ -794,6 +842,10 @@
 					ProductGroup = 18B965B1147314BE005A4D2E /* Products */;
 					ProjectRef = 18B965B0147314BE005A4D2E /* libsecurity_agent.xcodeproj */;
 				},
+				{
+					ProductGroup = 80C7A788167FF586001533BE /* Products */;
+					ProjectRef = 80C7A77A167FF4FF001533BE /* securityd_service.xcodeproj */;
+				},
 			);
 			projectRoot = "";
 			targets = (
@@ -820,23 +872,30 @@
 			remoteRef = 18B965C0147314BE005A4D2E /* PBXContainerItemProxy */;
 			sourceTree = BUILT_PRODUCTS_DIR;
 		};
+		18CE013E17147A46008C042F /* libsecuritydservice_client.a */ = {
+			isa = PBXReferenceProxy;
+			fileType = archive.ar;
+			path = libsecuritydservice_client.a;
+			remoteRef = 18CE013D17147A46008C042F /* PBXContainerItemProxy */;
+			sourceTree = BUILT_PRODUCTS_DIR;
+		};
+		80C7A78D167FF586001533BE /* securityd_service */ = {
+			isa = PBXReferenceProxy;
+			fileType = "compiled.mach-o.executable";
+			path = securityd_service;
+			remoteRef = 80C7A78C167FF586001533BE /* PBXContainerItemProxy */;
+			sourceTree = BUILT_PRODUCTS_DIR;
+		};
+		80C7A78F167FF586001533BE /* securitydservicectrl */ = {
+			isa = PBXReferenceProxy;
+			fileType = "compiled.mach-o.executable";
+			path = securitydservicectrl;
+			remoteRef = 80C7A78E167FF586001533BE /* PBXContainerItemProxy */;
+			sourceTree = BUILT_PRODUCTS_DIR;
+		};
 /* End PBXReferenceProxy section */
 
 /* Begin PBXShellScriptBuildPhase section */
-		18132F7B148D6DD900CC58B2 /* Run Script (install /etc/authorization.merge) */ = {
-			isa = PBXShellScriptBuildPhase;
-			buildActionMask = 2147483647;
-			files = (
-			);
-			inputPaths = (
-			);
-			name = "Run Script (install /etc/authorization.merge)";
-			outputPaths = (
-			);
-			runOnlyForDeploymentPostprocessing = 0;
-			shellPath = /bin/sh;
-			shellScript = "${SRCROOT}/etc/authmerge.sh";
-		};
 		AA6D4B790E6F3A910050206D /* ShellScript */ = {
 			isa = PBXShellScriptBuildPhase;
 			buildActionMask = 2147483647;
@@ -934,11 +993,21 @@
 /* End PBXSourcesBuildPhase section */
 
 /* Begin PBXTargetDependency section */
+		1820DFC81714D3F800CA851F /* PBXTargetDependency */ = {
+			isa = PBXTargetDependency;
+			name = securitydservice_client;
+			targetProxy = 1820DFC71714D3F800CA851F /* PBXContainerItemProxy */;
+		};
 		18B967B914731BB1005A4D2E /* PBXTargetDependency */ = {
 			isa = PBXTargetDependency;
 			name = world;
 			targetProxy = 18B967B814731BB1005A4D2E /* PBXContainerItemProxy */;
 		};
+		80C7A791167FF9D3001533BE /* PBXTargetDependency */ = {
+			isa = PBXTargetDependency;
+			name = securityd_service;
+			targetProxy = 80C7A790167FF9D3001533BE /* PBXContainerItemProxy */;
+		};
 		AA1A9FF90E71EF08003D0309 /* PBXTargetDependency */ = {
 			isa = PBXTargetDependency;
 			target = C26CF02C0CD934260094DD9D /* DTrace */;
diff --git a/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/DTrace.xcscheme b/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/DTrace.xcscheme
deleted file mode 100644
index d5047fe..0000000
--- a/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/DTrace.xcscheme
+++ /dev/null
@@ -1,59 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   LastUpgradeVersion = "0500"
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "C26CF02C0CD934260094DD9D"
-               BuildableName = "DTrace"
-               BlueprintName = "DTrace"
-               ReferencedContainer = "container:securityd.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/mig.xcscheme b/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/mig.xcscheme
deleted file mode 100644
index c786252..0000000
--- a/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/mig.xcscheme
+++ /dev/null
@@ -1,59 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   LastUpgradeVersion = "0500"
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "AA6D4B7A0E6F3A910050206D"
-               BuildableName = "mig"
-               BlueprintName = "mig"
-               ReferencedContainer = "container:securityd.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/securityd.xcscheme b/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/securityd.xcscheme
deleted file mode 100644
index 08af7ac..0000000
--- a/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/securityd.xcscheme
+++ /dev/null
@@ -1,86 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   LastUpgradeVersion = "0500"
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "AA6D4B890E6F3BB80050206D"
-               BuildableName = "securityd"
-               BlueprintName = "securityd"
-               ReferencedContainer = "container:securityd.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-      <MacroExpansion>
-         <BuildableReference
-            BuildableIdentifier = "primary"
-            BlueprintIdentifier = "AA6D4B890E6F3BB80050206D"
-            BuildableName = "securityd"
-            BlueprintName = "securityd"
-            ReferencedContainer = "container:securityd.xcodeproj">
-         </BuildableReference>
-      </MacroExpansion>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <BuildableProductRunnable>
-         <BuildableReference
-            BuildableIdentifier = "primary"
-            BlueprintIdentifier = "AA6D4B890E6F3BB80050206D"
-            BuildableName = "securityd"
-            BlueprintName = "securityd"
-            ReferencedContainer = "container:securityd.xcodeproj">
-         </BuildableReference>
-      </BuildableProductRunnable>
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-      <BuildableProductRunnable>
-         <BuildableReference
-            BuildableIdentifier = "primary"
-            BlueprintIdentifier = "AA6D4B890E6F3BB80050206D"
-            BuildableName = "securityd"
-            BlueprintName = "securityd"
-            ReferencedContainer = "container:securityd.xcodeproj">
-         </BuildableReference>
-      </BuildableProductRunnable>
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/startup.xcscheme b/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/startup.xcscheme
deleted file mode 100644
index c32c278..0000000
--- a/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/startup.xcscheme
+++ /dev/null
@@ -1,59 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   LastUpgradeVersion = "0500"
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "AA6D4B810E6F3B210050206D"
-               BuildableName = "startup"
-               BlueprintName = "startup"
-               ReferencedContainer = "container:securityd.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/xcschememanagement.plist b/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/xcschememanagement.plist
deleted file mode 100644
index c757875..0000000
--- a/securityd.xcodeproj/xcuserdata/keith.xcuserdatad/xcschemes/xcschememanagement.plist
+++ /dev/null
@@ -1,52 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1.0">
-<dict>
-	<key>SchemeUserState</key>
-	<dict>
-		<key>DTrace.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>1</integer>
-		</dict>
-		<key>mig.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>2</integer>
-		</dict>
-		<key>securityd.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>0</integer>
-		</dict>
-		<key>startup.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>3</integer>
-		</dict>
-	</dict>
-	<key>SuppressBuildableAutocreation</key>
-	<dict>
-		<key>AA6D4B7A0E6F3A910050206D</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-		<key>AA6D4B810E6F3B210050206D</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-		<key>AA6D4B890E6F3BB80050206D</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-		<key>C26CF02C0CD934260094DD9D</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-	</dict>
-</dict>
-</plist>
diff --git a/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcdebugger/Breakpoints.xcbkptlist b/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcdebugger/Breakpoints.xcbkptlist
deleted file mode 100644
index 05301bc..0000000
--- a/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcdebugger/Breakpoints.xcbkptlist
+++ /dev/null
@@ -1,5 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Bucket
-   type = "1"
-   version = "1.0">
-</Bucket>
diff --git a/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/DTrace.xcscheme b/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/DTrace.xcscheme
deleted file mode 100644
index 8e88040..0000000
--- a/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/DTrace.xcscheme
+++ /dev/null
@@ -1,58 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "C26CF02C0CD934260094DD9D"
-               BuildableName = "DTrace"
-               BlueprintName = "DTrace"
-               ReferencedContainer = "container:securityd.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/mig.xcscheme b/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/mig.xcscheme
deleted file mode 100644
index f0b1212..0000000
--- a/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/mig.xcscheme
+++ /dev/null
@@ -1,58 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "AA6D4B7A0E6F3A910050206D"
-               BuildableName = "mig"
-               BlueprintName = "mig"
-               ReferencedContainer = "container:securityd.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/securityd.xcscheme b/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/securityd.xcscheme
deleted file mode 100644
index 8bd2c8e..0000000
--- a/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/securityd.xcscheme
+++ /dev/null
@@ -1,85 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "AA6D4B890E6F3BB80050206D"
-               BuildableName = "securityd"
-               BlueprintName = "securityd"
-               ReferencedContainer = "container:securityd.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-      <MacroExpansion>
-         <BuildableReference
-            BuildableIdentifier = "primary"
-            BlueprintIdentifier = "AA6D4B890E6F3BB80050206D"
-            BuildableName = "securityd"
-            BlueprintName = "securityd"
-            ReferencedContainer = "container:securityd.xcodeproj">
-         </BuildableReference>
-      </MacroExpansion>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <BuildableProductRunnable>
-         <BuildableReference
-            BuildableIdentifier = "primary"
-            BlueprintIdentifier = "AA6D4B890E6F3BB80050206D"
-            BuildableName = "securityd"
-            BlueprintName = "securityd"
-            ReferencedContainer = "container:securityd.xcodeproj">
-         </BuildableReference>
-      </BuildableProductRunnable>
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-      <BuildableProductRunnable>
-         <BuildableReference
-            BuildableIdentifier = "primary"
-            BlueprintIdentifier = "AA6D4B890E6F3BB80050206D"
-            BuildableName = "securityd"
-            BlueprintName = "securityd"
-            ReferencedContainer = "container:securityd.xcodeproj">
-         </BuildableReference>
-      </BuildableProductRunnable>
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/startup.xcscheme b/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/startup.xcscheme
deleted file mode 100644
index e8a0b01..0000000
--- a/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/startup.xcscheme
+++ /dev/null
@@ -1,58 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Scheme
-   version = "1.3">
-   <BuildAction
-      parallelizeBuildables = "YES"
-      buildImplicitDependencies = "YES">
-      <BuildActionEntries>
-         <BuildActionEntry
-            buildForTesting = "YES"
-            buildForRunning = "YES"
-            buildForProfiling = "YES"
-            buildForArchiving = "YES"
-            buildForAnalyzing = "YES">
-            <BuildableReference
-               BuildableIdentifier = "primary"
-               BlueprintIdentifier = "AA6D4B810E6F3B210050206D"
-               BuildableName = "startup"
-               BlueprintName = "startup"
-               ReferencedContainer = "container:securityd.xcodeproj">
-            </BuildableReference>
-         </BuildActionEntry>
-      </BuildActionEntries>
-   </BuildAction>
-   <TestAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      buildConfiguration = "Debug">
-      <Testables>
-      </Testables>
-   </TestAction>
-   <LaunchAction
-      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
-      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
-      launchStyle = "0"
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Debug"
-      ignoresPersistentStateOnLaunch = "NO"
-      debugDocumentVersioning = "YES"
-      allowLocationSimulation = "YES">
-      <AdditionalOptions>
-      </AdditionalOptions>
-   </LaunchAction>
-   <ProfileAction
-      shouldUseLaunchSchemeArgsEnv = "YES"
-      savedToolIdentifier = ""
-      useCustomWorkingDirectory = "NO"
-      buildConfiguration = "Release"
-      debugDocumentVersioning = "YES">
-   </ProfileAction>
-   <AnalyzeAction
-      buildConfiguration = "Debug">
-   </AnalyzeAction>
-   <ArchiveAction
-      buildConfiguration = "Release"
-      revealArchiveInOrganizer = "YES">
-   </ArchiveAction>
-</Scheme>
diff --git a/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/xcschememanagement.plist b/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/xcschememanagement.plist
deleted file mode 100644
index c757875..0000000
--- a/securityd.xcodeproj/xcuserdata/keith_henrickson.xcuserdatad/xcschemes/xcschememanagement.plist
+++ /dev/null
@@ -1,52 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1.0">
-<dict>
-	<key>SchemeUserState</key>
-	<dict>
-		<key>DTrace.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>1</integer>
-		</dict>
-		<key>mig.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>2</integer>
-		</dict>
-		<key>securityd.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>0</integer>
-		</dict>
-		<key>startup.xcscheme</key>
-		<dict>
-			<key>orderHint</key>
-			<integer>3</integer>
-		</dict>
-	</dict>
-	<key>SuppressBuildableAutocreation</key>
-	<dict>
-		<key>AA6D4B7A0E6F3A910050206D</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-		<key>AA6D4B810E6F3B210050206D</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-		<key>AA6D4B890E6F3BB80050206D</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-		<key>C26CF02C0CD934260094DD9D</key>
-		<dict>
-			<key>primary</key>
-			<true/>
-		</dict>
-	</dict>
-</dict>
-</plist>
diff --git a/securityd_service/KeyStore/AppleKeyStoreEvents.h b/securityd_service/KeyStore/AppleKeyStoreEvents.h
new file mode 100644
index 0000000..50b7019
--- /dev/null
+++ b/securityd_service/KeyStore/AppleKeyStoreEvents.h
@@ -0,0 +1,9 @@
+/* Copyright (c) 2013 Apple Inc. All rights reserved. */
+
+#ifndef __APPLEKEYSTORE_EVENTS_H
+#define __APPLEKEYSTORE_EVENTS_H
+
+#define kAppleKeyStoreLockStatusNotificationID "com.apple.keystore.lockstatus"
+#define kAppleKeyStoreFirstUnlockNotificationID "com.apple.keystore.firstunlock"
+
+#endif // __APPLEKEYSTORE_EVENTS_H
diff --git a/securityd_service/KeyStore/KeyStore-Info.plist b/securityd_service/KeyStore/KeyStore-Info.plist
new file mode 100644
index 0000000..505cb03
--- /dev/null
+++ b/securityd_service/KeyStore/KeyStore-Info.plist
@@ -0,0 +1,28 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>CFBundleDevelopmentRegion</key>
+	<string>English</string>
+	<key>CFBundleExecutable</key>
+	<string>${EXECUTABLE_NAME}</string>
+	<key>CFBundleIdentifier</key>
+	<string>com.apple.${PRODUCT_NAME:rfc1034identifier}</string>
+	<key>CFBundleInfoDictionaryVersion</key>
+	<string>6.0</string>
+	<key>CFBundleName</key>
+	<string>${PRODUCT_NAME}</string>
+	<key>CFBundlePackageType</key>
+	<string>BNDL</string>
+	<key>CFBundleShortVersionString</key>
+	<string>1.0</string>
+	<key>CFBundleSignature</key>
+	<string>????</string>
+	<key>CFBundleVersion</key>
+	<string>1</string>
+	<key>NSHumanReadableCopyright</key>
+	<string>Copyright © 2013 Apple. All rights reserved.</string>
+	<key>XPCEventModuleInitializer</key>
+	<string>init_keystore_events</string>
+</dict>
+</plist>
diff --git a/securityd_service/KeyStore/KeyStoreEvents.c b/securityd_service/KeyStore/KeyStoreEvents.c
new file mode 100644
index 0000000..0ca8985
--- /dev/null
+++ b/securityd_service/KeyStore/KeyStoreEvents.c
@@ -0,0 +1,54 @@
+/* Copyright (c) 2013 Apple Inc. All rights reserved. */
+
+#include "AppleKeyStoreEvents.h"
+
+#include <unistd.h>
+#include <notify.h>
+#include <syslog.h>
+#include <AssertMacros.h>
+#include <IOKit/IOKitLib.h>
+#include <Kernel/IOKit/crypto/AppleKeyStoreDefs.h>
+#include <xpc/event_private.h>
+
+static void aksNotificationCallback(void *refcon,io_service_t service, natural_t messageType, void *messageArgument)
+{
+	if(messageType == kAppleKeyStoreLockStateChangeMessage) {
+//        syslog(LOG_ERR, "KeyStoreNotifier - %s posting notification: %s\n", __func__, kAppleKeyStoreLockStatusNotificationID);
+		notify_post(kAppleKeyStoreLockStatusNotificationID);
+	} else if (messageType == kAppleKeyStoreFirstUnlockMessage) {
+//        syslog(LOG_ERR, "KeyStoreNotifier - %s posting notification: %s\n", __func__, kAppleKeyStoreFirstUnlockNotificationID);
+		notify_post(kAppleKeyStoreFirstUnlockNotificationID);
+    }
+}
+
+static void start(dispatch_queue_t queue)
+{
+	IOReturn result;
+	io_service_t aksService = IO_OBJECT_NULL;
+	IONotificationPortRef aksNotifyPort = IO_OBJECT_NULL;
+	io_object_t notification = IO_OBJECT_NULL;
+
+	aksService = IOServiceGetMatchingService(kIOMasterPortDefault, IOServiceMatching(kAppleKeyStoreServiceName));
+	require_action(aksService, cleanup, syslog(LOG_ERR, "KeyStoreNotifier - Can't find %s service", kAppleKeyStoreServiceName));
+
+	aksNotifyPort = IONotificationPortCreate(kIOMasterPortDefault);
+	require_action(aksNotifyPort, cleanup, syslog(LOG_ERR, "KeyStoreNotifier - Can't create notification port"));
+
+    IONotificationPortSetDispatchQueue(aksNotifyPort, queue);
+
+	result = IOServiceAddInterestNotification(aksNotifyPort, aksService, kIOGeneralInterest, aksNotificationCallback, NULL, &notification);
+	require_noerr_action(result, cleanup, syslog(LOG_ERR, "KeyStoreNotifier - Can't register for notification: %08x", result));
+	return;
+
+cleanup:
+	if (aksNotifyPort) IONotificationPortDestroy(aksNotifyPort);
+    if (notification) IOObjectRelease(notification);
+    if (aksService) IOObjectRelease(aksService);
+	return;
+}
+
+void
+init_keystore_events(xpc_event_module_t module)
+{
+    start(xpc_event_module_get_queue(module));
+}
diff --git a/securityd_service/securityd_service.xcodeproj/project.pbxproj b/securityd_service/securityd_service.xcodeproj/project.pbxproj
new file mode 100644
index 0000000..b31f75c
--- /dev/null
+++ b/securityd_service/securityd_service.xcodeproj/project.pbxproj
@@ -0,0 +1,634 @@
+// !$*UTF8*$!
+{
+	archiveVersion = 1;
+	classes = {
+	};
+	objectVersion = 46;
+	objects = {
+
+/* Begin PBXBuildFile section */
+		189D4639166AC95C001D8533 /* main.c in Sources */ = {isa = PBXBuildFile; fileRef = 189D4638166AC95C001D8533 /* main.c */; };
+		189D4644166BFDCE001D8533 /* Security.framework in Frameworks */ = {isa = PBXBuildFile; fileRef = 189D4643166BFDCE001D8533 /* Security.framework */; };
+		189D4647166C03CD001D8533 /* CoreFoundation.framework in Frameworks */ = {isa = PBXBuildFile; fileRef = 189D4646166C03CD001D8533 /* CoreFoundation.framework */; };
+		189D4649166C11A6001D8533 /* IOKit.framework in Frameworks */ = {isa = PBXBuildFile; fileRef = 189D4648166C11A6001D8533 /* IOKit.framework */; };
+		189D465E166C15C1001D8533 /* main.c in Sources */ = {isa = PBXBuildFile; fileRef = 189D465D166C15C1001D8533 /* main.c */; };
+		189D4667166C1809001D8533 /* com.apple.securityd_service.plist in Copy launchd plist */ = {isa = PBXBuildFile; fileRef = 189D4666166C171B001D8533 /* com.apple.securityd_service.plist */; };
+		189D4668166C19CF001D8533 /* CoreFoundation.framework in Frameworks */ = {isa = PBXBuildFile; fileRef = 189D4646166C03CD001D8533 /* CoreFoundation.framework */; };
+		18CD2B721714D48900633846 /* securityd_service_client.c in Sources */ = {isa = PBXBuildFile; fileRef = 18CD2B711714D48300633846 /* securityd_service_client.c */; };
+		18CD2B791715CEC800633846 /* libaks.a in Frameworks */ = {isa = PBXBuildFile; fileRef = 18CD2B781715CEC800633846 /* libaks.a */; };
+		18D7BBD2171639F0008F80B3 /* com.apple.securitydservice.sb in Copy sandbox profile */ = {isa = PBXBuildFile; fileRef = 18D7BBD0171638B9008F80B3 /* com.apple.securitydservice.sb */; };
+		18F4808F17497521009724DB /* CoreFoundation.framework in Frameworks */ = {isa = PBXBuildFile; fileRef = 189D4646166C03CD001D8533 /* CoreFoundation.framework */; };
+		18F4809D174976DA009724DB /* KeyStoreEvents.c in Sources */ = {isa = PBXBuildFile; fileRef = 18F4809C174976D2009724DB /* KeyStoreEvents.c */; };
+		18F4809E1749774F009724DB /* IOKit.framework in Frameworks */ = {isa = PBXBuildFile; fileRef = 189D4648166C11A6001D8533 /* IOKit.framework */; };
+		18F480A217498ADD009724DB /* AppleKeyStoreEvents.h in Headers */ = {isa = PBXBuildFile; fileRef = 18F4809F17498963009724DB /* AppleKeyStoreEvents.h */; settings = {ATTRIBUTES = (Public, ); }; };
+		80C312B6169BA50700DA5DC6 /* Security.framework in Frameworks */ = {isa = PBXBuildFile; fileRef = 189D4643166BFDCE001D8533 /* Security.framework */; };
+/* End PBXBuildFile section */
+
+/* Begin PBXContainerItemProxy section */
+		189D4664166C166E001D8533 /* PBXContainerItemProxy */ = {
+			isa = PBXContainerItemProxy;
+			containerPortal = 189D462D166AC95C001D8533 /* Project object */;
+			proxyType = 1;
+			remoteGlobalIDString = 189D465A166C15C1001D8533;
+			remoteInfo = securitydservicectrl;
+		};
+		18F4809A174975FF009724DB /* PBXContainerItemProxy */ = {
+			isa = PBXContainerItemProxy;
+			containerPortal = 189D462D166AC95C001D8533 /* Project object */;
+			proxyType = 1;
+			remoteGlobalIDString = 18F4808D17497521009724DB;
+			remoteInfo = KeyStore;
+		};
+/* End PBXContainerItemProxy section */
+
+/* Begin PBXCopyFilesBuildPhase section */
+		189D4633166AC95C001D8533 /* Copy launchd plist */ = {
+			isa = PBXCopyFilesBuildPhase;
+			buildActionMask = 2147483647;
+			dstPath = /System/Library/LaunchDaemons;
+			dstSubfolderSpec = 0;
+			files = (
+				189D4667166C1809001D8533 /* com.apple.securityd_service.plist in Copy launchd plist */,
+			);
+			name = "Copy launchd plist";
+			runOnlyForDeploymentPostprocessing = 1;
+		};
+		189D4659166C15C1001D8533 /* CopyFiles */ = {
+			isa = PBXCopyFilesBuildPhase;
+			buildActionMask = 2147483647;
+			dstPath = /usr/share/man/man1/;
+			dstSubfolderSpec = 0;
+			files = (
+			);
+			runOnlyForDeploymentPostprocessing = 1;
+		};
+		18D7BBD1171639CE008F80B3 /* Copy sandbox profile */ = {
+			isa = PBXCopyFilesBuildPhase;
+			buildActionMask = 8;
+			dstPath = "$(SYSTEM_LIBRARY_DIR)/Sandbox/Profiles";
+			dstSubfolderSpec = 0;
+			files = (
+				18D7BBD2171639F0008F80B3 /* com.apple.securitydservice.sb in Copy sandbox profile */,
+			);
+			name = "Copy sandbox profile";
+			runOnlyForDeploymentPostprocessing = 1;
+		};
+/* End PBXCopyFilesBuildPhase section */
+
+/* Begin PBXFileReference section */
+		1843240E1714797D00196B52 /* libsecuritydservice_client.a */ = {isa = PBXFileReference; explicitFileType = archive.ar; includeInIndex = 0; path = libsecuritydservice_client.a; sourceTree = BUILT_PRODUCTS_DIR; };
+		189D4635166AC95C001D8533 /* securityd_service */ = {isa = PBXFileReference; explicitFileType = "compiled.mach-o.executable"; includeInIndex = 0; path = securityd_service; sourceTree = BUILT_PRODUCTS_DIR; };
+		189D4638166AC95C001D8533 /* main.c */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.c; path = main.c; sourceTree = "<group>"; };
+		189D4641166AC9B6001D8533 /* securityd_service.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; path = securityd_service.h; sourceTree = "<group>"; };
+		189D4642166BD755001D8533 /* service.entitlements */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = text.xml; path = service.entitlements; sourceTree = "<group>"; };
+		189D4643166BFDCE001D8533 /* Security.framework */ = {isa = PBXFileReference; lastKnownFileType = wrapper.framework; name = Security.framework; path = /System/Library/Frameworks/Security.framework; sourceTree = "<absolute>"; };
+		189D4646166C03CD001D8533 /* CoreFoundation.framework */ = {isa = PBXFileReference; lastKnownFileType = wrapper.framework; name = CoreFoundation.framework; path = /System/Library/Frameworks/CoreFoundation.framework; sourceTree = "<absolute>"; };
+		189D4648166C11A6001D8533 /* IOKit.framework */ = {isa = PBXFileReference; lastKnownFileType = wrapper.framework; name = IOKit.framework; path = /System/Library/Frameworks/IOKit.framework; sourceTree = "<absolute>"; };
+		189D465B166C15C1001D8533 /* securitydservicectrl */ = {isa = PBXFileReference; explicitFileType = "compiled.mach-o.executable"; includeInIndex = 0; path = securitydservicectrl; sourceTree = BUILT_PRODUCTS_DIR; };
+		189D465D166C15C1001D8533 /* main.c */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.c; path = main.c; sourceTree = "<group>"; };
+		189D4666166C171B001D8533 /* com.apple.securityd_service.plist */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = text.plist.xml; path = com.apple.securityd_service.plist; sourceTree = "<group>"; };
+		18CD2B711714D48300633846 /* securityd_service_client.c */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.c; name = securityd_service_client.c; path = securityd_service/securityd_service_client.c; sourceTree = "<group>"; };
+		18CD2B731714D4B300633846 /* securityd_service_client.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; name = securityd_service_client.h; path = securityd_service/securityd_service_client.h; sourceTree = "<group>"; };
+		18CD2B781715CEC800633846 /* libaks.a */ = {isa = PBXFileReference; lastKnownFileType = archive.ar; name = libaks.a; path = /usr/local/lib/libaks.a; sourceTree = "<absolute>"; };
+		18D7BBD0171638B9008F80B3 /* com.apple.securitydservice.sb */ = {isa = PBXFileReference; lastKnownFileType = text; path = com.apple.securitydservice.sb; sourceTree = "<group>"; };
+		18F4808E17497521009724DB /* com.apple.KeyStore.plugin */ = {isa = PBXFileReference; explicitFileType = wrapper.cfbundle; includeInIndex = 0; path = com.apple.KeyStore.plugin; sourceTree = BUILT_PRODUCTS_DIR; };
+		18F4809217497521009724DB /* KeyStore-Info.plist */ = {isa = PBXFileReference; lastKnownFileType = text.plist.xml; path = "KeyStore-Info.plist"; sourceTree = "<group>"; };
+		18F4809C174976D2009724DB /* KeyStoreEvents.c */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.c; path = KeyStoreEvents.c; sourceTree = "<group>"; };
+		18F4809F17498963009724DB /* AppleKeyStoreEvents.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; path = AppleKeyStoreEvents.h; sourceTree = "<group>"; };
+/* End PBXFileReference section */
+
+/* Begin PBXFrameworksBuildPhase section */
+		1843240B1714797D00196B52 /* Frameworks */ = {
+			isa = PBXFrameworksBuildPhase;
+			buildActionMask = 2147483647;
+			files = (
+			);
+			runOnlyForDeploymentPostprocessing = 0;
+		};
+		189D4632166AC95C001D8533 /* Frameworks */ = {
+			isa = PBXFrameworksBuildPhase;
+			buildActionMask = 2147483647;
+			files = (
+				18CD2B791715CEC800633846 /* libaks.a in Frameworks */,
+				189D4649166C11A6001D8533 /* IOKit.framework in Frameworks */,
+				189D4647166C03CD001D8533 /* CoreFoundation.framework in Frameworks */,
+				189D4644166BFDCE001D8533 /* Security.framework in Frameworks */,
+			);
+			runOnlyForDeploymentPostprocessing = 0;
+		};
+		189D4658166C15C1001D8533 /* Frameworks */ = {
+			isa = PBXFrameworksBuildPhase;
+			buildActionMask = 2147483647;
+			files = (
+				80C312B6169BA50700DA5DC6 /* Security.framework in Frameworks */,
+				189D4668166C19CF001D8533 /* CoreFoundation.framework in Frameworks */,
+			);
+			runOnlyForDeploymentPostprocessing = 0;
+		};
+		18F4808B17497521009724DB /* Frameworks */ = {
+			isa = PBXFrameworksBuildPhase;
+			buildActionMask = 2147483647;
+			files = (
+				18F4809E1749774F009724DB /* IOKit.framework in Frameworks */,
+				18F4808F17497521009724DB /* CoreFoundation.framework in Frameworks */,
+			);
+			runOnlyForDeploymentPostprocessing = 0;
+		};
+/* End PBXFrameworksBuildPhase section */
+
+/* Begin PBXGroup section */
+		189D462C166AC95C001D8533 = {
+			isa = PBXGroup;
+			children = (
+				189D4637166AC95C001D8533 /* securityd_service */,
+				18CD2B3B1714D43C00633846 /* securityd_service_client */,
+				189D465C166C15C1001D8533 /* securitydservicectrl */,
+				18F4809017497521009724DB /* KeyStore */,
+				189D4645166BFDD4001D8533 /* Frameworks */,
+				189D4636166AC95C001D8533 /* Products */,
+			);
+			sourceTree = "<group>";
+		};
+		189D4636166AC95C001D8533 /* Products */ = {
+			isa = PBXGroup;
+			children = (
+				189D4635166AC95C001D8533 /* securityd_service */,
+				189D465B166C15C1001D8533 /* securitydservicectrl */,
+				1843240E1714797D00196B52 /* libsecuritydservice_client.a */,
+				18F4808E17497521009724DB /* com.apple.KeyStore.plugin */,
+			);
+			name = Products;
+			sourceTree = "<group>";
+		};
+		189D4637166AC95C001D8533 /* securityd_service */ = {
+			isa = PBXGroup;
+			children = (
+				189D4638166AC95C001D8533 /* main.c */,
+				189D4641166AC9B6001D8533 /* securityd_service.h */,
+				189D4642166BD755001D8533 /* service.entitlements */,
+				189D4666166C171B001D8533 /* com.apple.securityd_service.plist */,
+				18D7BBD0171638B9008F80B3 /* com.apple.securitydservice.sb */,
+			);
+			path = securityd_service;
+			sourceTree = "<group>";
+		};
+		189D4645166BFDD4001D8533 /* Frameworks */ = {
+			isa = PBXGroup;
+			children = (
+				18CD2B781715CEC800633846 /* libaks.a */,
+				189D4648166C11A6001D8533 /* IOKit.framework */,
+				189D4646166C03CD001D8533 /* CoreFoundation.framework */,
+				189D4643166BFDCE001D8533 /* Security.framework */,
+			);
+			name = Frameworks;
+			path = /Volumes/Data/wade/src/projects/securityd_service;
+			sourceTree = "<absolute>";
+		};
+		189D465C166C15C1001D8533 /* securitydservicectrl */ = {
+			isa = PBXGroup;
+			children = (
+				189D465D166C15C1001D8533 /* main.c */,
+			);
+			path = securitydservicectrl;
+			sourceTree = "<group>";
+		};
+		18CD2B3B1714D43C00633846 /* securityd_service_client */ = {
+			isa = PBXGroup;
+			children = (
+				18CD2B711714D48300633846 /* securityd_service_client.c */,
+				18CD2B731714D4B300633846 /* securityd_service_client.h */,
+			);
+			name = securityd_service_client;
+			sourceTree = "<group>";
+		};
+		18F4809017497521009724DB /* KeyStore */ = {
+			isa = PBXGroup;
+			children = (
+				18F4809117497521009724DB /* Supporting Files */,
+				18F4809C174976D2009724DB /* KeyStoreEvents.c */,
+				18F4809F17498963009724DB /* AppleKeyStoreEvents.h */,
+			);
+			path = KeyStore;
+			sourceTree = "<group>";
+		};
+		18F4809117497521009724DB /* Supporting Files */ = {
+			isa = PBXGroup;
+			children = (
+				18F4809217497521009724DB /* KeyStore-Info.plist */,
+			);
+			name = "Supporting Files";
+			sourceTree = "<group>";
+		};
+/* End PBXGroup section */
+
+/* Begin PBXHeadersBuildPhase section */
+		1843240C1714797D00196B52 /* Headers */ = {
+			isa = PBXHeadersBuildPhase;
+			buildActionMask = 2147483647;
+			files = (
+			);
+			runOnlyForDeploymentPostprocessing = 0;
+		};
+		18F480A117498AD8009724DB /* Headers */ = {
+			isa = PBXHeadersBuildPhase;
+			buildActionMask = 2147483647;
+			files = (
+				18F480A217498ADD009724DB /* AppleKeyStoreEvents.h in Headers */,
+			);
+			runOnlyForDeploymentPostprocessing = 0;
+		};
+/* End PBXHeadersBuildPhase section */
+
+/* Begin PBXNativeTarget section */
+		1843240D1714797D00196B52 /* securitydservice_client */ = {
+			isa = PBXNativeTarget;
+			buildConfigurationList = 184324111714797D00196B52 /* Build configuration list for PBXNativeTarget "securitydservice_client" */;
+			buildPhases = (
+				1843240A1714797D00196B52 /* Sources */,
+				1843240B1714797D00196B52 /* Frameworks */,
+				1843240C1714797D00196B52 /* Headers */,
+			);
+			buildRules = (
+			);
+			dependencies = (
+			);
+			name = securitydservice_client;
+			productName = securitydservice_client;
+			productReference = 1843240E1714797D00196B52 /* libsecuritydservice_client.a */;
+			productType = "com.apple.product-type.library.static";
+		};
+		189D4634166AC95C001D8533 /* securityd_service */ = {
+			isa = PBXNativeTarget;
+			buildConfigurationList = 189D463E166AC95C001D8533 /* Build configuration list for PBXNativeTarget "securityd_service" */;
+			buildPhases = (
+				189D4631166AC95C001D8533 /* Sources */,
+				189D4632166AC95C001D8533 /* Frameworks */,
+				189D4633166AC95C001D8533 /* Copy launchd plist */,
+				18D7BBD1171639CE008F80B3 /* Copy sandbox profile */,
+			);
+			buildRules = (
+			);
+			dependencies = (
+				18F4809B174975FF009724DB /* PBXTargetDependency */,
+				189D4665166C166E001D8533 /* PBXTargetDependency */,
+			);
+			name = securityd_service;
+			productName = securityd_service;
+			productReference = 189D4635166AC95C001D8533 /* securityd_service */;
+			productType = "com.apple.product-type.tool";
+		};
+		189D465A166C15C1001D8533 /* securitydservicectrl */ = {
+			isa = PBXNativeTarget;
+			buildConfigurationList = 189D4661166C15C1001D8533 /* Build configuration list for PBXNativeTarget "securitydservicectrl" */;
+			buildPhases = (
+				189D4657166C15C1001D8533 /* Sources */,
+				189D4658166C15C1001D8533 /* Frameworks */,
+				189D4659166C15C1001D8533 /* CopyFiles */,
+			);
+			buildRules = (
+			);
+			dependencies = (
+			);
+			name = securitydservicectrl;
+			productName = securitydservicectrl;
+			productReference = 189D465B166C15C1001D8533 /* securitydservicectrl */;
+			productType = "com.apple.product-type.tool";
+		};
+		18F4808D17497521009724DB /* KeyStoreEvents */ = {
+			isa = PBXNativeTarget;
+			buildConfigurationList = 18F4809917497521009724DB /* Build configuration list for PBXNativeTarget "KeyStoreEvents" */;
+			buildPhases = (
+				18F4808A17497521009724DB /* Sources */,
+				18F4808B17497521009724DB /* Frameworks */,
+				18F4808C17497521009724DB /* Resources */,
+				18F480A117498AD8009724DB /* Headers */,
+			);
+			buildRules = (
+			);
+			dependencies = (
+			);
+			name = KeyStoreEvents;
+			productName = KeyStore;
+			productReference = 18F4808E17497521009724DB /* com.apple.KeyStore.plugin */;
+			productType = "com.apple.product-type.bundle";
+		};
+/* End PBXNativeTarget section */
+
+/* Begin PBXProject section */
+		189D462D166AC95C001D8533 /* Project object */ = {
+			isa = PBXProject;
+			attributes = {
+				LastUpgradeCheck = 0460;
+				ORGANIZATIONNAME = Apple;
+			};
+			buildConfigurationList = 189D4630166AC95C001D8533 /* Build configuration list for PBXProject "securityd_service" */;
+			compatibilityVersion = "Xcode 3.2";
+			developmentRegion = English;
+			hasScannedForEncodings = 0;
+			knownRegions = (
+				en,
+			);
+			mainGroup = 189D462C166AC95C001D8533;
+			productRefGroup = 189D4636166AC95C001D8533 /* Products */;
+			projectDirPath = "";
+			projectRoot = "";
+			targets = (
+				189D4634166AC95C001D8533 /* securityd_service */,
+				189D465A166C15C1001D8533 /* securitydservicectrl */,
+				1843240D1714797D00196B52 /* securitydservice_client */,
+				18F4808D17497521009724DB /* KeyStoreEvents */,
+			);
+		};
+/* End PBXProject section */
+
+/* Begin PBXResourcesBuildPhase section */
+		18F4808C17497521009724DB /* Resources */ = {
+			isa = PBXResourcesBuildPhase;
+			buildActionMask = 2147483647;
+			files = (
+			);
+			runOnlyForDeploymentPostprocessing = 0;
+		};
+/* End PBXResourcesBuildPhase section */
+
+/* Begin PBXSourcesBuildPhase section */
+		1843240A1714797D00196B52 /* Sources */ = {
+			isa = PBXSourcesBuildPhase;
+			buildActionMask = 2147483647;
+			files = (
+				18CD2B721714D48900633846 /* securityd_service_client.c in Sources */,
+			);
+			runOnlyForDeploymentPostprocessing = 0;
+		};
+		189D4631166AC95C001D8533 /* Sources */ = {
+			isa = PBXSourcesBuildPhase;
+			buildActionMask = 2147483647;
+			files = (
+				189D4639166AC95C001D8533 /* main.c in Sources */,
+			);
+			runOnlyForDeploymentPostprocessing = 0;
+		};
+		189D4657166C15C1001D8533 /* Sources */ = {
+			isa = PBXSourcesBuildPhase;
+			buildActionMask = 2147483647;
+			files = (
+				189D465E166C15C1001D8533 /* main.c in Sources */,
+			);
+			runOnlyForDeploymentPostprocessing = 0;
+		};
+		18F4808A17497521009724DB /* Sources */ = {
+			isa = PBXSourcesBuildPhase;
+			buildActionMask = 2147483647;
+			files = (
+				18F4809D174976DA009724DB /* KeyStoreEvents.c in Sources */,
+			);
+			runOnlyForDeploymentPostprocessing = 0;
+		};
+/* End PBXSourcesBuildPhase section */
+
+/* Begin PBXTargetDependency section */
+		189D4665166C166E001D8533 /* PBXTargetDependency */ = {
+			isa = PBXTargetDependency;
+			target = 189D465A166C15C1001D8533 /* securitydservicectrl */;
+			targetProxy = 189D4664166C166E001D8533 /* PBXContainerItemProxy */;
+		};
+		18F4809B174975FF009724DB /* PBXTargetDependency */ = {
+			isa = PBXTargetDependency;
+			target = 18F4808D17497521009724DB /* KeyStoreEvents */;
+			targetProxy = 18F4809A174975FF009724DB /* PBXContainerItemProxy */;
+		};
+/* End PBXTargetDependency section */
+
+/* Begin XCBuildConfiguration section */
+		1843240F1714797D00196B52 /* Debug */ = {
+			isa = XCBuildConfiguration;
+			buildSettings = {
+				CLANG_CXX_LANGUAGE_STANDARD = "gnu++0x";
+				CLANG_CXX_LIBRARY = "libc++";
+				CLANG_ENABLE_MODULES = YES;
+				CLANG_WARN_BOOL_CONVERSION = YES;
+				CLANG_WARN_DIRECT_OBJC_ISA_USAGE = YES_ERROR;
+				CLANG_WARN_ENUM_CONVERSION = YES;
+				CLANG_WARN_OBJC_ROOT_CLASS = YES_ERROR;
+				EXECUTABLE_PREFIX = lib;
+				GCC_C_LANGUAGE_STANDARD = gnu99;
+				GCC_PREPROCESSOR_DEFINITIONS = (
+					"DEBUG=1",
+					"$(inherited)",
+				);
+				GCC_WARN_UNDECLARED_SELECTOR = YES;
+				PRODUCT_NAME = "$(TARGET_NAME)";
+			};
+			name = Debug;
+		};
+		184324101714797D00196B52 /* Release */ = {
+			isa = XCBuildConfiguration;
+			buildSettings = {
+				CLANG_CXX_LANGUAGE_STANDARD = "gnu++0x";
+				CLANG_CXX_LIBRARY = "libc++";
+				CLANG_ENABLE_MODULES = YES;
+				CLANG_WARN_BOOL_CONVERSION = YES;
+				CLANG_WARN_DIRECT_OBJC_ISA_USAGE = YES_ERROR;
+				CLANG_WARN_ENUM_CONVERSION = YES;
+				CLANG_WARN_OBJC_ROOT_CLASS = YES_ERROR;
+				ENABLE_NS_ASSERTIONS = NO;
+				EXECUTABLE_PREFIX = lib;
+				GCC_C_LANGUAGE_STANDARD = gnu99;
+				GCC_WARN_UNDECLARED_SELECTOR = YES;
+				PRODUCT_NAME = "$(TARGET_NAME)";
+			};
+			name = Release;
+		};
+		189D463C166AC95C001D8533 /* Debug */ = {
+			isa = XCBuildConfiguration;
+			buildSettings = {
+				ALWAYS_SEARCH_USER_PATHS = NO;
+				ARCHS = "$(ARCHS_STANDARD_64_BIT)";
+				CLANG_ENABLE_OBJC_ARC = YES;
+				CLANG_WARN_CONSTANT_CONVERSION = YES;
+				CLANG_WARN_DEPRECATED_OBJC_IMPLEMENTATIONS = YES;
+				CLANG_WARN_EMPTY_BODY = YES;
+				CLANG_WARN_INT_CONVERSION = YES;
+				CLANG_WARN__DUPLICATE_METHOD_MATCH = YES;
+				CODE_SIGN_IDENTITY = "-";
+				COPY_PHASE_STRIP = NO;
+				DEBUG_INFORMATION_FORMAT = "dwarf-with-dsym";
+				GCC_DYNAMIC_NO_PIC = NO;
+				GCC_ENABLE_OBJC_EXCEPTIONS = YES;
+				GCC_OPTIMIZATION_LEVEL = 0;
+				GCC_PREPROCESSOR_DEFINITIONS = (
+					"RC_BUILDIT_$(RC_BUILDIT)=1",
+					"DEBUG=1",
+					"$(inherited)",
+				);
+				GCC_STRICT_ALIASING = YES;
+				GCC_SYMBOLS_PRIVATE_EXTERN = NO;
+				GCC_WARN_64_TO_32_BIT_CONVERSION = YES;
+				GCC_WARN_ABOUT_DEPRECATED_FUNCTIONS = NO;
+				GCC_WARN_ABOUT_RETURN_TYPE = YES;
+				GCC_WARN_UNINITIALIZED_AUTOS = YES;
+				GCC_WARN_UNUSED_VARIABLE = YES;
+				ONLY_ACTIVE_ARCH = YES;
+			};
+			name = Debug;
+		};
+		189D463D166AC95C001D8533 /* Release */ = {
+			isa = XCBuildConfiguration;
+			buildSettings = {
+				ALWAYS_SEARCH_USER_PATHS = NO;
+				ARCHS = "$(ARCHS_STANDARD_64_BIT)";
+				CLANG_ENABLE_OBJC_ARC = YES;
+				CLANG_WARN_CONSTANT_CONVERSION = YES;
+				CLANG_WARN_DEPRECATED_OBJC_IMPLEMENTATIONS = YES;
+				CLANG_WARN_EMPTY_BODY = YES;
+				CLANG_WARN_INT_CONVERSION = YES;
+				CLANG_WARN__DUPLICATE_METHOD_MATCH = YES;
+				CODE_SIGN_IDENTITY = "-";
+				COPY_PHASE_STRIP = YES;
+				DEBUG_INFORMATION_FORMAT = "dwarf-with-dsym";
+				GCC_ENABLE_OBJC_EXCEPTIONS = YES;
+				GCC_PREPROCESSOR_DEFINITIONS = (
+					"RC_BUILDIT_$(RC_BUILDIT)=1",
+					"NDEBUG=1",
+				);
+				GCC_STRICT_ALIASING = YES;
+				GCC_WARN_64_TO_32_BIT_CONVERSION = YES;
+				GCC_WARN_ABOUT_DEPRECATED_FUNCTIONS = NO;
+				GCC_WARN_ABOUT_RETURN_TYPE = YES;
+				GCC_WARN_UNINITIALIZED_AUTOS = YES;
+				GCC_WARN_UNUSED_VARIABLE = YES;
+			};
+			name = Release;
+		};
+		189D463F166AC95C001D8533 /* Debug */ = {
+			isa = XCBuildConfiguration;
+			buildSettings = {
+				CODE_SIGN_ENTITLEMENTS = securityd_service/service.entitlements;
+				INSTALL_PATH = /usr/libexec;
+				PRODUCT_NAME = "$(TARGET_NAME)";
+			};
+			name = Debug;
+		};
+		189D4640166AC95C001D8533 /* Release */ = {
+			isa = XCBuildConfiguration;
+			buildSettings = {
+				CODE_SIGN_ENTITLEMENTS = securityd_service/service.entitlements;
+				INSTALL_PATH = /usr/libexec;
+				PRODUCT_NAME = "$(TARGET_NAME)";
+			};
+			name = Release;
+		};
+		189D4662166C15C1001D8533 /* Debug */ = {
+			isa = XCBuildConfiguration;
+			buildSettings = {
+				PRODUCT_NAME = "$(TARGET_NAME)";
+			};
+			name = Debug;
+		};
+		189D4663166C15C1001D8533 /* Release */ = {
+			isa = XCBuildConfiguration;
+			buildSettings = {
+				PRODUCT_NAME = "$(TARGET_NAME)";
+			};
+			name = Release;
+		};
+		18F4809717497521009724DB /* Debug */ = {
+			isa = XCBuildConfiguration;
+			buildSettings = {
+				BUNDLE_LOADER = /usr/libexec/UserEventAgent;
+				CLANG_CXX_LANGUAGE_STANDARD = "gnu++0x";
+				CLANG_CXX_LIBRARY = "libc++";
+				CLANG_ENABLE_MODULES = YES;
+				CLANG_WARN_BOOL_CONVERSION = YES;
+				CLANG_WARN_DIRECT_OBJC_ISA_USAGE = YES_ERROR;
+				CLANG_WARN_ENUM_CONVERSION = YES;
+				CLANG_WARN_OBJC_ROOT_CLASS = YES_ERROR;
+				GCC_C_LANGUAGE_STANDARD = gnu99;
+				GCC_PRECOMPILE_PREFIX_HEADER = YES;
+				GCC_WARN_ABOUT_RETURN_TYPE = YES_ERROR;
+				GCC_WARN_UNDECLARED_SELECTOR = YES;
+				GCC_WARN_UNUSED_FUNCTION = YES;
+				INFOPLIST_FILE = "KeyStore/KeyStore-Info.plist";
+				INSTALL_PATH = "$(SYSTEM_LIBRARY_DIR)/UserEventPlugins";
+				PRODUCT_NAME = com.apple.KeyStore;
+				PUBLIC_HEADERS_FOLDER_PATH = /usr/local/include;
+				WRAPPER_EXTENSION = plugin;
+			};
+			name = Debug;
+		};
+		18F4809817497521009724DB /* Release */ = {
+			isa = XCBuildConfiguration;
+			buildSettings = {
+				BUNDLE_LOADER = /usr/libexec/UserEventAgent;
+				CLANG_CXX_LANGUAGE_STANDARD = "gnu++0x";
+				CLANG_CXX_LIBRARY = "libc++";
+				CLANG_ENABLE_MODULES = YES;
+				CLANG_WARN_BOOL_CONVERSION = YES;
+				CLANG_WARN_DIRECT_OBJC_ISA_USAGE = YES_ERROR;
+				CLANG_WARN_ENUM_CONVERSION = YES;
+				CLANG_WARN_OBJC_ROOT_CLASS = YES_ERROR;
+				ENABLE_NS_ASSERTIONS = NO;
+				GCC_C_LANGUAGE_STANDARD = gnu99;
+				GCC_PRECOMPILE_PREFIX_HEADER = YES;
+				GCC_WARN_ABOUT_RETURN_TYPE = YES_ERROR;
+				GCC_WARN_UNDECLARED_SELECTOR = YES;
+				GCC_WARN_UNUSED_FUNCTION = YES;
+				INFOPLIST_FILE = "KeyStore/KeyStore-Info.plist";
+				INSTALL_PATH = "$(SYSTEM_LIBRARY_DIR)/UserEventPlugins";
+				PRODUCT_NAME = com.apple.KeyStore;
+				PUBLIC_HEADERS_FOLDER_PATH = /usr/local/include;
+				WRAPPER_EXTENSION = plugin;
+			};
+			name = Release;
+		};
+/* End XCBuildConfiguration section */
+
+/* Begin XCConfigurationList section */
+		184324111714797D00196B52 /* Build configuration list for PBXNativeTarget "securitydservice_client" */ = {
+			isa = XCConfigurationList;
+			buildConfigurations = (
+				1843240F1714797D00196B52 /* Debug */,
+				184324101714797D00196B52 /* Release */,
+			);
+			defaultConfigurationIsVisible = 0;
+			defaultConfigurationName = Release;
+		};
+		189D4630166AC95C001D8533 /* Build configuration list for PBXProject "securityd_service" */ = {
+			isa = XCConfigurationList;
+			buildConfigurations = (
+				189D463C166AC95C001D8533 /* Debug */,
+				189D463D166AC95C001D8533 /* Release */,
+			);
+			defaultConfigurationIsVisible = 0;
+			defaultConfigurationName = Release;
+		};
+		189D463E166AC95C001D8533 /* Build configuration list for PBXNativeTarget "securityd_service" */ = {
+			isa = XCConfigurationList;
+			buildConfigurations = (
+				189D463F166AC95C001D8533 /* Debug */,
+				189D4640166AC95C001D8533 /* Release */,
+			);
+			defaultConfigurationIsVisible = 0;
+			defaultConfigurationName = Release;
+		};
+		189D4661166C15C1001D8533 /* Build configuration list for PBXNativeTarget "securitydservicectrl" */ = {
+			isa = XCConfigurationList;
+			buildConfigurations = (
+				189D4662166C15C1001D8533 /* Debug */,
+				189D4663166C15C1001D8533 /* Release */,
+			);
+			defaultConfigurationIsVisible = 0;
+			defaultConfigurationName = Release;
+		};
+		18F4809917497521009724DB /* Build configuration list for PBXNativeTarget "KeyStoreEvents" */ = {
+			isa = XCConfigurationList;
+			buildConfigurations = (
+				18F4809717497521009724DB /* Debug */,
+				18F4809817497521009724DB /* Release */,
+			);
+			defaultConfigurationIsVisible = 0;
+		};
+/* End XCConfigurationList section */
+	};
+	rootObject = 189D462D166AC95C001D8533 /* Project object */;
+}
diff --git a/securityd_service/securityd_service/com.apple.securityd_service.plist b/securityd_service/securityd_service/com.apple.securityd_service.plist
new file mode 100644
index 0000000..11f3a12
--- /dev/null
+++ b/securityd_service/securityd_service/com.apple.securityd_service.plist
@@ -0,0 +1,17 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>EnableTransactions</key>
+	<true/>
+	<key>Label</key>
+	<string>com.apple.securityd_service</string>
+	<key>Program</key>
+	<string>/usr/libexec/securityd_service</string>
+	<key>MachServices</key>
+	<dict>
+		<key>com.apple.securitydservice</key>
+		<true/>
+	</dict>
+</dict>
+</plist>
diff --git a/securityd_service/securityd_service/com.apple.securitydservice.sb b/securityd_service/securityd_service/com.apple.securitydservice.sb
new file mode 100644
index 0000000..32d0470
--- /dev/null
+++ b/securityd_service/securityd_service/com.apple.securitydservice.sb
@@ -0,0 +1,31 @@
+(version 1)
+
+(deny default)
+
+(import "system.sb")
+
+(allow file-read*)
+
+(allow file-read*
+        (literal "/usr/libexec")
+        (literal "/usr/libexec/securityd_service")
+        (literal "/usr/sbin")
+        (literal "/usr/sbin/securityd"))
+
+(allow file-read* file-write*
+       (subpath "/private/var/keybags")
+       (regex #"/Keychains/")
+       (subpath "/private/var/db/mds"))
+
+(allow mach-lookup
+       (global-name "com.apple.SecurityServer"))
+
+(allow iokit-open
+       (iokit-user-client-class "AppleFDEKeyStoreUserClient")
+       (iokit-user-client-class "AppleKeyStoreUserClient"))
+
+(allow ipc-posix-shm
+       (ipc-posix-name "apple.shm.notification_center")
+       (ipc-posix-name "com.apple.AppleDatabaseChanged"))
+
+(allow system-audit)
diff --git a/securityd_service/securityd_service/main.c b/securityd_service/securityd_service/main.c
new file mode 100644
index 0000000..18283a8
--- /dev/null
+++ b/securityd_service/securityd_service/main.c
@@ -0,0 +1,932 @@
+/* Copyright (c) 2013 Apple Inc. All rights reserved. */
+
+#include "securityd_service.h"
+#include "securityd_service_client.h"
+#include <libaks.h>
+
+#include <sandbox.h>
+#include <vproc.h>
+#include <xpc/xpc.h>
+#include <xpc/private.h>
+#include <dispatch/dispatch.h>
+#include <sys/types.h>
+#include <sys/stat.h>
+#include <stdio.h>
+#include <errno.h>
+#include <assert.h>
+#include <syslog.h>
+#include <unistd.h>
+#include <pwd.h>
+#include <uuid/uuid.h>
+#include <bsm/libbsm.h>
+#include <copyfile.h>
+#include <AssertMacros.h>
+#include <Security/Security.h>
+#include <Security/SecKeychainPriv.h>
+
+#include <IOKit/IOKitLib.h>
+#include <Kernel/IOKit/crypto/AppleFDEKeyStoreDefs.h>
+
+#if DEBUG
+#define LOG(...)    syslog(LOG_NOTICE, ##__VA_ARGS__);
+#else
+#define LOG(...)
+#endif
+
+// exported from libaks.a
+kern_return_t _aks_stash_create_internal(keybag_handle_t handle, bool stage_key, const void * passcode, int length);
+kern_return_t _aks_stash_load_internal(keybag_handle_t handle, bool verify, uint8_t * data, size_t length, keybag_handle_t * handle_out);
+kern_return_t _aks_stash_destroy_internal(void);
+kern_return_t _aks_stash_commit_internal(void ** data, int * length);
+
+const char * kb_home_path = "Library/Keychains";
+const char * kb_user_bag = "user.kb";
+const char * kb_stash_bag = "stash.kb";
+
+typedef struct {
+    uid_t uid;
+    gid_t gid;
+    char * name;
+    char * home;
+} service_user_record_t;
+
+typedef enum {
+    kb_bag_type_user,
+    kb_bag_type_stash
+} kb_bag_type_t;
+
+static io_connect_t
+openiodev(void)
+{
+    io_registry_entry_t service;
+    io_connect_t conn;
+    kern_return_t kr;
+    
+    service = IOServiceGetMatchingService(kIOMasterPortDefault, IOServiceMatching(kAppleFDEKeyStoreServiceName));
+    if (service == IO_OBJECT_NULL)
+        return IO_OBJECT_NULL;
+    
+    kr = IOServiceOpen(service, mach_task_self(), 0, &conn);
+    if (kr != KERN_SUCCESS)
+        return IO_OBJECT_NULL;
+    
+    kr = IOConnectCallMethod(conn, kAppleFDEKeyStoreUserClientOpen, NULL, 0, NULL, 0, NULL, NULL, NULL, NULL);
+    if (kr != KERN_SUCCESS) {
+        IOServiceClose(conn);
+        return IO_OBJECT_NULL;
+    }
+    
+    return conn;
+}
+
+static void
+closeiodev(io_connect_t conn)
+{
+    kern_return_t kr;
+    kr = IOConnectCallMethod(conn, kAppleFDEKeyStoreUserClientClose, NULL, 0, NULL, 0, NULL, NULL, NULL, NULL);
+    if (kr != KERN_SUCCESS)
+        return;
+    IOServiceClose(conn);
+}
+
+static dispatch_queue_t
+_kb_service_get_dispatch_queue()
+{
+    static dispatch_once_t onceToken = 0;
+    static dispatch_queue_t connection_queue = NULL;
+    
+    dispatch_once(&onceToken, ^{
+        connection_queue = dispatch_queue_create("kb-service-queue", DISPATCH_QUEUE_SERIAL);
+    });
+    
+    return connection_queue;
+}
+
+static service_user_record_t * get_user_record(uid_t uid)
+{
+    service_user_record_t * ur = NULL;
+    long bufsize = 0;
+    if ((bufsize = sysconf(_SC_GETPW_R_SIZE_MAX)) == -1) {
+        bufsize = 4096;
+    }
+    char buf[bufsize];
+    struct passwd pwbuf, *pw = NULL;
+    if ((getpwuid_r(uid, &pwbuf, buf, bufsize, &pw) == 0) && pw != NULL) {
+        ur = calloc(1u, sizeof(service_user_record_t));
+        require(ur, done);
+        ur->uid = pw->pw_uid;
+        ur->gid = pw->pw_gid;
+        ur->home = strdup(pw->pw_dir);
+        ur->name = strdup(pw->pw_name);
+    } else {
+        syslog(LOG_ERR, "failed to lookup user record for uid: %d", uid);
+    }
+
+done:
+    return ur;
+}
+
+static void free_user_record(service_user_record_t * ur)
+{
+    if (ur != NULL) {
+        if (ur->home) {
+            free(ur->home);
+        }
+        if (ur->name) {
+            free(ur->name);
+        }
+        free(ur);
+    }
+}
+
+static const char * get_host_uuid()
+{
+    static uuid_string_t hostuuid = {};
+    static dispatch_once_t onceToken;
+    dispatch_once(&onceToken, ^{
+        struct timespec timeout = {30, 0};
+        uuid_t uuid = {};
+        if (gethostuuid(uuid, &timeout) == 0) {
+            uuid_unparse(uuid, hostuuid);
+        } else {
+            syslog(LOG_ERR, "failed to get host uuid");
+        }
+    });
+
+    return hostuuid;
+}
+
+static char *
+_kb_copy_bag_filename(service_user_record_t * ur, kb_bag_type_t type)
+{
+    char * bag_file = NULL;
+    const char * name = NULL;
+
+    require(ur, done);
+    switch(type) {
+        case kb_bag_type_user:
+            name = kb_user_bag;
+            break;
+        case kb_bag_type_stash:
+            name = kb_stash_bag;
+            break;
+        default:
+            goto done;
+    }
+
+    bag_file = calloc(1u, PATH_MAX);
+    require(bag_file, done);
+    
+    snprintf(bag_file, PATH_MAX, "%s/%s/%s/%s", ur->home, kb_home_path, get_host_uuid(), name);
+    
+done:
+    return bag_file;
+}
+
+static bool
+_kb_verify_create_path(service_user_record_t * ur)
+{
+    bool created = false;
+    struct stat st_info = {};
+    char new_path[PATH_MAX] = {};
+    char kb_path[PATH_MAX] = {};
+    snprintf(kb_path, sizeof(kb_path), "%s/%s/%s", ur->home, kb_home_path, get_host_uuid());
+    if (lstat(kb_path, &st_info) == 0) {
+        if (S_ISDIR(st_info.st_mode)) {
+            created = true;
+        } else {
+            syslog(LOG_ERR, "invalid directory at '%s' moving aside", kb_path);
+            snprintf(new_path, sizeof(new_path), "%s-invalid", kb_path);
+            unlink(new_path);
+            if (rename(kb_path, new_path) != 0) {
+                syslog(LOG_ERR, "failed to rename file: %s (%s)", kb_path, strerror(errno));
+                goto done;
+            }
+        }
+    }
+    if (!created) {
+        require_action(mkpath_np(kb_path, 0700) == 0, done, syslog(LOG_ERR, "could not create path: %s (%s)", kb_path, strerror(errno)));
+        created = true;
+    }
+
+done:
+    return created;
+}
+
+static void
+_set_thread_credentials(service_user_record_t * ur)
+{
+    int rc = pthread_setugid_np(ur->uid, ur->gid);
+    if (rc) { syslog(LOG_ERR, "failed to set thread credential: %i (%s)", errno, strerror(errno)); }
+
+    rc = initgroups(ur->name, ur->gid);
+    if (rc) { syslog(LOG_ERR, "failed to initgroups: %i", rc); }
+}
+
+static void
+_clear_thread_credentials()
+{
+    int rc = pthread_setugid_np(KAUTH_UID_NONE, KAUTH_GID_NONE);
+    if (rc) { syslog(LOG_ERR, "failed to reset thread credential: %i (%s)", errno, strerror(errno)); }
+}
+
+static bool
+_kb_bag_exists(service_user_record_t * ur, const char * bag_file)
+{
+    bool exists = false;
+    struct stat st_info = {};
+    char new_file[PATH_MAX] = {};
+
+    require(ur, done);
+
+    _set_thread_credentials(ur);
+    if (lstat(bag_file, &st_info) == 0) {
+        if (S_ISREG(st_info.st_mode)) {
+            exists = true;
+        } else {
+            syslog(LOG_ERR, "invalid file at '%s' moving aside", bag_file);
+            snprintf(new_file, sizeof(new_file), "%s-invalid", bag_file);
+            unlink(new_file);
+            if (rename(bag_file, new_file) != 0) {
+                syslog(LOG_ERR, "failed to rename file: %s (%s)", bag_file, strerror(errno));
+            }
+        }
+    }
+
+done:
+    _clear_thread_credentials();
+    return exists;
+}
+
+static bool
+_kb_save_bag_to_disk(service_user_record_t * ur, const char * bag_file, void * data, size_t length)
+{
+    bool result = false;
+    int fd = -1;
+
+    require(bag_file, done);
+    
+    _set_thread_credentials(ur);
+    require(_kb_verify_create_path(ur), done);
+
+    fd = open(bag_file, O_CREAT | O_TRUNC | O_WRONLY | O_NOFOLLOW, 0600);
+    require_action(fd != -1, done, syslog(LOG_ERR, "could not create file: %s (%s)", bag_file, strerror(errno)));
+    require_action(write(fd, data, length) != -1, done, syslog(LOG_ERR, "failed to write keybag to disk %s", strerror(errno)));
+    
+    result = true;
+    
+done:
+    if (fd != -1) { close(fd); }
+    _clear_thread_credentials();
+    return result;
+}
+
+static bool
+_kb_load_bag_from_disk(service_user_record_t * ur, const char * bag_file, uint8_t ** data, size_t * length)
+{
+    bool result = false;
+    int fd = -1;
+    uint8_t * buf = NULL;
+    size_t buf_size = 0;
+    struct stat st_info = {};
+    
+    require(bag_file, done);
+
+    _set_thread_credentials(ur);
+    require(_kb_verify_create_path(ur), done);
+    require_quiet(lstat(bag_file, &st_info) == 0, done);
+    require_action(S_ISREG(st_info.st_mode), done, syslog(LOG_ERR, "failed to load, not a file: %s", bag_file));
+    buf_size = (size_t)st_info.st_size;
+    
+    fd = open(bag_file, O_RDONLY | O_NOFOLLOW);
+    require_action(fd != -1, done, syslog(LOG_ERR, "could not open file: %s (%s)", bag_file, strerror(errno)));
+    
+    buf = (uint8_t *)calloc(1u, buf_size);
+    require(buf != NULL, done);
+    require(read(fd, buf, buf_size) == buf_size, done);
+    
+    *data = buf;
+    *length = buf_size;
+    buf = NULL;
+    result = true;
+    
+done:
+    if (fd != -1) { close(fd); }
+    if (buf) { free(buf); }
+    _clear_thread_credentials();
+    return result;
+}
+
+static void
+_kb_rename_bag_on_disk(service_user_record_t * ur, const char * bag_file)
+{
+    char new_file[PATH_MAX] = {};
+    if (bag_file) {
+        _set_thread_credentials(ur);
+        snprintf(new_file, sizeof(new_file), "%s-invalid", bag_file);
+        unlink(new_file);
+        rename(bag_file, new_file);
+        _clear_thread_credentials();
+    }
+}
+
+static void
+_kb_delete_bag_on_disk(service_user_record_t * ur, const char * bag_file)
+{
+    if (bag_file) {
+        _set_thread_credentials(ur);
+        unlink(bag_file);
+        _clear_thread_credentials();
+    }
+}
+
+static void
+_kb_migrate_old_bag_if_exists(service_user_record_t * ur)
+{
+    char session_file[PATH_MAX] = {};
+    struct stat st_info = {};
+    char * bag_file = _kb_copy_bag_filename(ur, kb_bag_type_user);
+
+    if (bag_file) {
+        snprintf(session_file, sizeof(session_file), "/var/keybags/%i.kb", ur->uid);
+
+        // if the bag_file does not exist
+        // check for the session_file and copy it into place
+        if (!_kb_bag_exists(ur, bag_file)) {
+            if (lstat(session_file, &st_info) == 0 && (S_ISREG(st_info.st_mode))) {
+                lchmod("/var/keybags", 0777);
+                lchmod(session_file, 0666);
+                _set_thread_credentials(ur);
+                _kb_verify_create_path(ur);
+                syslog(LOG_ERR, "migrating %s to %s", session_file, bag_file);
+                copyfile(session_file, bag_file, NULL, COPYFILE_ALL | COPYFILE_MOVE | COPYFILE_NOFOLLOW | COPYFILE_EXCL);
+                lchmod(bag_file, 0600);
+                _clear_thread_credentials();
+            }
+        }
+        free(bag_file);
+    }
+}
+
+static int
+_kb_get_session_handle(service_context_t * context, keybag_handle_t * handle_out)
+{
+    int rc = KB_BagNotLoaded;
+    keybag_handle_t session_handle = bad_keybag_handle;
+    require_noerr_quiet(aks_get_system(context->s_uid, &session_handle), done);
+    
+    *handle_out = session_handle;
+    rc = KB_Success;
+    
+done:
+    return rc;
+}
+
+static int
+service_kb_create(service_context_t * context, const void * secret, int secret_len)
+{
+    __block int rc = KB_GeneralError;
+    
+    dispatch_sync(_kb_service_get_dispatch_queue(), ^{
+        uint8_t * buf = NULL;
+        size_t buf_size = 0;
+        keybag_handle_t session_handle = bad_keybag_handle;
+        service_user_record_t * ur = get_user_record(context->s_uid);
+        char * bag_file = _kb_copy_bag_filename(ur, kb_bag_type_user);
+        
+        require(bag_file, done);
+
+        // check for the existance of the bagfile
+        require_action(!_kb_bag_exists(ur, bag_file), done, rc = KB_BagExists);
+        
+        require_noerr(rc = aks_create_bag(secret, secret_len, kAppleKeyStoreDeviceBag, &session_handle), done);
+        require_noerr(rc = aks_save_bag(session_handle, (void**)&buf, (int*)&buf_size), done);
+        require_action(_kb_save_bag_to_disk(ur, bag_file, buf, buf_size), done, rc = KB_BagError);
+        require_noerr(rc = aks_set_system(session_handle, context->s_uid), done);
+        aks_unload_bag(session_handle);
+        require_noerr(rc = _kb_get_session_handle(context, &session_handle), done);
+        
+        if (secret && rc == KB_Success) {
+            aks_unlock_bag(session_handle, secret, secret_len);
+        }
+        
+    done:
+        if (buf) free(buf);
+        if (bag_file) { free(bag_file); }
+        if (ur) free_user_record(ur);
+    });
+    
+    return rc;
+}
+
+static int
+service_kb_load(service_context_t * context)
+{
+    __block int rc = KB_GeneralError;
+    
+    dispatch_sync(_kb_service_get_dispatch_queue(), ^{
+        uint8_t * buf = NULL;
+        size_t buf_size = 0;
+        keybag_handle_t session_handle = bad_keybag_handle;
+        service_user_record_t * ur = NULL;
+        char * bag_file = NULL;
+        
+        rc = aks_get_system(context->s_uid, &session_handle);
+        if (rc == kIOReturnNotFound) {
+            require_action(ur = get_user_record(context->s_uid), done, rc = KB_GeneralError);
+            require_action(bag_file = _kb_copy_bag_filename(ur, kb_bag_type_user), done, rc = KB_GeneralError);
+            require_action_quiet(_kb_load_bag_from_disk(ur, bag_file, &buf, &buf_size), done, rc = KB_BagNotFound);
+            rc = aks_load_bag(buf, (int)buf_size, &session_handle);
+            if (rc == kIOReturnNotPermitted) {
+                syslog(LOG_ERR, "error loading keybag for uid (%i) in session (%i)", context->s_uid, context->s_id);
+                _kb_rename_bag_on_disk(ur, bag_file);
+                rc = KB_BagNotFound;
+            }
+            require_noerr(rc, done);
+            require_noerr(rc = aks_set_system(session_handle, context->s_uid), done);
+            aks_unload_bag(session_handle);
+        }
+        require(rc == KB_Success, done);
+        
+    done:
+        if (buf) free(buf);
+        if (ur) free_user_record(ur);
+        if (bag_file) free(bag_file);
+    });
+    
+    return rc;
+}
+
+
+static int
+service_kb_unlock(service_context_t * context, const void * secret, int secret_len)
+{
+    int rc = KB_GeneralError;
+    keybag_handle_t session_handle;
+    require_noerr(rc = _kb_get_session_handle(context, &session_handle), done);
+    
+    rc = aks_unlock_bag(session_handle, secret, secret_len);
+    
+done:
+    return rc;
+}
+
+static int
+service_kb_lock(service_context_t * context)
+{
+    int rc = KB_GeneralError;
+    keybag_handle_t session_handle;
+    require_noerr(rc = _kb_get_session_handle(context, &session_handle), done);
+    
+    rc = aks_lock_bag(session_handle);
+    
+done:
+    return rc;
+}
+
+static int
+service_kb_change_secret(service_context_t * context, const void * secret, int secret_len, const void * new_secret, int new_secret_len)
+{
+    __block int rc = KB_GeneralError;
+    keybag_handle_t session_handle;
+    require_noerr(rc = _kb_get_session_handle(context, &session_handle), done);
+    
+    dispatch_sync(_kb_service_get_dispatch_queue(), ^{
+        uint8_t * buf = NULL;
+        size_t buf_size = 0;
+        service_user_record_t * ur = NULL;
+        char * bag_file = NULL;
+        
+        require_noerr(rc = aks_change_secret(session_handle, secret, secret_len, new_secret, new_secret_len), done);
+        require_noerr(rc = aks_save_bag(session_handle, (void**)&buf, (int*)&buf_size), done);
+        require_action(ur = get_user_record(context->s_uid), done, rc = KB_GeneralError);
+        require_action(bag_file = _kb_copy_bag_filename(ur, kb_bag_type_user), done, rc = KB_GeneralError);
+        require_action(_kb_save_bag_to_disk(ur, bag_file, buf, buf_size), done, rc = KB_BagError);
+        
+        rc = KB_Success;
+
+    done:
+        if (buf) free(buf);
+        if (ur) free_user_record(ur);
+        if (bag_file) free(bag_file);
+        return;
+    });
+    
+done:
+    return rc;
+}
+
+static int
+service_kb_reset(service_context_t * context, const void * secret, int secret_len)
+{
+    __block int rc = KB_GeneralError;
+    service_user_record_t * ur = NULL;
+    char * bag_file = NULL;
+
+    require_action(ur = get_user_record(context->s_uid), done, rc = KB_GeneralError);
+    require_action(bag_file = _kb_copy_bag_filename(ur, kb_bag_type_user), done, rc = KB_GeneralError);
+
+    dispatch_sync(_kb_service_get_dispatch_queue(), ^{
+        uint8_t * buf = NULL;
+        size_t buf_size = 0;
+        keybag_handle_t session_handle = bad_keybag_handle;
+
+        syslog(LOG_ERR, "resetting keybag for uid (%i) in session (%i)", context->s_uid, context->s_id);
+        _kb_rename_bag_on_disk(ur, bag_file);
+
+        require_noerr(rc = aks_create_bag(secret, secret_len, kAppleKeyStoreDeviceBag, &session_handle), done);
+        require_noerr(rc = aks_save_bag(session_handle, (void**)&buf, (int*)&buf_size), done);
+        require_action(_kb_save_bag_to_disk(ur, bag_file, buf, buf_size), done, rc = KB_BagError);
+        require_noerr(rc = aks_set_system(session_handle, context->s_uid), done);
+        aks_unload_bag(session_handle);
+        require_noerr(rc = _kb_get_session_handle(context, &session_handle), done);
+
+        if (secret && rc == KB_Success) {
+            aks_unlock_bag(session_handle, secret, secret_len);
+        }
+
+    done:
+        if (buf) free(buf);
+        return;
+    });
+
+done:
+    if (ur) free_user_record(ur);
+    if (bag_file) free(bag_file);
+    return rc;
+}
+
+static int
+service_kb_is_locked(service_context_t * context, xpc_object_t reply)
+{
+    int rc = KB_GeneralError;
+    keybag_state_t state;
+    keybag_handle_t session_handle;
+    require_noerr(rc = _kb_get_session_handle(context, &session_handle), done);
+    
+    require_noerr(rc = aks_get_lock_state(session_handle, &state), done);
+    
+    xpc_dictionary_set_bool(reply, SERVICE_XPC_LOCKED, state & keybag_state_locked);
+    xpc_dictionary_set_bool(reply, SERVICE_XPC_NO_PIN, state & keybag_state_no_pin);
+    
+done:
+    return rc;
+}
+
+static int
+service_kb_stash_create(service_context_t * context, const void * key, unsigned key_size)
+{
+    int rc = KB_GeneralError;
+    char * bag_file = NULL;
+    keybag_handle_t session_handle;
+    service_user_record_t * ur = NULL;
+    void * stashbag = NULL;
+    unsigned stashbag_size = 0;
+    __block bool saved = false;
+
+    require(key, done);
+    require_noerr(rc = _kb_get_session_handle(context, &session_handle), done);
+    require_action(ur = get_user_record(context->s_uid), done, rc = KB_GeneralError);
+    require_noerr(rc = _aks_stash_create_internal(session_handle, false, key, key_size), done);
+    require_noerr(rc = _aks_stash_commit_internal((void**)&stashbag, (int*)&stashbag_size), done);
+
+    require_action(bag_file = _kb_copy_bag_filename(ur, kb_bag_type_stash), done, rc = KB_GeneralError);
+
+    // sync writing the bag to disk
+    dispatch_sync(_kb_service_get_dispatch_queue(), ^{
+        saved = _kb_save_bag_to_disk(ur, bag_file, stashbag, stashbag_size);
+    });
+    require_action(saved, done, rc = KB_BagError);
+    rc = KB_Success;
+
+done:
+    if (stashbag) { free(stashbag); }
+    if (bag_file) { free(bag_file); }
+    if (ur) free_user_record(ur);
+    return rc;
+}
+
+static int
+service_kb_stash_load(service_context_t * context, const void * key, unsigned key_size)
+{
+    __block int rc = KB_GeneralError;
+    char * bag_file = NULL;
+    keybag_handle_t session_handle;
+    service_user_record_t * ur = NULL;
+    __block uint8_t * stashbag = NULL;
+    __block size_t stashbag_size = 0;
+
+    require(key, done);
+    require_noerr(rc = _kb_get_session_handle(context, &session_handle), done);
+    require_action(ur = get_user_record(context->s_uid), done, rc = KB_GeneralError);
+    require_action(bag_file = _kb_copy_bag_filename(ur, kb_bag_type_stash), done, rc = KB_GeneralError);
+
+    // sync loading the bag from disk
+    dispatch_sync(_kb_service_get_dispatch_queue(), ^{
+        if (!_kb_load_bag_from_disk(ur, bag_file, &stashbag, &stashbag_size)) {
+            rc = KB_BagError;
+        }
+    });
+    require_noerr(rc, done);
+
+    require_noerr(rc = _aks_stash_create_internal(session_handle, true, key, key_size), done);
+    require_noerr(rc = _aks_stash_load_internal(session_handle, false, stashbag, stashbag_size, NULL), done);
+    rc = KB_Success;
+
+done:
+    if (stashbag) { free(stashbag); }
+    if (bag_file) {
+        _kb_delete_bag_on_disk(ur, bag_file);
+        free(bag_file);
+    }
+    if (ur) free_user_record(ur);
+    return rc;
+}
+
+//
+// Get the keychain master key from the AppleFDEKeyStore.
+// Note that this is a one-time call - the master key is
+// removed from the keystore after it is returned.
+// Requires the entitlement: com.apple.private.securityd.keychain
+//
+OSStatus service_stash_get_key(service_context_t * context, xpc_object_t event, xpc_object_t reply)
+{
+    getStashKey_InStruct_t inStruct;
+    getStashKey_OutStruct_t outStruct;
+    size_t outSize = sizeof(outStruct);
+    kern_return_t kr = KERN_INVALID_ARGUMENT;
+    
+    io_connect_t conn = openiodev();
+    require(conn, done);
+    inStruct.type = kAppleFDEKeyStoreStash_master;
+    
+    kr = IOConnectCallMethod(conn, kAppleFDEKeyStore_getStashKey,
+                             NULL, 0,
+                             &inStruct, sizeof(inStruct),
+                             NULL, NULL,
+                             &outStruct, &outSize);
+    
+    if (kr == KERN_SUCCESS) {
+        xpc_dictionary_set_data(reply, SERVICE_XPC_KEY, outStruct.outBuf.key.key, outStruct.outBuf.key.keysize);
+        service_kb_stash_load(context, outStruct.outBuf.key.key, outStruct.outBuf.key.keysize);
+    }
+
+done:
+    if (conn)
+        closeiodev(conn);
+    
+    return kr;
+}
+
+//
+// Stash the keychain master key in the AppleFDEKeyStore and
+// flag it as the keychain master key to be added to the
+// reboot NVRAM blob.
+// This requires two calls to the AKS: the first to store the
+// key and get its uuid.  The second uses the uuid to flag the
+// key for blob inclusion.
+//
+OSStatus service_stash_set_key(service_context_t * context, xpc_object_t event, xpc_object_t reply)
+{
+    kern_return_t kr = KERN_INVALID_ARGUMENT;
+    size_t keydata_len = 0;
+    size_t len;
+    
+    io_connect_t conn = openiodev();
+    require(conn, done);
+
+    // Store the key in the keystore and get its uuid
+    setKeyGetUUID_InStruct_t inStruct1;
+    uuid_OutStruct_t outStruct1;
+    
+
+    const uint8_t *keydata = xpc_dictionary_get_data(event, SERVICE_XPC_KEY, &keydata_len);
+    require(keydata, done);
+
+    memcpy(&inStruct1.inKey.key.key, keydata, keydata_len);
+    inStruct1.inKey.key.keysize = (cryptosize_t) keydata_len;
+    len = sizeof(outStruct1);
+    kr = IOConnectCallMethod(conn, kAppleFDEKeyStore_setKeyGetUUID,
+                             NULL, 0,
+                             &inStruct1, sizeof(inStruct1),
+                             NULL, NULL,
+                             &outStruct1, &len);
+    require(kr == KERN_SUCCESS, done);
+    
+    // Now using the uuid stash it as the master key
+    setStashKey_InStruct_t inStruct2;
+    memcpy(&inStruct2.uuid, &outStruct1.uuid, sizeof(outStruct1.uuid));
+    inStruct2.type  = kAppleFDEKeyStoreStash_master;
+    
+    kr = IOConnectCallMethod(conn, kAppleFDEKeyStore_setStashKey,
+                             NULL, 0,
+                             &inStruct2, sizeof(inStruct2),
+                             NULL, NULL,
+                             NULL, NULL);
+
+    if  (kr == KERN_SUCCESS) {
+        service_kb_stash_create(context, keydata, (unsigned)keydata_len);
+    }
+done:
+    if (conn)
+        closeiodev(conn);
+
+    return kr;
+}
+
+//
+// Signal the AppleFDEKeyStore to take the tagged FDE key
+// and keychain master key, stash them in an encrypted
+// blob structure and write the blob to NVRAM.  The random
+// encryption key is written to the SMC.
+//
+#if DEBUG
+OSStatus service_stash_blob(xpc_object_t event, xpc_object_t reply)
+{
+    kern_return_t kr = KERN_INVALID_ARGUMENT;
+    
+    io_connect_t conn = openiodev();
+    require(conn, done);
+    
+    kr = IOConnectCallMethod(conn, kAppleFDEKeyStore_commitStash,
+                             NULL, 0,
+                             NULL, 0,
+                             NULL, NULL,
+                             NULL, NULL);    
+done:
+    if (conn)
+        closeiodev(conn);
+    
+    return kr;
+}
+#endif
+
+bool peer_has_entitlement(xpc_connection_t peer, const char * entitlement)
+{
+    bool entitled = false;
+    
+    xpc_object_t value = xpc_connection_copy_entitlement_value(peer, entitlement);
+    if (value && (xpc_get_type(value) == XPC_TYPE_BOOL)) {
+        entitled = xpc_bool_get_value(value);
+    }
+    
+    if (value) xpc_release(value);
+    return entitled;
+}
+
+void service_peer_event_handler(xpc_connection_t connection, xpc_object_t event)
+{
+    xpc_type_t type = xpc_get_type(event);
+    
+    if (type == XPC_TYPE_ERROR) {
+		if (event == XPC_ERROR_CONNECTION_INVALID) {
+        }
+    } else {
+        assert(type == XPC_TYPE_DICTIONARY);
+        
+        int rc = KB_GeneralError;
+        uint64_t request = 0;
+        const uint8_t * secret = NULL, * new_secret = NULL;
+        size_t secret_len = 0, new_secret_len = 0, data_len = 0;
+        service_context_t * context = NULL;
+        const void * data;
+        
+        xpc_object_t reply = xpc_dictionary_create_reply(event);
+        
+        data = xpc_dictionary_get_data(event, SERVICE_XPC_CONTEXT, &data_len);
+        require(data, done);
+        require(data_len == sizeof(service_context_t), done);
+        context = (service_context_t*)data;
+
+        request = xpc_dictionary_get_uint64(event, SERVICE_XPC_REQUEST);
+
+        require_action(context->s_id != AU_DEFAUDITSID, done, rc = KB_InvalidSession);
+        require_action(context->s_uid != AU_DEFAUDITID, done, rc = KB_InvalidSession); // we only want to work in actual user sessions.
+        
+        switch (request) {
+            case SERVICE_KB_CREATE:
+                //                if (kb_service_has_entitlement(peer, "com.apple.keystore.device")) {
+                secret = xpc_dictionary_get_data(event, SERVICE_XPC_SECRET, &secret_len);
+                rc = service_kb_create(context, secret, (int)secret_len);
+                //                }
+                break;
+            case SERVICE_KB_LOAD:
+                rc = service_kb_load(context);
+                break;
+            case SERVICE_KB_UNLOCK:
+                secret = xpc_dictionary_get_data(event, SERVICE_XPC_SECRET, &secret_len);
+                rc = service_kb_unlock(context, secret, (int)secret_len);
+                break;
+            case SERVICE_KB_LOCK:
+                rc = service_kb_lock(context);
+                break;
+            case SERVICE_KB_CHANGE_SECRET:
+                secret = xpc_dictionary_get_data(event, SERVICE_XPC_SECRET, &secret_len);
+                new_secret = xpc_dictionary_get_data(event, SERVICE_XPC_SECRET_NEW, &new_secret_len);
+                rc = service_kb_change_secret(context, secret, (int)secret_len, new_secret, (int)new_secret_len);
+                break;
+            case SERVICE_KB_RESET:
+                secret = xpc_dictionary_get_data(event, SERVICE_XPC_SECRET, &secret_len);
+                rc = service_kb_reset(context, secret, (int)secret_len);
+                break;
+            case SERVICE_KB_IS_LOCKED:
+                rc = service_kb_is_locked(context, reply);
+                break;
+            case SERVICE_STASH_GET_KEY:
+                rc = service_stash_get_key(context, event, reply);
+                break;
+            case SERVICE_STASH_SET_KEY:
+                rc = service_stash_set_key(context, event, reply);
+                break;
+#if DEBUG
+            case SERVICE_STASH_BLOB:
+                rc = service_stash_blob(event, reply);
+                break;
+#endif
+            default:
+                LOG("unknown service type");
+                break;
+        }
+        
+    done:
+        LOG("selector: %llu, error: %x, secret_len: %zu, new_secret_len: %zu, sid: %d, suid: %d)", request, rc, secret_len, new_secret_len, context ? context->s_id : 0, context ? context->s_uid : 0);
+        xpc_dictionary_set_int64(reply, SERVICE_XPC_RC, rc);
+        xpc_connection_send_message(connection, reply);
+        xpc_release(reply);
+    }
+}
+
+bool check_signature(xpc_connection_t connection)
+{
+    CFStringRef reqStr = CFSTR("identifier com.apple.securityd and anchor apple");
+    SecRequirementRef  requirement = NULL;
+    SecCodeRef codeRef = NULL;
+    CFMutableDictionaryRef codeDict = NULL;
+    CFNumberRef codePid = NULL;
+    pid_t pid = xpc_connection_get_pid(connection);
+    
+    OSStatus status = SecRequirementCreateWithString(reqStr, kSecCSDefaultFlags, &requirement);
+    require_action(status == errSecSuccess, done, LOG("failed to create requirement"));
+    
+    codeDict = CFDictionaryCreateMutable(kCFAllocatorDefault, 0, &kCFTypeDictionaryKeyCallBacks, &kCFTypeDictionaryValueCallBacks);
+    codePid = CFNumberCreate(kCFAllocatorDefault, kCFNumberIntType, &pid);
+    CFDictionarySetValue(codeDict, kSecGuestAttributePid, codePid);
+    status = SecCodeCopyGuestWithAttributes(NULL, codeDict, kSecCSDefaultFlags, &codeRef);
+    require_action(status == errSecSuccess, done, LOG("failed to get code ref"));
+
+    status = SecCodeCheckValidity(codeRef, kSecCSDefaultFlags,
+#if DEBUG || RC_BUILDIT_YES
+                                  NULL);
+#else
+                                  requirement);
+#endif
+    require_action(status == errSecSuccess, done, syslog(LOG_ERR, "pid %d, does not satisfy code requirment (%d)", pid, status));
+    
+done:
+    if (codeRef) CFRelease(codeRef);
+    if (requirement) CFRelease(requirement);
+    if (codeDict) CFRelease(codeDict);
+    if (codePid) CFRelease(codePid);
+    
+    return (status == errSecSuccess);
+}
+
+int main(int argc, const char * argv[])
+{
+    char * errorbuf;
+    if (sandbox_init(SECURITYD_SERVICE_NAME, SANDBOX_NAMED, &errorbuf) != 0) {
+        syslog(LOG_ERR, "sandbox_init failed %s", errorbuf);
+        sandbox_free_error(errorbuf);
+#ifndef DEBUG
+        abort();
+#endif
+    }
+    
+    xpc_connection_t listener = xpc_connection_create_mach_service(SECURITYD_SERVICE_NAME, NULL, XPC_CONNECTION_MACH_SERVICE_LISTENER);
+    xpc_connection_set_event_handler(listener, ^(xpc_object_t peer) {
+        // It is safe to cast 'peer' to xpc_connection_t assuming
+        // we have a correct configuration in our launchd.plist.
+        
+        if (xpc_connection_get_euid(peer) != 0) {
+            xpc_connection_cancel(peer);
+            return;
+        }
+        
+        if (!check_signature(peer)) {
+            xpc_connection_cancel(peer);
+            return;
+        }
+        
+        xpc_connection_set_event_handler(peer, ^(xpc_object_t event) {
+            vproc_transaction_t transaction = vproc_transaction_begin(NULL);
+            service_peer_event_handler(peer, event);
+            vproc_transaction_end(NULL, transaction);
+        });
+        xpc_connection_resume(peer);
+    });
+    xpc_connection_resume(listener);
+    
+    dispatch_main();
+    exit(EXIT_FAILURE);
+}
+
diff --git a/securityd_service/securityd_service/securityd_service.h b/securityd_service/securityd_service/securityd_service.h
new file mode 100644
index 0000000..d4a6e72
--- /dev/null
+++ b/securityd_service/securityd_service/securityd_service.h
@@ -0,0 +1,30 @@
+/* Copyright (c) 2013 Apple Inc. All rights reserved. */
+
+#ifndef securityd_service_securityd_service_h
+#define securityd_service_securityd_service_h
+
+#define SECURITYD_SERVICE_NAME "com.apple.securitydservice"
+
+#define SERVICE_XPC_REQUEST     "_request"
+#define SERVICE_XPC_RC          "_rc"
+#define SERVICE_XPC_KEY         "_key"
+#define SERVICE_XPC_SECRET      "_secret"
+#define SERVICE_XPC_SECRET_NEW  "_secret_new"
+#define SERVICE_XPC_CONTEXT     "_context"
+#define SERVICE_XPC_LOCKED      "_locked"
+#define SERVICE_XPC_NO_PIN      "_no_pin"
+
+enum {
+    SERVICE_STASH_SET_KEY = 1,
+    SERVICE_STASH_GET_KEY,
+    SERVICE_STASH_BLOB,
+    SERVICE_KB_LOAD,
+    SERVICE_KB_UNLOCK,
+    SERVICE_KB_LOCK,
+    SERVICE_KB_CHANGE_SECRET,
+    SERVICE_KB_CREATE,
+    SERVICE_KB_IS_LOCKED,
+    SERVICE_KB_RESET
+};
+
+#endif
diff --git a/securityd_service/securityd_service/securityd_service_client.c b/securityd_service/securityd_service/securityd_service_client.c
new file mode 100644
index 0000000..b27ba18
--- /dev/null
+++ b/securityd_service/securityd_service/securityd_service_client.c
@@ -0,0 +1,216 @@
+/* Copyright (c) 2013 Apple Inc. All rights reserved. */
+
+#include "securityd_service.h"
+#include "securityd_service_client.h"
+#include <xpc/xpc.h>
+#include <dispatch/dispatch.h>
+#include <syslog.h>
+#include <AssertMacros.h>
+
+static xpc_connection_t
+_service_get_connection()
+{
+    static dispatch_once_t onceToken;
+    static xpc_connection_t connection = NULL;
+    
+    dispatch_once(&onceToken, ^{
+        connection = xpc_connection_create_mach_service(SECURITYD_SERVICE_NAME, NULL, XPC_CONNECTION_MACH_SERVICE_PRIVILEGED);
+        require(connection, done);
+        
+        xpc_connection_set_event_handler(connection, ^(xpc_object_t event) {
+            if (xpc_get_type(event) == XPC_TYPE_ERROR) {
+                if (event == XPC_ERROR_CONNECTION_INVALID) {
+                    syslog(LOG_ERR, "securityd_service not available");
+                }
+                // XPC_ERROR_CONNECTION_INTERRUPTED
+                // XPC_ERROR_TERMINATION_IMMINENT
+            } else {
+                char * desc = xpc_copy_description(event);
+                syslog(LOG_ERR, "securityd_service should never get messages on this connection: %s", desc);
+                free(desc);
+            }
+        });
+        
+        xpc_connection_resume(connection);
+    done:
+        return;
+    });
+
+    return connection;
+}
+
+static int
+_service_send_msg(service_context_t *context, xpc_object_t message, xpc_object_t * reply_out)
+{
+    int rc = KB_GeneralError;
+    xpc_object_t reply = NULL;
+    xpc_connection_t conn = NULL;
+    
+    require(context, done);
+    require(message, done);
+    conn = _service_get_connection();
+    require(conn, done);
+    
+    xpc_dictionary_set_data(message, SERVICE_XPC_CONTEXT, context, sizeof(service_context_t));
+    
+    reply = xpc_connection_send_message_with_reply_sync(conn, message);
+    require(reply, done);
+    require(xpc_get_type(reply) != XPC_TYPE_ERROR, done);
+    
+    rc = (int)xpc_dictionary_get_int64(reply, SERVICE_XPC_RC);
+    
+    if (reply_out) {
+        *reply_out = reply;
+        reply = NULL;
+    }
+    
+done:
+    if (reply) xpc_release(reply);
+    return rc;
+}
+
+int
+_service_client_send_secret(service_context_t *context, uint64_t request, const void * secret, int secret_len, const void * new_secret, int new_secret_len)
+{
+    int rc = KB_GeneralError;
+    xpc_object_t message = NULL;
+    
+    message = xpc_dictionary_create(NULL, NULL, 0);
+    require_quiet(message, done);
+    
+    xpc_dictionary_set_uint64(message, SERVICE_XPC_REQUEST, request);
+    if (secret) {
+        xpc_dictionary_set_data(message, SERVICE_XPC_SECRET, secret, secret_len);
+    }
+    
+    if (new_secret) {
+        xpc_dictionary_set_data(message, SERVICE_XPC_SECRET_NEW, new_secret, new_secret_len);
+    }
+
+    rc = _service_send_msg(context, message, NULL);
+    
+done:
+    if (message) xpc_release(message);
+    return rc;
+}
+
+int
+service_client_kb_create(service_context_t *context, const void * secret, int secret_len)
+{
+    return _service_client_send_secret(context, SERVICE_KB_CREATE, secret, secret_len, NULL, 0);
+}
+
+int
+service_client_kb_load(service_context_t *context)
+{
+    return _service_client_send_secret(context, SERVICE_KB_LOAD, NULL, 0, NULL, 0);
+    }
+    
+int
+service_client_kb_unlock(service_context_t *context, const void * secret, int secret_len)
+{
+    return _service_client_send_secret(context, SERVICE_KB_UNLOCK, secret, secret_len, NULL, 0);
+}
+
+int
+service_client_kb_lock(service_context_t *context)
+{
+    return _service_client_send_secret(context, SERVICE_KB_LOCK, NULL, 0, NULL, 0);
+}
+
+int
+service_client_kb_change_secret(service_context_t *context, const void * secret, int secret_len, const void * new_secret, int new_secret_len)
+{
+    return _service_client_send_secret(context, SERVICE_KB_CHANGE_SECRET, secret, secret_len, new_secret, new_secret_len);
+}
+
+int
+service_client_kb_reset(service_context_t *context, const void * secret, int secret_len)
+{
+    return _service_client_send_secret(context, SERVICE_KB_RESET, secret, secret_len, NULL, 0);
+}
+
+int service_client_kb_is_locked(service_context_t *context, bool *locked, bool *no_pin)
+{
+    int rc = KB_GeneralError;
+    xpc_object_t message = NULL;
+    xpc_object_t reply = NULL;
+
+    if (locked) *locked = false;
+    if (no_pin) *no_pin = false;
+
+    message = xpc_dictionary_create(NULL, NULL, 0);
+    require_quiet(message, done);
+
+    xpc_dictionary_set_uint64(message, SERVICE_XPC_REQUEST, SERVICE_KB_IS_LOCKED);
+
+    rc = _service_send_msg(context, message, &reply);
+
+    if (rc == KB_Success) {
+        if (locked) {
+            *locked = xpc_dictionary_get_bool(reply, SERVICE_XPC_LOCKED);
+        }
+        if (no_pin) {
+            *no_pin = xpc_dictionary_get_bool(reply, SERVICE_XPC_NO_PIN);
+        }
+    }
+
+done:
+    if (message) xpc_release(message);
+    if (reply) xpc_release(reply);
+    return rc;
+}
+
+int
+service_client_stash_set_key(service_context_t *context, const void * key, int key_len)
+{
+    int rc = KB_GeneralError;
+    xpc_object_t message = NULL;
+    
+    message = xpc_dictionary_create(NULL, NULL, 0);
+    require_quiet(message, done);
+    
+    xpc_dictionary_set_uint64(message, SERVICE_XPC_REQUEST, SERVICE_STASH_SET_KEY);
+    
+    if (key)
+        xpc_dictionary_set_data(message, SERVICE_XPC_KEY, key, key_len);
+    
+    rc = _service_send_msg(context, message, NULL);
+    
+done:
+    if (message) xpc_release(message);
+    return rc;
+}
+
+int
+service_client_stash_get_key(service_context_t *context, void ** key, int * key_len)
+{
+    int rc = KB_GeneralError;
+    xpc_object_t message = NULL;
+    xpc_object_t reply = NULL;
+    
+    require(key, done);
+    require(key_len, done);
+    
+    message = xpc_dictionary_create(NULL, NULL, 0);
+    require_quiet(message, done);
+    
+    xpc_dictionary_set_uint64(message, SERVICE_XPC_REQUEST, SERVICE_STASH_GET_KEY);
+    
+    rc = _service_send_msg(context, message, &reply);
+    
+    if (rc == KB_Success) {
+        size_t data_len = 0;
+        const void * data = xpc_dictionary_get_data(reply, SERVICE_XPC_KEY, &data_len);
+        if (data) {
+            *key = calloc(1u, data_len);
+            memcpy(*key, data, data_len);
+            *key_len = (int)data_len;
+        }
+    }
+    
+done:
+    if (message) xpc_release(message);
+    if (reply) xpc_release(reply);
+    return rc;
+}
diff --git a/securityd_service/securityd_service/securityd_service_client.h b/securityd_service/securityd_service/securityd_service_client.h
new file mode 100644
index 0000000..ca9b0c0
--- /dev/null
+++ b/securityd_service/securityd_service/securityd_service_client.h
@@ -0,0 +1,45 @@
+/* Copyright (c) 2013 Apple Inc. All rights reserved. */
+
+#ifndef __SECURITYD_SERVICE_CLIENT_H
+#define __SECURITYD_SERVICE_CLIENT_H
+
+#if defined(__cplusplus)
+extern "C" {
+#endif
+
+#include <bsm/audit.h>
+#include <mach/message.h>
+#include <stdbool.h>
+    
+enum {
+    KB_Success      = 0,
+    KB_GeneralError,
+    KB_BagNotFound,
+    KB_BagError,
+    KB_BagNotLoaded,
+    KB_BagExists,
+    KB_InvalidSession
+};
+
+typedef struct {
+    au_asid_t s_id;
+    uid_t s_uid;
+    audit_token_t procToken;
+} service_context_t;
+    
+int service_client_kb_create(service_context_t *context, const void * secret, int secret_len);
+int service_client_kb_load(service_context_t *context);
+int service_client_kb_unlock(service_context_t *context, const void * secret, int secret_len);
+int service_client_kb_lock(service_context_t *context);
+int service_client_kb_change_secret(service_context_t *context, const void * secret, int secret_len, const void * new_secret, int new_secret_len);
+int service_client_kb_is_locked(service_context_t *context, bool *locked, bool *no_pin);
+int service_client_kb_reset(service_context_t *context, const void * secret, int secret_len);
+
+int service_client_stash_set_key(service_context_t *context, const void * key, int key_len);
+int service_client_stash_get_key(service_context_t *context, void ** key, int * key_len);
+
+#if defined(__cplusplus)
+}
+#endif
+
+#endif // __SECURITYD_SERVICE_CLIENT_H
diff --git a/securityd_service/securityd_service/service.entitlements b/securityd_service/securityd_service/service.entitlements
new file mode 100644
index 0000000..b4ad641
--- /dev/null
+++ b/securityd_service/securityd_service/service.entitlements
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>com.apple.keystore.stash.access</key>
+	<true/>
+	<key>com.apple.keystore.device</key>
+	<true/>
+	<key>com.apple.private.securityd.keychain</key>
+	<true/>
+	<key>com.apple.private.securityd.stash</key>
+	<true/>
+</dict>
+</plist>
diff --git a/securityd_service/securitydservicectrl/main.c b/securityd_service/securitydservicectrl/main.c
new file mode 100644
index 0000000..f8c3752
--- /dev/null
+++ b/securityd_service/securitydservicectrl/main.c
@@ -0,0 +1,114 @@
+//
+//  main.c
+//  securitydservicectrl
+//
+//  Created by Wade Benson on 12/2/12.
+//  Copyright (c) 2012 Apple. All rights reserved.
+//
+
+#include "securityd_service.h"
+
+#include <stdio.h>
+#include <xpc/xpc.h>
+#include <dispatch/dispatch.h>
+#include <AssertMacros.h>
+#include <CoreFoundation/CoreFoundation.h>
+#include <Security/SecKeychainPriv.h>
+
+static inline char *
+hextostr(const uint8_t *buf, size_t len, char *hexbuf)
+{
+    char *s = hexbuf;
+    size_t i;
+    static const char hexdigits[] = "0123456789abcdef";
+    for (i = 0; i < len; i++) {
+        *s++ = hexdigits[buf[i]>>4];
+        *s++ = hexdigits[buf[i]&0xf];
+    }
+    *s = '\0';
+    return hexbuf;
+}
+
+int main(int argc, const char * argv[])
+{
+    uint64_t action = 0;
+    OSStatus status = noErr;
+    uint8_t testkey[128] = "\xde\xad\xbe\xef\xde\xad\xbe\xef\xde\xad\xbe\xef\xde\xad\xbe\xef";
+    xpc_connection_t connection = xpc_connection_create_mach_service(SECURITYD_SERVICE_NAME, NULL, XPC_CONNECTION_MACH_SERVICE_PRIVILEGED);
+    
+    xpc_connection_set_event_handler(connection, ^(xpc_object_t event) {
+        if (xpc_get_type(event) == XPC_TYPE_ERROR) {
+            printf("XPC error\n");
+        }
+    });
+    xpc_connection_resume(connection);
+    
+    if (argc != 2) {
+        printf("Usage: securityservicectrl < get | set | stash | login | loginstash >\n");
+        return 1;
+    }
+    
+    if (strcmp(argv[1], "get") == 0) {
+        action = SERVICE_STASH_GET_KEY;
+        printf("Get key\n");
+        
+    } else if (strcmp(argv[1], "set") == 0) {
+        action = SERVICE_STASH_SET_KEY;
+        printf("Set key\n");
+        
+    } else if (strcmp(argv[1], "stash") == 0) {
+        action = SERVICE_STASH_BLOB;
+        printf("Stash\n");
+        
+    } else if (strcmp(argv[1], "login") == 0) {
+        printf("SecKeychainLogin() null passwd\n");
+        status = SecKeychainLogin((uint32) strlen("test"), "test", 0, NULL);
+        printf("Returned: %i\n", status);
+        return status ? 1 : 0;
+        
+    } else if (strcmp(argv[1], "loginstash") == 0) {
+        printf("SecKeychainStash()\n");
+        status = SecKeychainStash();
+        printf("Returned: %i\n", status);
+        return status ? 1 : 0;
+        
+    } else {
+        printf("%s not known\n", argv[1]);
+        return 1;
+    }
+
+    // Send
+    xpc_object_t message = xpc_dictionary_create(NULL, NULL, 0);
+    xpc_dictionary_set_uint64(message, SERVICE_XPC_REQUEST, action);
+    
+    if (action == SERVICE_STASH_SET_KEY)
+        xpc_dictionary_set_data(message, SERVICE_XPC_KEY, testkey, 16);
+    
+    xpc_object_t reply = xpc_connection_send_message_with_reply_sync(connection, message);
+    require_action(reply != NULL, done, status = -1);
+    require_action(xpc_get_type(reply) != XPC_TYPE_ERROR, done, status = -1);
+    
+    if (action == SERVICE_STASH_GET_KEY) {
+        size_t len = 0;
+        const uint8_t *keydata = xpc_dictionary_get_data(reply, SERVICE_XPC_KEY, &len);
+        if (keydata) {
+            char buf[sizeof(testkey) + 1];
+            printf("\tkey = %s\n", hextostr(keydata, len > sizeof(testkey) ? sizeof(testkey) : len, buf));
+        }
+    }
+    
+    status = (OSStatus)xpc_dictionary_get_int64(reply, SERVICE_XPC_RC);
+
+done:
+    if (message)
+        xpc_release(message);
+    if (reply)
+        xpc_release(reply);
+    if (connection)
+        xpc_release(connection);
+
+    printf("Returned: %i\n", status);
+    
+    return status ? 1 : 0;
+}
+
diff --git a/src/SharedMemoryServer.cpp b/src/SharedMemoryServer.cpp
index 2c82c68..699542c 100644
--- a/src/SharedMemoryServer.cpp
+++ b/src/SharedMemoryServer.cpp
@@ -6,6 +6,7 @@
 #include <string>
 #include <sys/stat.h>
 #include <security_utilities/crc.h>
+#include <unistd.h>
 
 static const char* kPrefix = "/private/var/db/mds/messages/se_";
 
diff --git a/src/acl_keychain.cpp b/src/acl_keychain.cpp
index e783cfa..72a248f 100644
--- a/src/acl_keychain.cpp
+++ b/src/acl_keychain.cpp
@@ -90,33 +90,68 @@ bool KeychainPromptAclSubject::validate(const AclValidationContext &context,
 			StLock<Mutex> _(process);
 			Server::active().longTermActivity();
 			clientCode = process.currentGuest();
-			if (clientCode)
+			if (clientCode) {
 				validation = SecCodeCheckValidity(clientCode, kSecCSDefaultFlags, NULL);
-			switch (validation) {
-			case noErr:							// client is signed and valid
-				secdebug("kcacl", "client is valid, proceeding");
+            }
+			
+			switch (validation)
+			{
+				case noErr:							// client is signed and valid
+				{
+					bool forceAllow = false;
+					secdebug("kcacl", "client is valid, proceeding");
+					CFDictionaryRef codeDictionary = NULL;
+					if (errSecSuccess == SecCodeCopySigningInformation(clientCode, kSecCSDefaultFlags, &codeDictionary)) {
+						CFTypeRef entitlementsDictionary = NULL;
+						entitlementsDictionary = CFDictionaryGetValue(codeDictionary, kSecCodeInfoEntitlementsDict);
+						if (NULL != entitlementsDictionary) {
+							if (CFGetTypeID(entitlementsDictionary) == CFDictionaryGetTypeID()) {
+								CFTypeRef migrationEntitlement = CFDictionaryGetValue((CFDictionaryRef)entitlementsDictionary, CFSTR("com.apple.private.security.allow-migration"));
+								if (NULL != migrationEntitlement) {
+									if (CFGetTypeID(migrationEntitlement) == CFBooleanGetTypeID()) {
+										if (migrationEntitlement == kCFBooleanTrue) {
+											secdebug("kcacl", "client has migration entitlement, allowing");
+											forceAllow = true;
+										}
+									}
+								}
+							}
+						}
+						CFRelease(codeDictionary);
+					}
+					if (forceAllow) {
+						return true;
+					}
+				}
 				break;
-			case errSecCSUnsigned:				// client is not signed
-				if (!(mode & CSSM_ACL_KEYCHAIN_PROMPT_UNSIGNED)) {
-					secdebug("kcacl", "client is unsigned, suppressing prompt");
-					return false;
+					
+				case errSecCSUnsigned:
+				{			// client is not signed
+					if (!(mode & CSSM_ACL_KEYCHAIN_PROMPT_UNSIGNED)) {
+						secdebug("kcacl", "client is unsigned, suppressing prompt");
+						return false;
+					}
 				}
 				break;
-			case errSecCSSignatureFailed:		// client signed but signature is broken
-			case errSecCSGuestInvalid:			// client signed but dynamically invalid
-			case errSecCSStaticCodeNotFound:	// client not on disk (or unreadable)
-				if (!(mode & CSSM_ACL_KEYCHAIN_PROMPT_INVALID)) {
-					secdebug("kcacl", "client is invalid, suppressing prompt");
-					Syslog::info("suppressing keychain prompt for invalidly signed client %s(%d)",
+				
+				case errSecCSSignatureFailed:		// client signed but signature is broken
+				case errSecCSGuestInvalid:			// client signed but dynamically invalid
+				case errSecCSStaticCodeNotFound:	// client not on disk (or unreadable)
+				{
+					if (!(mode & CSSM_ACL_KEYCHAIN_PROMPT_INVALID)) {
+						secdebug("kcacl", "client is invalid, suppressing prompt");
+						Syslog::info("suppressing keychain prompt for invalidly signed client %s(%d)",
+							process.getPath().c_str(), process.pid());
+						return false;
+					}
+					Syslog::info("attempting keychain prompt for invalidly signed client %s(%d)",
 						process.getPath().c_str(), process.pid());
-					return false;
 				}
-				Syslog::info("attempting keychain prompt for invalidly signed client %s(%d)",
-					process.getPath().c_str(), process.pid());
 				break;
-			default:							// something else went wrong
-				secdebug("kcacl", "client validation failed rc=%d, suppressing prompt", int32_t(validation));
-				return false;
+
+				default:							// something else went wrong
+					secdebug("kcacl", "client validation failed rc=%d, suppressing prompt", int32_t(validation));
+					return false;
 			}
 		}
 		
diff --git a/src/acls.cpp b/src/acls.cpp
index 6d885bb..2c2cb5b 100644
--- a/src/acls.cpp
+++ b/src/acls.cpp
@@ -37,6 +37,8 @@
 #include <security_cdsa_utilities/acl_password.h>
 #include <security_cdsa_utilities/acl_threshold.h>
 
+#include <sys/sysctl.h>
+#include <security_utilities/logging.h>
 
 //
 // SecurityServerAcl is virtual
@@ -87,18 +89,6 @@ void SecurityServerAcl::changeOwner(const AclOwnerPrototype &newOwner,
 void SecurityServerAcl::validate(AclAuthorization auth, const AccessCredentials *cred, Database *db)
 {
     SecurityServerEnvironment env(*this, db);
-
-	{
-		// Migrator gets a free ride
-		Process &thisProcess = Server::process();
-		StLock<Mutex> _(thisProcess);
-		SecCodeRef clientRef = thisProcess.currentGuest();
-		if (clientRef) {
-			std::string clientPath = codePath(clientRef);
-			if (clientPath == std::string("/usr/libexec/KeychainMigrator"))
-				return;
-		}
-	}
 	
 	StLock<Mutex> objectSequence(aclSequence);
 	StLock<Mutex> processSequence(Server::process().aclSequence);
diff --git a/src/agentquery.cpp b/src/agentquery.cpp
index b2e25ab..c3df404 100644
--- a/src/agentquery.cpp
+++ b/src/agentquery.cpp
@@ -31,12 +31,51 @@
 #include <Security/AuthorizationTags.h>
 #include <Security/AuthorizationTagsPriv.h>
 #include <Security/checkpw.h>
+#include <Security/Security.h>
 #include <System/sys/fileport.h>
 #include <bsm/audit.h>
 #include <bsm/audit_uevents.h>      // AUE_ssauthint
 #include <security_utilities/logging.h>
 #include <security_utilities/mach++.h>
 #include <stdlib.h>
+#include <xpc/xpc.h>
+#include <xpc/private.h>
+#include "securityd_service/securityd_service/securityd_service_client.h"
+
+#define SECURITYAGENT_BOOTSTRAP_NAME_BASE       "com.apple.security.agentMain"
+#define SECURITYAGENT_STUB_BOOTSTRAP_NAME_BASE       "com.apple.security.agentStub"
+#define AUTHORIZATIONHOST_BOOTSTRAP_NAME_BASE   "com.apple.security.authhost"
+
+#define AUTH_XPC_ITEM_NAME  "_item_name"
+#define AUTH_XPC_ITEM_FLAGS "_item_flags"
+#define AUTH_XPC_ITEM_VALUE "_item_value"
+#define AUTH_XPC_ITEM_TYPE  "_item_type"
+
+#define AUTH_XPC_REQUEST_METHOD_KEY "_agent_request_key"
+#define AUTH_XPC_REQUEST_METHOD_CREATE "_agent_request_create"
+#define AUTH_XPC_REQUEST_METHOD_INVOKE "_agent_request_invoke"
+#define AUTH_XPC_REQUEST_METHOD_DEACTIVATE "_agent_request_deactivate"
+#define AUTH_XPC_REQUEST_METHOD_DESTROY "_agent_request_destroy"
+#define AUTH_XPC_REPLY_METHOD_KEY "_agent_reply_key"
+#define AUTH_XPC_REPLY_METHOD_RESULT "_agent_reply_result"
+#define AUTH_XPC_REPLY_METHOD_INTERRUPT "_agent_reply_interrupt"
+#define AUTH_XPC_REPLY_METHOD_CREATE "_agent_reply_create"
+#define AUTH_XPC_REPLY_METHOD_DEACTIVATE "_agent_reply_deactivate"
+#define AUTH_XPC_PLUGIN_NAME "_agent_plugin"
+#define AUTH_XPC_MECHANISM_NAME "_agent_mechanism"
+#define AUTH_XPC_HINTS_NAME "_agent_hints"
+#define AUTH_XPC_CONTEXT_NAME "_agent_context"
+#define AUTH_XPC_IMMUTABLE_HINTS_NAME "_agent_immutable_hints"
+#define AUTH_XPC_REQUEST_INSTANCE "_agent_instance"
+#define AUTH_XPC_REPLY_RESULT_VALUE "_agent_reply_result_value"
+#define AUTH_XPC_AUDIT_SESSION_PORT "_agent_audit_session_port"
+#define AUTH_XPC_BOOTSTRAP_PORT "_agent_bootstrap_port"
+#define AUTH_XPC_SESSION_UUID "_agent_session_uuid"
+#define AUTH_XPC_SESSION_PREFS "_agent_session_prefs"
+#define AUTH_XPC_SESSION_INPUT_METHOD "_agent_session_inputMethod"
+
+#define UUID_INITIALIZER_FROM_SESSIONID(sessionid) \
+{ 0,0,0,0, 0,0,0,0, 0,0,0,0, (unsigned char)((0xff000000 & (sessionid))>>24), (unsigned char)((0x00ff0000 & (sessionid))>>16), (unsigned char)((0x0000ff00 & (sessionid))>>8),  (unsigned char)((0x000000ff & (sessionid))) }
 
 //
 // NOSA support functions. This is a test mode where the SecurityAgent
@@ -77,11 +116,11 @@ static void getNoSA(char *buffer, size_t bufferSize, const char *fmt, ...)
 
 // SecurityAgentConnection
 
-SecurityAgentConnection::SecurityAgentConnection(const AuthHostType type, Session &session) 
-    : mAuthHostType(type), 
-    mHostInstance(session.authhost(mAuthHostType)), 
-    mConnection(&Server::connection()),
-    mAuditToken(Server::connection().auditToken())
+SecurityAgentConnection::SecurityAgentConnection(const AuthHostType type, Session &session)
+: mAuthHostType(type),
+mHostInstance(session.authhost(mAuthHostType)),
+mConnection(&Server::connection()),
+mAuditToken(Server::connection().auditToken())
 {
 	// this may take a while
 	Server::active().longTermActivity();
@@ -94,7 +133,7 @@ SecurityAgentConnection::~SecurityAgentConnection()
 	mConnection->useAgent(NULL);
 }
 
-void 
+void
 SecurityAgentConnection::activate()
 {
     secdebug("SecurityAgentConnection", "activate(%p)", this);
@@ -107,11 +146,11 @@ SecurityAgentConnection::activate()
     // send the the userPrefs to SecurityAgent
     if (mAuthHostType == securityAgent || mAuthHostType == userAuthHost) {
 		CFRef<CFDataRef> userPrefs(mHostInstance->session().copyUserPrefs());
-		if (NULL != userPrefs)
+		if (0 != userPrefs)
 		{
 			FILE *mbox = NULL;
 			int fd = 0;
-			mbox = tmpfile();		
+			mbox = tmpfile();
 			if (NULL != mbox)
 			{
 				fd = dup(fileno(mbox));
@@ -139,7 +178,7 @@ SecurityAgentConnection::activate()
     }
     
 	mConnection->useAgent(this);
-	try 
+	try
     {
         StLock<Mutex> _(*mHostInstance);
 		
@@ -154,13 +193,13 @@ SecurityAgentConnection::activate()
         SecurityAgent::Client::activate(mPort);
         
         secdebug("SecurityAgentConnection", "%p activated", this);
-	} 
-    catch (MacOSError &err) 
+	}
+    catch (MacOSError &err)
     {
 		mConnection->useAgent(NULL);	// guess not
         Syslog::error("SecurityAgentConnection: error activating %s instance %p",
-                      mAuthHostType == privilegedAuthHost 
-                      ? "authorizationhost" 
+                      mAuthHostType == privilegedAuthHost
+                      ? "authorizationhost"
                       : "SecurityAgent", this);
 		throw;
 	}
@@ -196,49 +235,145 @@ SecurityAgentConnection::terminate()
 }
 
 
-// SecurityAgentTransaction
+// SecurityAgentConnection
 
-SecurityAgentTransaction::SecurityAgentTransaction(const AuthHostType type, Session &session, bool startNow) 
-    : SecurityAgentConnection(type, session), 
-    mStarted(false)
+SecurityAgentXPCConnection::SecurityAgentXPCConnection(const AuthHostType type, Session &session)
+: mAuthHostType(type),
+mHostInstance(session.authhost(mAuthHostType)),
+mSession(session),
+mConnection(&Server::connection()),
+mAuditToken(Server::connection().auditToken())
 {
-    secdebug("SecurityAgentTransaction", "New SecurityAgentTransaction(%p)", this);
-    activate();     // start agent now, or other SAConnections will kill and spawn new agents
-    if (startNow)
-        start();
+	// this may take a while
+	Server::active().longTermActivity();
+    secdebug("SecurityAgentConnection", "new SecurityAgentConnection(%p)", this);
+    mXPCConnection = NULL;
+    mNobodyUID = -2;
+    struct passwd *pw = getpwnam("nobody");
+    if (NULL != pw) {
+        mNobodyUID = pw->pw_uid;
+    }
 }
 
-SecurityAgentTransaction::~SecurityAgentTransaction()
+SecurityAgentXPCConnection::~SecurityAgentXPCConnection()
 {
-    try { end(); } catch(...) {}
-    secdebug("SecurityAgentTransaction", "Destroying %p", this);
+    secdebug("SecurityAgentConnection", "SecurityAgentConnection(%p) dying", this);
+	mConnection->useAgent(NULL);
+    
+    // If a connection has been established, we need to tear it down.
+    if (NULL != mXPCConnection) {
+        // Tearing this down is a multi-step process. First, request a cancellation.
+        // This is safe even if the connection is already in the cancelled state.
+        xpc_connection_cancel(mXPCConnection);
+        
+        // Then release the XPC connection
+        xpc_release(mXPCConnection);
+        mXPCConnection = NULL;
+
+        if (NULL != mXPCStubConnection) {
+            // We may or may not have one of these
+            xpc_release(mXPCStubConnection);
+            mXPCStubConnection = NULL;
+        }
+    }
 }
 
-void
-SecurityAgentTransaction::start()
+bool SecurityAgentXPCConnection::inDarkWake()
 {
-    secdebug("SecurityAgentTransaction", "start(%p)", this);
-    MacOSError::check(SecurityAgentQuery::Client::startTransaction(mPort));
-    mStarted = true;
-    secdebug("SecurityAgentTransaction", "started(%p)", this);
+	return mSession.server().inDarkWake();
 }
 
-void 
-SecurityAgentTransaction::end()
+void
+SecurityAgentXPCConnection::activate(bool ignoreUid)
 {
-    if (started())
-    {
-        MacOSError::check(SecurityAgentQuery::Client::endTransaction(mPort));
-        mStarted = false;
+    secdebug("SecurityAgentConnection", "activate(%p)", this);
+    
+	mConnection->useAgent(this);
+    if (mXPCConnection != NULL) {
+        // If we already have an XPC connection, there's nothing to do.
+        return;
     }
-    secdebug("SecurityAgentTransaction", "End SecurityAgentTransaction(%p)", this);
+	try
+    {
+        if (mAuthHostType == securityAgent) {
+            uuid_t sessionUUID = UUID_INITIALIZER_FROM_SESSIONID(mSession.sessionId());
+            // Yes, these need to be throws, as we're still in securityd, and thus still have to do flow control with exceptions.
+            if (!(mSession.attributes() & sessionHasGraphicAccess))
+                CssmError::throwMe(CSSM_ERRCODE_NO_USER_INTERACTION);
+            if (inDarkWake())
+                CssmError::throwMe(CSSM_ERRCODE_IN_DARK_WAKE);
+            uid_t targetUid = mHostInstance->session().originatorUid();
+            secdebug("SecurityAgentXPCConnection","Retrieved UID %d for this session", targetUid);
+            if ((int32_t)targetUid != -1) {
+                mXPCStubConnection = xpc_connection_create_mach_service(SECURITYAGENT_STUB_BOOTSTRAP_NAME_BASE, NULL, 0);
+                xpc_connection_set_target_uid(mXPCStubConnection, targetUid);
+                secdebug("SecurityAgentXPCConnection", "Creating a security agent stub");
+                xpc_connection_set_event_handler(mXPCStubConnection, ^(xpc_object_t object){}); // Yes, this is a dummy handler, we never ever care about any responses from the stub. It can die in a fire for all I care.
+                xpc_connection_resume(mXPCStubConnection);
+                
+                xpc_object_t wakeupMessage = xpc_dictionary_create(NULL, NULL, 0);
+                xpc_dictionary_set_data(wakeupMessage, AUTH_XPC_SESSION_UUID, sessionUUID, sizeof(uuid_t));
+                xpc_object_t responseMessage = xpc_connection_send_message_with_reply_sync(mXPCStubConnection, wakeupMessage);
+                if (xpc_get_type(responseMessage) == XPC_TYPE_DICTIONARY) {
+                    secdebug("SecurityAgentXPCConnection", "Valid response received from stub");
+                } else {
+                    secdebug("SecurityAgentXPCConnection", "Error response received from stub");
+                }
+                xpc_release(wakeupMessage);
+                xpc_release(responseMessage);
+            }
+            
+            mXPCConnection = xpc_connection_create_mach_service(SECURITYAGENT_BOOTSTRAP_NAME_BASE, NULL,0);
+            xpc_connection_set_instance(mXPCConnection, sessionUUID);
+            secdebug("SecurityAgentXPCConnection", "Creating a security agent");
+        } else {
+            mXPCConnection = xpc_connection_create_mach_service(AUTHORIZATIONHOST_BOOTSTRAP_NAME_BASE, NULL, 0);
+            secdebug("SecurityAgentXPCConnection", "Creating a standard authhost");
+        }
+        
+        xpc_connection_set_event_handler(mXPCConnection, ^(xpc_object_t object) {
+            if (xpc_get_type(object) == XPC_TYPE_ERROR) {
+                secdebug("SecurityAgentXPCConnection", "error during xpc: %s", xpc_dictionary_get_string(object, XPC_ERROR_KEY_DESCRIPTION));
+            }
+        });
+        
+        xpc_connection_resume(mXPCConnection);
+        
+        secdebug("SecurityAgentXPCConnection", "%p activated", this);
+	}
+    catch (MacOSError &err)
+    {
+		mConnection->useAgent(NULL);	// guess not
+        Syslog::error("SecurityAgentConnection: error activating %s instance %p",
+                      mAuthHostType == privilegedAuthHost
+                      ? "authorizationhost"
+                      : "SecurityAgent", this);
+		throw;
+	}
+	
+    secdebug("SecurityAgentXPCConnection", "contact didn't throw (%p)", this);
 }
 
+void
+SecurityAgentXPCConnection::reconnect()
+{
+}
+
+void
+SecurityAgentXPCConnection::terminate()
+{
+	activate(false);
+    
+    // @@@ This happens already in the destructor; presumably we do this to tear things down orderly
+	mConnection->useAgent(NULL);
+}
+
+
 using SecurityAgent::Reason;
 using namespace Authorization;
 
-SecurityAgentQuery::SecurityAgentQuery(const AuthHostType type, Session &session) 
-    : SecurityAgentConnection(type, session)
+SecurityAgentQuery::SecurityAgentQuery(const AuthHostType type, Session &session)
+: SecurityAgentConnection(type, session)
 {
     secdebug("SecurityAgentQuery", "new SecurityAgentQuery(%p)", this);
 }
@@ -246,16 +381,16 @@ SecurityAgentQuery::SecurityAgentQuery(const AuthHostType type, Session &session
 SecurityAgentQuery::~SecurityAgentQuery()
 {
     secdebug("SecurityAgentQuery", "SecurityAgentQuery(%p) dying", this);
-
+    
 #if defined(NOSA)
 	if (getenv("NOSA")) {
 		printf(" [query done]\n");
 		return;
 	}
-#endif		
-
+#endif
+    
     if (SecurityAgent::Client::state() != SecurityAgent::Client::dead)
-        destroy(); 
+        destroy();
 }
 
 void
@@ -268,7 +403,7 @@ SecurityAgentQuery::inferHints(Process &thisProcess)
 			guestPath = codePath(clientCode);
 	}
 	AuthItemSet processHints = clientHints(SecurityAgent::bundle, guestPath,
-		thisProcess.pid(), thisProcess.uid());
+                                           thisProcess.pid(), thisProcess.uid());
 	mClientHints.insert(processHints.begin(), processHints.end());
 }
 
@@ -288,28 +423,28 @@ SecurityAgentQuery::readChoice()
 	AuthItem *allowAction = outContext().find(AGENT_CONTEXT_ALLOW);
 	if (allowAction)
 	{
-	   string allowString;
-		if (allowAction->getString(allowString) 
-		      && (allowString == "YES"))
-		          allow = true;
+        string allowString;
+		if (allowAction->getString(allowString)
+            && (allowString == "YES"))
+            allow = true;
 	}
 	
 	AuthItem *rememberAction = outContext().find(AGENT_CONTEXT_REMEMBER_ACTION);
 	if (rememberAction)
 	{
-	   string rememberString;
-	   if (rememberAction->getString(rememberString)
-	           && (rememberString == "YES"))
-	               remember = true;
+        string rememberString;
+        if (rememberAction->getString(rememberString)
+            && (rememberString == "YES"))
+            remember = true;
 	}
-}	
+}
 
 void
 SecurityAgentQuery::disconnect()
 {
     SecurityAgent::Client::destroy();
 }
-    
+
 void
 SecurityAgentQuery::terminate()
 {
@@ -332,6 +467,284 @@ SecurityAgentQuery::create(const char *pluginId, const char *mechanismId, const
 	if (status) MacOSError::throwMe(status);
 }
 
+ModuleNexus<RecursiveMutex> gAllXPCClientsMutex;
+ModuleNexus<set<SecurityAgentXPCQuery*> > allXPCClients;
+
+void
+SecurityAgentXPCQuery::killAllXPCClients()
+{
+    // grab the lock for the client list -- we need to make sure no one modifies the structure while we are iterating it.
+    StLock<Mutex> _(gAllXPCClientsMutex());
+    
+    set<SecurityAgentXPCQuery*>::iterator clientIterator = allXPCClients().begin();
+    while (clientIterator != allXPCClients().end())
+    {
+        set<SecurityAgentXPCQuery*>::iterator thisClient = clientIterator++;
+        if ((*thisClient)->getTerminateOnSleep())
+        {
+            (*thisClient)->terminate();
+        }
+    }
+}
+
+
+SecurityAgentXPCQuery::SecurityAgentXPCQuery(const AuthHostType type, Session &session)
+: SecurityAgentXPCConnection(type, session), mAgentConnected(false), mTerminateOnSleep(false)
+{
+    secdebug("SecurityAgentXPCQuery", "new SecurityAgentXPCQuery(%p)", this);
+}
+
+SecurityAgentXPCQuery::~SecurityAgentXPCQuery()
+{
+    secdebug("SecurityAgentXPCQuery", "SecurityAgentXPCQuery(%p) dying", this);
+    if (mAgentConnected) {
+        this->disconnect();
+    }
+}
+
+void
+SecurityAgentXPCQuery::inferHints(Process &thisProcess)
+{
+    string guestPath;
+	if (SecCodeRef clientCode = thisProcess.currentGuest())
+		guestPath = codePath(clientCode);
+
+    AuthItemSet clientHints;
+    SecurityAgent::RequestorType type = SecurityAgent::bundle;
+    pid_t clientPid = thisProcess.pid();
+    uid_t clientUid = thisProcess.uid();
+    
+	clientHints.insert(AuthItemRef(AGENT_HINT_CLIENT_TYPE, AuthValueOverlay(sizeof(type), &type)));
+	clientHints.insert(AuthItemRef(AGENT_HINT_CLIENT_PATH, AuthValueOverlay(guestPath)));
+	clientHints.insert(AuthItemRef(AGENT_HINT_CLIENT_PID, AuthValueOverlay(sizeof(clientPid), &clientPid)));
+	clientHints.insert(AuthItemRef(AGENT_HINT_CLIENT_UID, AuthValueOverlay(sizeof(clientUid), &clientUid)));
+    
+
+	mClientHints.insert(clientHints.begin(), clientHints.end());
+
+    bool validSignature = thisProcess.checkAppleSigned();
+    AuthItemSet clientImmutableHints;
+    
+	clientImmutableHints.insert(AuthItemRef(AGENT_HINT_PROCESS_SIGNED, AuthValueOverlay(sizeof(validSignature), &validSignature)));
+
+	mImmutableHints.insert(clientImmutableHints.begin(), clientImmutableHints.end());
+}
+
+void SecurityAgentXPCQuery::addHint(const char *name, const void *value, UInt32 valueLen, UInt32 flags)
+{
+    AuthorizationItem item = { name, valueLen, const_cast<void *>(value), flags };
+    mClientHints.insert(AuthItemRef(item));
+}
+
+
+void
+SecurityAgentXPCQuery::readChoice()
+{
+    allow = false;
+    remember = false;
+    
+	AuthItem *allowAction = mOutContext.find(AGENT_CONTEXT_ALLOW);
+	if (allowAction)
+	{
+        string allowString;
+		if (allowAction->getString(allowString)
+            && (allowString == "YES"))
+            allow = true;
+	}
+	
+	AuthItem *rememberAction = mOutContext.find(AGENT_CONTEXT_REMEMBER_ACTION);
+	if (rememberAction)
+	{
+        string rememberString;
+        if (rememberAction->getString(rememberString)
+            && (rememberString == "YES"))
+            remember = true;
+	}
+}
+
+void
+SecurityAgentXPCQuery::disconnect()
+{
+    if (NULL != mXPCConnection) {
+        xpc_object_t requestObject = xpc_dictionary_create(NULL, NULL, 0);
+        xpc_dictionary_set_string(requestObject, AUTH_XPC_REQUEST_METHOD_KEY, AUTH_XPC_REQUEST_METHOD_DESTROY);
+        xpc_connection_send_message(mXPCConnection, requestObject);
+        xpc_release(requestObject);
+    }
+
+    StLock<Mutex> _(gAllXPCClientsMutex());
+    allXPCClients().erase(this);
+}
+
+void
+SecurityAgentXPCQuery::terminate()
+{
+    this->disconnect();
+}
+
+static void xpcArrayToAuthItemSet(AuthItemSet *setToBuild, xpc_object_t input) {
+    setToBuild->clear();
+    
+    xpc_array_apply(input,  ^bool(size_t index, xpc_object_t item) {
+        const char *name = xpc_dictionary_get_string(item, AUTH_XPC_ITEM_NAME);
+        
+        size_t length;
+        const void *data = xpc_dictionary_get_data(item, AUTH_XPC_ITEM_VALUE, &length);
+        void *dataCopy = malloc(length);
+        memcpy(dataCopy, data, length);
+        
+        uint64_t flags = xpc_dictionary_get_uint64(item, AUTH_XPC_ITEM_FLAGS);
+        AuthItemRef nextItem(name, AuthValueOverlay((uint32_t)length, dataCopy), (uint32_t)flags);
+        setToBuild->insert(nextItem);
+        memset(dataCopy, 0, length); // The authorization items contain things like passwords, so wiping clean is important.
+        free(dataCopy);
+        return true;
+    });
+}
+
+void
+SecurityAgentXPCQuery::create(const char *pluginId, const char *mechanismId, const SessionId inSessionId)
+{
+    bool ignoreUid = false;
+    
+    do {
+        activate(ignoreUid);
+        
+        mAgentConnected = false;
+        
+        xpc_object_t requestObject = xpc_dictionary_create(NULL, NULL, 0);
+        xpc_dictionary_set_string(requestObject, AUTH_XPC_REQUEST_METHOD_KEY, AUTH_XPC_REQUEST_METHOD_CREATE);
+        xpc_dictionary_set_string(requestObject, AUTH_XPC_PLUGIN_NAME, pluginId);
+        xpc_dictionary_set_string(requestObject, AUTH_XPC_MECHANISM_NAME, mechanismId);
+        
+        uid_t targetUid = Server::process().uid();
+        bool doSwitchAudit =  true; // (ignoreUid) || ((targetUid == 0) || (targetUid == mNobodyUID));
+        bool doSwitchBootstrap = true; // (ignoreUid) || ((targetUid == 0) || (targetUid == mNobodyUID));
+        
+        if (doSwitchAudit) {
+            mach_port_name_t jobPort;
+            if (0 == audit_session_port(mSession.sessionId(), &jobPort)) {
+                secdebug("SecurityAgentXPCQuery", "attaching an audit session port because the uid was %d", targetUid);
+                xpc_dictionary_set_mach_send(requestObject, AUTH_XPC_AUDIT_SESSION_PORT, jobPort);
+            }
+        }
+        
+        if (doSwitchBootstrap) {
+            secdebug("SecurityAgentXPCQuery", "attaching a bootstrap port because the uid was %d", targetUid);
+            MachPlusPlus::Bootstrap processBootstrap = Server::process().taskPort().bootstrap();
+            xpc_dictionary_set_mach_send(requestObject, AUTH_XPC_BOOTSTRAP_PORT, processBootstrap);
+        }
+        
+        xpc_object_t object = xpc_connection_send_message_with_reply_sync(mXPCConnection, requestObject);
+        if (xpc_get_type(object) == XPC_TYPE_DICTIONARY) {
+            const char *replyType = xpc_dictionary_get_string(object, AUTH_XPC_REPLY_METHOD_KEY);
+            if (0 == strcmp(replyType, AUTH_XPC_REPLY_METHOD_CREATE)) {
+                uint64_t status = xpc_dictionary_get_uint64(object, AUTH_XPC_REPLY_RESULT_VALUE);
+                if (status == kAuthorizationResultAllow) {
+                    mAgentConnected = true;
+                } else {
+                    secdebug("SecurityAgentXPCQuery", "plugin create failed in SecurityAgent");
+                    MacOSError::throwMe(errAuthorizationInternal);
+                }
+            }
+        } else if (xpc_get_type(object) == XPC_TYPE_ERROR) {
+            if (XPC_ERROR_CONNECTION_INVALID == object) {
+                // If we get an error before getting the create response, try again without the UID
+                if (ignoreUid) {
+                    secdebug("SecurityAgentXPCQuery", "failed to establish connection, no retries left");
+                    xpc_release(object);
+                    MacOSError::throwMe(errAuthorizationInternal);
+                } else {
+                    secdebug("SecurityAgentXPCQuery", "failed to establish connection, retrying with no UID");
+                    ignoreUid = true;
+                    xpc_release(mXPCConnection);
+                    mXPCConnection = NULL;
+                }
+            } else if (XPC_ERROR_CONNECTION_INTERRUPTED == object) {
+                // If we get an error before getting the create response, try again
+            }
+        }
+        xpc_release(object);
+        xpc_release(requestObject);
+    } while (!mAgentConnected);
+
+    StLock<Mutex> _(gAllXPCClientsMutex());
+    allXPCClients().insert(this);
+}
+
+static xpc_object_t authItemSetToXPCArray(AuthItemSet input) {
+    xpc_object_t outputArray = xpc_array_create(NULL, 0);
+    for (AuthItemSet::iterator i = input.begin(); i != input.end(); i++) {
+        AuthItemRef item = *i;
+        
+        xpc_object_t xpc_data = xpc_dictionary_create(NULL, NULL, 0);
+        xpc_dictionary_set_string(xpc_data, AUTH_XPC_ITEM_NAME, item->name());
+        AuthorizationValue value = item->value();
+        if (value.data != NULL) {
+            xpc_dictionary_set_data(xpc_data, AUTH_XPC_ITEM_VALUE, value.data, value.length);
+        }
+        xpc_dictionary_set_uint64(xpc_data, AUTH_XPC_ITEM_FLAGS, item->flags());
+        xpc_array_append_value(outputArray, xpc_data);
+        xpc_release(xpc_data);
+    }
+    return outputArray;
+}
+
+OSStatus
+SecurityAgentXPCQuery::invoke() {
+    __block OSStatus status = kAuthorizationResultUndefined;
+    
+    xpc_object_t hintsArray = authItemSetToXPCArray(mInHints);
+    xpc_object_t contextArray = authItemSetToXPCArray(mInContext);
+    xpc_object_t immutableHintsArray = authItemSetToXPCArray(mImmutableHints);
+    
+    xpc_object_t requestObject = xpc_dictionary_create(NULL, NULL, 0);
+    xpc_dictionary_set_string(requestObject, AUTH_XPC_REQUEST_METHOD_KEY, AUTH_XPC_REQUEST_METHOD_INVOKE);
+    xpc_dictionary_set_value(requestObject, AUTH_XPC_HINTS_NAME, hintsArray);
+    xpc_dictionary_set_value(requestObject, AUTH_XPC_CONTEXT_NAME, contextArray);
+    xpc_dictionary_set_value(requestObject, AUTH_XPC_IMMUTABLE_HINTS_NAME, immutableHintsArray);
+    
+    xpc_object_t object = xpc_connection_send_message_with_reply_sync(mXPCConnection, requestObject);
+    if (xpc_get_type(object) == XPC_TYPE_DICTIONARY) {
+        const char *replyType = xpc_dictionary_get_string(object, AUTH_XPC_REPLY_METHOD_KEY);
+        if (0 == strcmp(replyType, AUTH_XPC_REPLY_METHOD_RESULT)) {
+            xpc_object_t xpcHints = xpc_dictionary_get_value(object, AUTH_XPC_HINTS_NAME);
+            xpc_object_t xpcContext = xpc_dictionary_get_value(object, AUTH_XPC_CONTEXT_NAME);
+            AuthItemSet tempHints, tempContext;
+            xpcArrayToAuthItemSet(&tempHints, xpcHints);
+            xpcArrayToAuthItemSet(&tempContext, xpcContext);
+            mOutHints = tempHints;
+            mOutContext = tempContext;
+            mLastResult = xpc_dictionary_get_uint64(object, AUTH_XPC_REPLY_RESULT_VALUE);
+        }
+    } else if (xpc_get_type(object) == XPC_TYPE_ERROR) {
+        if (XPC_ERROR_CONNECTION_INVALID == object) {
+            // If the connection drops, return an "auth undefined" result, because we cannot continue
+        } else if (XPC_ERROR_CONNECTION_INTERRUPTED == object) {
+            // If the agent dies, return an "auth undefined" result, because we cannot continue
+        }
+    }
+    xpc_release(object);
+    
+    xpc_release(hintsArray);
+    xpc_release(contextArray);
+    xpc_release(immutableHintsArray);
+    xpc_release(requestObject);
+    
+    return status;
+}
+
+void SecurityAgentXPCQuery::checkResult()
+{
+    // now check the OSStatus return from the server side
+    switch (mLastResult) {
+        case kAuthorizationResultAllow: return;
+        case kAuthorizationResultDeny:
+        case kAuthorizationResultUserCanceled: CssmError::throwMe(CSSM_ERRCODE_USER_CANCELED);
+        default: MacOSError::throwMe(errAuthorizationInternal);
+    }
+}
+
 //
 // Perform the "rogue app" access query dialog
 //
@@ -387,11 +800,10 @@ Reason QueryKeychainUse::queryUser (const char *database, const char *descriptio
 	
 	// item name into hints
 
-	hints.insert(AuthItemRef(AGENT_HINT_KEYCHAIN_ITEM_NAME, AuthValueOverlay(description ? strlen(description) : 0, const_cast<char*>(description))));
+	hints.insert(AuthItemRef(AGENT_HINT_KEYCHAIN_ITEM_NAME, AuthValueOverlay(description ? (uint32_t)strlen(description) : 0, const_cast<char*>(description))));
 	
 	// keychain name into hints
-	hints.insert(AuthItemRef(AGENT_HINT_KEYCHAIN_PATH, AuthValueOverlay(database ? strlen(database) : 0, const_cast<char*>(database))));
-	
+	hints.insert(AuthItemRef(AGENT_HINT_KEYCHAIN_PATH, AuthValueOverlay(database ? (uint32_t)strlen(database) : 0, const_cast<char*>(database))));
 	
 	if (mPassphraseCheck)
 	{
@@ -423,13 +835,13 @@ Reason QueryKeychainUse::queryUser (const char *database, const char *descriptio
 			
 			checkResult();
 			
-			AuthItem *passwordItem = outContext().find(kAuthorizationEnvironmentPassword);
+			AuthItem *passwordItem = mOutContext.find(kAuthorizationEnvironmentPassword);
 			if (!passwordItem)
 				continue;
 						
 			passwordItem->getCssmData(data);
 		} 
-		while (reason = (const_cast<KeychainDatabase*>(mPassphraseCheck)->decode(data) ? SecurityAgent::noReason : SecurityAgent::invalidPassphrase));
+		while ((reason = (const_cast<KeychainDatabase*>(mPassphraseCheck)->decode(data) ? SecurityAgent::noReason : SecurityAgent::invalidPassphrase)));
 	}
 	else
 	{
@@ -473,8 +885,8 @@ bool QueryCodeCheck::operator () (const char *aclPath)
 	// prepopulate with client hints
 	hints.insert(mClientHints.begin(), mClientHints.end());
 	
-	hints.insert(AuthItemRef(AGENT_HINT_APPLICATION_PATH, AuthValueOverlay(strlen(aclPath), const_cast<char*>(aclPath))));
-	
+	hints.insert(AuthItemRef(AGENT_HINT_APPLICATION_PATH, AuthValueOverlay((uint32_t)strlen(aclPath), const_cast<char*>(aclPath))));
+    
 	create("builtin", "code-identity", noSecuritySession);
 
     setInput(hints, context);
@@ -484,7 +896,7 @@ bool QueryCodeCheck::operator () (const char *aclPath)
 
 //	MacOSError::check(status);
 
-    return kAuthorizationResultAllow == result();
+    return kAuthorizationResultAllow == mLastResult;
 }
 
 
@@ -515,10 +927,10 @@ Reason QueryOld::query()
 	// prepopulate with client hints
 
     const char *keychainPath = database.dbName();
-    hints.insert(AuthItemRef(AGENT_HINT_KEYCHAIN_PATH, AuthValueOverlay(strlen(keychainPath), const_cast<char*>(keychainPath))));
+    hints.insert(AuthItemRef(AGENT_HINT_KEYCHAIN_PATH, AuthValueOverlay((uint32_t)strlen(keychainPath), const_cast<char*>(keychainPath))));
 
 	hints.insert(mClientHints.begin(), mClientHints.end());
-
+    
 	create("builtin", "unlock-keychain", noSecuritySession);
 
 	do
@@ -546,14 +958,14 @@ Reason QueryOld::query()
 
         checkResult();
 		
-		AuthItem *passwordItem = outContext().find(kAuthorizationEnvironmentPassword);
+		AuthItem *passwordItem = mOutContext.find(kAuthorizationEnvironmentPassword);
 		if (!passwordItem)
 			continue;
 		
 		passwordItem->getCssmData(passphrase);
 		
 	}
-	while (reason = accept(passphrase));
+	while ((reason = accept(passphrase)));
 
 	return SecurityAgent::noReason;
 }
@@ -579,6 +991,155 @@ Reason QueryUnlock::accept(CssmManagedData &passphrase)
 		return SecurityAgent::invalidPassphrase;
 }
 
+Reason QueryUnlock::retrievePassword(CssmOwnedData &passphrase) {
+    CssmAutoData pass(Allocator::standard(Allocator::sensitive));
+
+    AuthItem *passwordItem = mOutContext.find(kAuthorizationEnvironmentPassword);
+    if (!passwordItem)
+        return SecurityAgent::invalidPassphrase;
+    
+    passwordItem->getCssmData(pass);
+    
+    passphrase = pass;
+
+   return SecurityAgent::noReason;
+}
+
+QueryKeybagPassphrase::QueryKeybagPassphrase(Session & session, int32_t tries) : mSession(session), mContext(), mRetries(tries)
+{
+    setTerminateOnSleep(true);
+    mContext = mSession.get_current_service_context();
+}
+
+Reason QueryKeybagPassphrase::query()
+{
+	Reason reason = SecurityAgent::noReason;
+	OSStatus status;
+	AuthValueVector arguments;
+	AuthItemSet hints, context;
+	CssmAutoData passphrase(Allocator::standard(Allocator::sensitive));
+	int retryCount = 0;
+
+	// prepopulate with client hints
+
+    const char *keychainPath = "iCloud";
+    hints.insert(AuthItemRef(AGENT_HINT_KEYCHAIN_PATH, AuthValueOverlay((uint32_t)strlen(keychainPath), const_cast<char*>(keychainPath))));
+
+	hints.insert(mClientHints.begin(), mClientHints.end());
+
+	create("builtin", "unlock-keychain", noSecuritySession);
+
+	do
+	{
+        if (retryCount > mRetries)
+		{
+			return SecurityAgent::tooManyTries;
+        }
+
+        AuthItemRef triesHint(AGENT_HINT_TRIES, AuthValueOverlay(sizeof(retryCount), &retryCount));
+        hints.erase(triesHint); hints.insert(triesHint); // replace
+
+        AuthItemRef retryHint(AGENT_HINT_RETRY_REASON, AuthValueOverlay(sizeof(reason), &reason));
+        hints.erase(retryHint); hints.insert(retryHint); // replace
+
+        setInput(hints, context);
+        status = invoke();
+
+        checkResult();
+
+		AuthItem *passwordItem = mOutContext.find(kAuthorizationEnvironmentPassword);
+		if (!passwordItem)
+			continue;
+
+		passwordItem->getCssmData(passphrase);
+
+        ++retryCount;
+	}
+	while ((reason = accept(passphrase)));
+
+	return SecurityAgent::noReason;
+}
+
+Reason QueryKeybagPassphrase::accept(Security::CssmManagedData & password)
+{
+	if (service_client_kb_unlock(&mContext, password.data(), (int)password.length()) == 0) {
+		mSession.keybagSetState(session_keybag_unlocked);
+        return SecurityAgent::noReason;
+    } else
+		return SecurityAgent::invalidPassphrase;
+}
+
+QueryKeybagNewPassphrase::QueryKeybagNewPassphrase(Session & session) : QueryKeybagPassphrase(session) {}
+
+Reason QueryKeybagNewPassphrase::query(CssmOwnedData &oldPassphrase, CssmOwnedData &passphrase)
+{
+    CssmAutoData pass(Allocator::standard(Allocator::sensitive));
+    CssmAutoData oldPass(Allocator::standard(Allocator::sensitive));
+    Reason reason = SecurityAgent::noReason;
+	OSStatus status;
+	AuthValueVector arguments;
+	AuthItemSet hints, context;
+	int retryCount = 0;
+
+	// prepopulate with client hints
+
+    const char *keychainPath = "iCloud";
+    hints.insert(AuthItemRef(AGENT_HINT_KEYCHAIN_PATH, AuthValueOverlay((uint32_t)strlen(keychainPath), const_cast<char*>(keychainPath))));
+
+    const char *showResetString = "YES";
+    hints.insert(AuthItemRef(AGENT_HINT_SHOW_RESET, AuthValueOverlay((uint32_t)strlen(showResetString), const_cast<char*>(showResetString))));
+
+	hints.insert(mClientHints.begin(), mClientHints.end());
+
+	create("builtin", "change-passphrase", noSecuritySession);
+
+    AuthItem *resetPassword = NULL;
+	do
+	{
+        if (retryCount > mRetries)
+		{
+			return SecurityAgent::tooManyTries;
+        }
+
+        AuthItemRef triesHint(AGENT_HINT_TRIES, AuthValueOverlay(sizeof(retryCount), &retryCount));
+        hints.erase(triesHint); hints.insert(triesHint); // replace
+
+        AuthItemRef retryHint(AGENT_HINT_RETRY_REASON, AuthValueOverlay(sizeof(reason), &reason));
+        hints.erase(retryHint); hints.insert(retryHint); // replace
+
+        setInput(hints, context);
+        status = invoke();
+
+        checkResult();
+
+        resetPassword = mOutContext.find(AGENT_CONTEXT_RESET_PASSWORD);
+        if (resetPassword != NULL) {
+            return SecurityAgent::resettingPassword;
+        }
+        
+        AuthItem *oldPasswordItem = mOutContext.find(AGENT_PASSWORD);
+        if (!oldPasswordItem)
+            continue;
+
+        oldPasswordItem->getCssmData(oldPass);
+
+        ++retryCount;
+	}
+	while ((reason = accept(oldPass)));
+
+    if (reason == SecurityAgent::noReason) {
+		AuthItem *passwordItem = mOutContext.find(AGENT_CONTEXT_NEW_PASSWORD);
+		if (!passwordItem)
+            return SecurityAgent::invalidPassphrase;
+
+		passwordItem->getCssmData(pass);
+
+        oldPassphrase = oldPass;
+        passphrase = pass;
+    }
+
+	return SecurityAgent::noReason;
+}
 
 QueryPIN::QueryPIN(Database &db)
 	: QueryOld(db), mPin(Allocator::standard())
@@ -627,7 +1188,7 @@ Reason QueryNewPassphrase::query()
 
 	// keychain name into hints
 	hints.insert(AuthItemRef(AGENT_HINT_KEYCHAIN_PATH, AuthValueOverlay(database.dbName())));
-
+    
     switch (initialReason)
     {
         case SecurityAgent::newDatabase: 
@@ -665,21 +1226,21 @@ Reason QueryNewPassphrase::query()
 
 		if (SecurityAgent::changePassphrase == initialReason)
         {
-            AuthItem *oldPasswordItem = outContext().find(AGENT_PASSWORD);
+            AuthItem *oldPasswordItem = mOutContext.find(AGENT_PASSWORD);
             if (!oldPasswordItem)
                 continue;
             
             oldPasswordItem->getCssmData(oldPassphrase);
         }
         
-		AuthItem *passwordItem = outContext().find(AGENT_CONTEXT_NEW_PASSWORD);
+		AuthItem *passwordItem = mOutContext.find(AGENT_CONTEXT_NEW_PASSWORD);
 		if (!passwordItem)
 			continue;
 		
 		passwordItem->getCssmData(passphrase);
 
     }
-	while (reason = accept(passphrase, (initialReason == SecurityAgent::changePassphrase) ? &oldPassphrase.get() : NULL));
+	while ((reason = accept(passphrase, (initialReason == SecurityAgent::changePassphrase) ? &oldPassphrase.get() : NULL)));
     
 	return SecurityAgent::noReason;
 }
@@ -688,11 +1249,12 @@ Reason QueryNewPassphrase::query()
 //
 // Get new passphrase Query
 //
-Reason QueryNewPassphrase::operator () (CssmOwnedData &passphrase)
+Reason QueryNewPassphrase::operator () (CssmOwnedData &oldPassphrase, CssmOwnedData &passphrase)
 {
 	if (Reason result = query())
 		return result;	// failed
 	passphrase = mPassphrase;
+    oldPassphrase = mOldPassphrase;
 	return SecurityAgent::noReason;	// success
 }
 
@@ -708,6 +1270,7 @@ Reason QueryNewPassphrase::accept(CssmManagedData &passphrase, CssmData *oldPass
 	// sanity check the new passphrase (but allow user override)
 	if (!(mPassphraseValid && passphrase.get() == mPassphrase)) {
 		mPassphrase = passphrase;
+        if (oldPassphrase) mOldPassphrase = *oldPassphrase;
 		mPassphraseValid = true;
 		if (mPassphrase.length() == 0)
 			return SecurityAgent::passphraseIsNull;
@@ -763,7 +1326,7 @@ Reason QueryGenericPassphrase::query(const CssmData *prompt, bool verify,
         setInput(hints, context);
 		status = invoke();
 		checkResult();
-		passwordItem = outContext().find(AGENT_PASSWORD);
+		passwordItem = mOutContext.find(AGENT_PASSWORD);
 		
     } while (!passwordItem);
 	
@@ -797,7 +1360,6 @@ Reason QueryDBBlobSecret::query(DbHandle *dbHandleArray, uint8 dbHandleArrayCoun
 #endif
 
 	hints.insert(mClientHints.begin(), mClientHints.end());
-	
 	create("builtin", "generic-unlock-kcblob", noSecuritySession);
     
     AuthItem *secretItem;
@@ -819,12 +1381,12 @@ Reason QueryDBBlobSecret::query(DbHandle *dbHandleArray, uint8 dbHandleArrayCoun
         setInput(hints, context);
 		status = invoke();
 		checkResult();
-		secretItem = outContext().find(AGENT_PASSWORD);
+		secretItem = mOutContext.find(AGENT_PASSWORD);
 		if (!secretItem)
 			continue;
 		secretItem->getCssmData(passphrase);
 		
-    } while (reason = accept(passphrase, dbHandleArray, dbHandleArrayCount, dbHandleAuthenticated));
+    } while ((reason = accept(passphrase, dbHandleArray, dbHandleArrayCount, dbHandleAuthenticated)));
 	    
     return reason;
 }
@@ -873,10 +1435,8 @@ void QueryInvokeMechanism::run(const AuthValueVector &inArguments, AuthItemSet &
     // prepopulate with client hints
 	inHints.insert(mClientHints.begin(), mClientHints.end());
 
-    if (mAuthHostType == securityAgent) {
-        if (Server::active().inDarkWake())
-            CssmError::throwMe(CSSM_ERRCODE_IN_DARK_WAKE);
-    }
+	if (Server::active().inDarkWake())
+		CssmError::throwMe(CSSM_ERRCODE_IN_DARK_WAKE);
 
     setArguments(inArguments);
     setInput(inHints, inContext);
@@ -938,13 +1498,13 @@ QueryKeychainAuth::operator () (const char *database, const char *description, A
 	// put action/operation (sint32) into hints
 	hints.insert(AuthItemRef(AGENT_HINT_ACL_TAG, AuthValueOverlay(sizeof(action), static_cast<sint32*>(&action))));
 
-    hints.insert(AuthItemRef(AGENT_HINT_CUSTOM_PROMPT, AuthValueOverlay(prompt ? strlen(prompt) : 0, const_cast<char*>(prompt))));
+    hints.insert(AuthItemRef(AGENT_HINT_CUSTOM_PROMPT, AuthValueOverlay(prompt ? (uint32_t)strlen(prompt) : 0, const_cast<char*>(prompt))));
 	
 	// item name into hints
-	hints.insert(AuthItemRef(AGENT_HINT_KEYCHAIN_ITEM_NAME, AuthValueOverlay(description ? strlen(description) : 0, const_cast<char*>(description))));
+	hints.insert(AuthItemRef(AGENT_HINT_KEYCHAIN_ITEM_NAME, AuthValueOverlay(description ? (uint32_t)strlen(description) : 0, const_cast<char*>(description))));
 	
 	// keychain name into hints
-	hints.insert(AuthItemRef(AGENT_HINT_KEYCHAIN_PATH, AuthValueOverlay(database ? strlen(database) : 0, const_cast<char*>(database))));
+	hints.insert(AuthItemRef(AGENT_HINT_KEYCHAIN_PATH, AuthValueOverlay(database ? (uint32_t)strlen(database) : 0, const_cast<char*>(database))));
 	
     create("builtin", "confirm-access-user-password", noSecuritySession);
     
@@ -981,13 +1541,13 @@ QueryKeychainAuth::operator () (const char *database, const char *description, A
             logger.logFailure();
             throw;
         }
-        usernameItem = outContext().find(AGENT_USERNAME);
-		passwordItem = outContext().find(AGENT_PASSWORD);
+        usernameItem = mOutContext.find(AGENT_USERNAME);
+		passwordItem = mOutContext.find(AGENT_PASSWORD);
 		if (!usernameItem || !passwordItem)
 			continue;
         usernameItem->getString(username);
         passwordItem->getString(password);
-    } while (reason = accept(username, password));
+    } while ((reason = accept(username, password)));
 
     if (SecurityAgent::noReason == reason)
         logger.logSuccess();
diff --git a/src/agentquery.h b/src/agentquery.h
index 1e28e19..fa59da2 100644
--- a/src/agentquery.h
+++ b/src/agentquery.h
@@ -37,6 +37,7 @@
 #include "authhost.h"
 #include "server.h"
 #include "session.h"
+#include <xpc/xpc.h>
 
 using Authorization::AuthItemSet;
 using Authorization::AuthValueVector;
@@ -46,7 +47,7 @@ using Security::OSXCode;
 // base for classes talking to SecurityAgent and authorizationhost
 //
 class SecurityAgentConnection : public SecurityAgent::Client,
-                                public SecurityAgentConnectionInterface
+public SecurityAgentConnectionInterface
 {
 public:
     SecurityAgentConnection(const AuthHostType type = securityAgent, Session &session = Server::session());
@@ -67,25 +68,32 @@ protected:
 };
 
 //
-// Special wrapper around SecurityAgent::Client transaction interfaces.  
-// Not currently used because this was intended to support 
-// SecurityAgent's/authorizationhost's use of Foundation's enable/disable-sudden-
-// termination APIs, but the latter don't work for non-direct children of 
-// launchd.  Kept around because securityd might need its own child-transaction 
-// semantics one day.  
+// base for classes talking to com.apple.security.agent and com.apple.security.authhost 
 //
-class SecurityAgentTransaction : public SecurityAgentConnection
+class SecurityAgentXPCConnection : public SecurityAgentConnectionInterface
 {
-public: 
-    SecurityAgentTransaction(const AuthHostType type = securityAgent, Session &session = Server::session(), bool startNow = true);
-    ~SecurityAgentTransaction();
+public:
+    SecurityAgentXPCConnection(const AuthHostType type = securityAgent, Session &session = Server::session());
+    virtual ~SecurityAgentXPCConnection();
+    virtual void activate(bool ignoreUid);
+    virtual void reconnect();
+    virtual void disconnect()  { };
+    virtual void terminate();
     
-    void start();
-    void end();
-    bool started()  { return mStarted; }
+    AuthHostType hostType()  { return mAuthHostType; }
     
-private:
-    bool mStarted;
+protected:
+    AuthHostType mAuthHostType;
+    RefPointer<AuthHostInstance> mHostInstance;
+    Session &mSession;
+    xpc_connection_t mXPCConnection;
+    xpc_connection_t mXPCStubConnection;
+    const RefPointer<Connection> mConnection;
+    audit_token_t *mAuditToken;
+    uid_t mNobodyUID;
+
+    bool inDarkWake();
+
 };
 
 //
@@ -98,29 +106,73 @@ public:
 	
 	SecurityAgentQuery(const AuthHostType type = securityAgent, Session &session = Server::session());
 	
-
+    
 	void inferHints(Process &thisProcess);
 	void addHint(const char *name, const void *value = NULL, UInt32 valueLen = 0, UInt32 flags = 0);
-
+    
 	virtual ~SecurityAgentQuery();
+    
+	virtual void disconnect();
+	virtual void terminate();
+	void create(const char *pluginId, const char *mechanismId, const SessionId inSessionId);
+    
+	void readChoice();
+    
+	bool allow;
+	bool remember;
+    
+protected:
+	AuthItemSet mClientHints;
+};
 
+//
+// The main com.apple.security.agent/com.apple.security.authhost interaction base class
+//
+class SecurityAgentXPCQuery : public SecurityAgentXPCConnection
+{
+public:
+    static void killAllXPCClients();
+	
+    typedef SecurityAgent::Reason Reason;
+	
+	SecurityAgentXPCQuery(const AuthHostType type = securityAgent, Session &session = Server::session());
+	
+    
+	void inferHints(Process &thisProcess);
+	void addHint(const char *name, const void *value = NULL, UInt32 valueLen = 0, UInt32 flags = 0);
+    
+	virtual ~SecurityAgentXPCQuery();
+    
 	virtual void disconnect();
 	virtual void terminate();
 	void create(const char *pluginId, const char *mechanismId, const SessionId inSessionId);
+    OSStatus invoke();
+    void setTerminateOnSleep(bool terminateOnSleep) {mTerminateOnSleep = terminateOnSleep;}
+    bool getTerminateOnSleep() {return mTerminateOnSleep;}
+    void setInput(const AuthItemSet& inHints, const AuthItemSet& inContext) { mInHints = inHints; mInContext = inContext; }
+    void checkResult();
 
 	void readChoice();
-
+    
 	bool allow;
 	bool remember;
-
+    
 protected:
 	AuthItemSet mClientHints;
+    AuthItemSet mImmutableHints;
+    AuthItemSet mInHints;
+    AuthItemSet mInContext;
+    AuthItemSet mOutHints;
+    AuthItemSet mOutContext;
+    bool mAgentConnected;
+    uint64_t mLastResult;
+    bool mTerminateOnSleep;
 };
 
 //
 // Specialized for "rogue app" alert queries
 //
-class QueryKeychainUse : public SecurityAgentQuery {
+class QueryKeychainUse : public SecurityAgentXPCQuery {
 public:
     QueryKeychainUse(bool needPass, const Database *db);
     Reason queryUser (const char* database, const char *description, AclAuthorization action);
@@ -133,7 +185,7 @@ private:
 //
 // Specialized for code signature adjustment queries
 //
-class QueryCodeCheck : public SecurityAgentQuery {
+class QueryCodeCheck : public SecurityAgentXPCQuery {
 public:
     bool operator () (const char *aclPath);
 };
@@ -142,7 +194,7 @@ public:
 //
 // A query for an existing passphrase
 //
-class QueryOld : public SecurityAgentQuery {
+class QueryOld : public SecurityAgentXPCQuery {
 	static const int maxTries = kMaximumAuthorizationTries;
 public:
 	QueryOld(Database &db) : database(db) {setTerminateOnSleep(true);}
@@ -160,12 +212,32 @@ protected:
 class QueryUnlock : public QueryOld {
 public:
 	QueryUnlock(KeychainDatabase &db) : QueryOld(db) { }
+    Reason retrievePassword(CssmOwnedData &passphrase);
 	
 protected:
 	Reason accept(CssmManagedData &passphrase);
 };
 
 
+class QueryKeybagPassphrase : public SecurityAgentXPCQuery {
+public:
+    QueryKeybagPassphrase(Session &session, int32_t retries = kMaximumAuthorizationTries);
+
+    Reason query();
+    Reason accept(CssmManagedData &passphrase);
+protected:
+    Session &mSession;
+    service_context_t mContext;
+    int32_t mRetries;
+};
+
+class QueryKeybagNewPassphrase : public QueryKeybagPassphrase {
+public:
+    QueryKeybagNewPassphrase(Session &session);
+
+    Reason query(CssmOwnedData &oldPassphrase, CssmOwnedData &passphrase);
+};
+
 //
 // Repurpose QueryUnlock for PIN prompting
 // Not very clean - but this stuff is an outdated hack as it is...
@@ -187,17 +259,18 @@ private:
 //
 // A query for a new passphrase
 //
-class QueryNewPassphrase : public SecurityAgentQuery {
+class QueryNewPassphrase : public SecurityAgentXPCQuery {
 	static const int maxTries = kMaximumAuthorizationTries;
 public:
 	QueryNewPassphrase(Database &db, Reason reason) :
 	    database(db), initialReason(reason),
 	    mPassphrase(Allocator::standard(Allocator::sensitive)),
+        mOldPassphrase(Allocator::standard(Allocator::sensitive)),
 	    mPassphraseValid(false) { }
 
 	Database &database;
 	
-	Reason operator () (CssmOwnedData &passphrase);
+	Reason operator () (CssmOwnedData &oldPassphrase, CssmOwnedData &passphrase);
 	
 protected:
 	Reason query();
@@ -206,6 +279,7 @@ protected:
 private:
 	Reason initialReason;
 	CssmAutoData mPassphrase;
+    CssmAutoData mOldPassphrase;
     bool mPassphraseValid;
 };
 
@@ -213,7 +287,7 @@ private:
 //
 // Generic passphrase query (not associated with a database)
 //
-class QueryGenericPassphrase : public SecurityAgentQuery {
+class QueryGenericPassphrase : public SecurityAgentXPCQuery {
 public:
     QueryGenericPassphrase()    { }
     Reason operator () (const CssmData *prompt, bool verify,
@@ -227,7 +301,7 @@ protected:
 //
 // Generic secret query (not associated with a database)
 //
-class QueryDBBlobSecret : public SecurityAgentQuery {
+class QueryDBBlobSecret : public SecurityAgentXPCQuery {
 	static const int maxTries = kMaximumAuthorizationTries;
 public:
     QueryDBBlobSecret()    { }
@@ -255,7 +329,7 @@ public:
 // securityd's use; keep the Frankenstein references to yourself
 // (the alternative is to ask the user to unlock the system keychain,
 // and you don't want that, do you?)  
-class QueryKeychainAuth : public SecurityAgentQuery {
+class QueryKeychainAuth : public SecurityAgentXPCQuery {
 	static const int maxTries = kMaximumAuthorizationTries;
 public:
     QueryKeychainAuth()  { }
diff --git a/src/clientid.cpp b/src/clientid.cpp
index 7dc6907..24cfe98 100644
--- a/src/clientid.cpp
+++ b/src/clientid.cpp
@@ -155,6 +155,30 @@ const CssmData ClientIdentification::getHash() const
 		return CssmData();
 }
 
+const bool ClientIdentification::checkAppleSigned() const
+{
+	if (GuestState *guest = current()) {
+		if (!guest->checkedSignature) {
+            // This is the clownfish supported way to check for a Mac App Store or B&I signed build
+            CFStringRef requirementString = CFSTR("(anchor apple) or (anchor apple generic and certificate leaf[field.1.2.840.113635.100.6.1.9])");
+            SecRequirementRef  secRequirementRef = NULL;
+            OSStatus status = SecRequirementCreateWithString(requirementString, kSecCSDefaultFlags, &secRequirementRef);
+            if (status == errSecSuccess) {
+                OSStatus status = SecCodeCheckValidity(guest->code, kSecCSDefaultFlags, secRequirementRef);
+                if (status != errSecSuccess) {
+                    secdebug("SecurityAgentXPCQuery", "code requirement check failed (%d)", (int32_t)status);
+                } else {
+                    guest->appleSigned = true;
+                }
+                guest->checkedSignature = true;
+            }
+            CFRelease(secRequirementRef);
+		}
+		return guest->appleSigned;
+	} else
+		return false;
+}
+
 
 //
 // Bonus function: get the path out of a SecCodeRef
diff --git a/src/clientid.h b/src/clientid.h
index c961284..8f4aab2 100644
--- a/src/clientid.h
+++ b/src/clientid.h
@@ -47,6 +47,7 @@ public:
 	// CodeSignatures::Identity personality
 	string getPath() const;
 	const CssmData getHash() const;
+    const bool checkAppleSigned() const;
 	
 protected:
 	void setup(pid_t pid);
@@ -64,6 +65,8 @@ private:
 		CFRef<SecCodeRef> code;
 		mutable bool gotHash;
 		mutable SHA1::Digest legacyHash;
+        mutable bool checkedSignature;
+        mutable bool appleSigned;
 	};
 	typedef std::map<SecGuestRef, GuestState> GuestMap;
 	mutable GuestMap mGuests;
diff --git a/src/entropy.cpp b/src/entropy.cpp
index 83d7d20..c936d8f 100644
--- a/src/entropy.cpp
+++ b/src/entropy.cpp
@@ -153,21 +153,23 @@ void EntropyManager::collectEntropy()
 	
 	int result;
 	
-	size_t size = sizeof(mach_timespec_t) * timingsToCollect;
-	
     double bytesRemaining = kBytesOfEntropyToCollect;
     
     int loopCount = 0;
     
     while (bytesRemaining >= 0)
     {
+        size_t size = sizeof(mach_timespec_t) * timingsToCollect;
+        
         result = sysctl(mib,4, buffer, &size, NULL, 0);
         if (result == -1) {
             Syslog::alert("entropy measurement returned no entropy (errno=%d)", errno);
+            sleep(1);
         }
         else if (size == 0)
         {
             Syslog::alert("entropy measurement returned no entropy.");
+            sleep(1);
         }
 
         // remove the non-entropic pieces from the buffer
diff --git a/src/kcdatabase.cpp b/src/kcdatabase.cpp
index aff328d..68271fa 100644
--- a/src/kcdatabase.cpp
+++ b/src/kcdatabase.cpp
@@ -54,15 +54,62 @@
 #include <security_cdsa_client/macclient.h>
 #include <securityd_client/dictionary.h>
 #include <security_utilities/endian.h>
+#include "securityd_service/securityd_service/securityd_service_client.h"
+#include <AssertMacros.h>
+#include <syslog.h>
 
 void unflattenKey(const CssmData &flatKey, CssmKey &rawKey);	//>> make static method on KeychainDatabase
 
+static int
+unlock_keybag(KeychainDbCommon & dbCommon, const void * secret, int secret_len)
+{
+    int rc = -1;
+
+    if (!dbCommon.isLoginKeychain()) return 0;
+    
+    service_context_t context = dbCommon.session().get_current_service_context();
+    
+    // try to unlock first if not found then load/create or unlock
+    // loading should happen when the kb common object is created
+    // if it doesn't exist yet then the unlock will fail and we'll create everything
+    rc = service_client_kb_unlock(&context, secret, secret_len);
+    if (rc == KB_BagNotLoaded) {
+        if (service_client_kb_load(&context) == KB_BagNotFound) {
+            rc = service_client_kb_create(&context, secret, secret_len);
+        } else {
+            rc = service_client_kb_unlock(&context, secret, secret_len);
+        }
+    }
+
+    if (rc == 0) {
+        dbCommon.session().keybagSetState(session_keybag_unlocked|session_keybag_loaded);
+    }
+
+    return rc;
+}
+
+static void
+change_secret_on_keybag(KeychainDbCommon & dbCommon, const void * secret, int secret_len, const void * new_secret, int new_secret_len)
+{
+    if (!dbCommon.isLoginKeychain()) return;
+
+    service_context_t context = dbCommon.session().get_current_service_context();
+
+    // if a login.keychain doesn't exist yet it comes into securityd as a create then change_secret
+    // we need to create the keybag in this case if it doesn't exist
+    if (service_client_kb_change_secret(&context, secret, secret_len, new_secret, new_secret_len) == KB_BagNotLoaded) {
+        if (service_client_kb_load(&context) == KB_BagNotFound) {
+            service_client_kb_create(&context, new_secret, new_secret_len);
+        }
+    }
+}
+
 //
 // Create a Database object from initial parameters (create operation)
 //
 KeychainDatabase::KeychainDatabase(const DLDbIdentifier &id, const DBParameters &params, Process &proc,
             const AccessCredentials *cred, const AclEntryPrototype *owner)
-    : LocalDatabase(proc), mValidData(false), version(0), mBlob(NULL)
+    : LocalDatabase(proc), mValidData(false), mSecret(Allocator::standard(Allocator::sensitive)), mSaveSecret(false), version(0), mBlob(NULL)
 {
     // save a copy of the credentials for later access control
     mCred = DataWalkers::copy(cred, Allocator::standard());
@@ -111,7 +158,7 @@ KeychainDatabase::KeychainDatabase(const DLDbIdentifier &id, const DBParameters
 //
 KeychainDatabase::KeychainDatabase(const DLDbIdentifier &id, const DbBlob *blob, Process &proc,
     const AccessCredentials *cred)
-	: LocalDatabase(proc), mValidData(false), version(0)
+	: LocalDatabase(proc), mValidData(false), mSecret(Allocator::standard(Allocator::sensitive)), mSaveSecret(false), version(0), mBlob(NULL)
 {
 	validateBlob(blob);
 
@@ -150,7 +197,7 @@ KeychainDatabase::KeychainDatabase(const DLDbIdentifier &id, const DbBlob *blob,
 // the re-encoding can declare it done.  
 //
 KeychainDatabase::KeychainDatabase(KeychainDatabase &src, Process &proc, DbHandle dbToClone)
-	: LocalDatabase(proc), mValidData(false), version(0), mBlob(NULL)
+	: LocalDatabase(proc), mValidData(false), mSecret(Allocator::standard(Allocator::sensitive)), mSaveSecret(false), version(0), mBlob(NULL)
 {
 	mCred = DataWalkers::copy(src.mCred, Allocator::standard());
 
@@ -339,10 +386,13 @@ void KeychainDatabase::changePassphrase(const AccessCredentials *cred)
 	
 	// establish OLD secret - i.e. unlock the database
 	//@@@ do we want to leave the final lock state alone?
+    if (common().isLoginKeychain()) mSaveSecret = true;
 	makeUnlocked(cred);
 	
     // establish NEW secret
 	establishNewSecrets(cred, SecurityAgent::changePassphrase);
+    if (mSecret) { mSecret.reset(); }
+    mSaveSecret = false;
 	common().invalidateBlob();	// blob state changed
 	secdebug("KCdb", "Database %s(%p) master secret changed", common().dbName(), this);
 	encode();			// force rebuild of local blob
@@ -367,8 +417,8 @@ void KeychainDatabase::commitSecretsForSync(KeychainDatabase &cloneDb)
         CssmError::throwMe(CSSM_ERRCODE_INVALID_DB_HANDLE);
 	
     // in case we autolocked since starting the sync
-    unlockDb();
-	cloneDb.unlockDb();
+    makeUnlocked(); // call this because we already own the lock
+	cloneDb.unlockDb(); // we may not own the lock here, so calling unlockDb will lock the cloneDb's common lock
 
     // Decode all keys whose handles refer to this on-disk keychain so that
     // if the holding client commits the key back to disk, it's encoded with
@@ -451,7 +501,18 @@ void KeychainDatabase::makeUnlocked(const AccessCredentials *cred)
         assert(mBlob || (mValidData && common().hasMaster()));
 		establishOldSecrets(cred);
 		common().setUnlocked(); // mark unlocked
-	}
+	} else if (common().isLoginKeychain()) {
+        bool locked = false;
+        service_context_t context = common().session().get_current_service_context();
+        if ((service_client_kb_is_locked(&context, &locked, NULL) == 0) && locked) {
+            StSyncLock<Mutex, Mutex> uisync(common().uiLock(), common());
+            QueryKeybagPassphrase keybagQuery(common().session(), 3);
+            keybagQuery.inferHints(Server::process());
+            if (keybagQuery.query() != SecurityAgent::noReason) {
+                syslog(LOG_NOTICE, "failed to unlock iCloud keychain");
+            }
+        }
+    }
 	if (!mValidData) {	// need to decode to get our ACLs, master secret available
 		secdebug("KCdb", "%p(%p) is unlocked; decoding for makeUnlocked()", this, &common());
 		if (!decode())
@@ -461,6 +522,78 @@ void KeychainDatabase::makeUnlocked(const AccessCredentials *cred)
 	assert(mValidData);
 }
 
+//
+// Invoke the securityd_service to retrieve the keychain master
+// key from the AppleFDEKeyStore.
+//
+void KeychainDatabase::stashDbCheck()
+{    
+    CssmAutoData data(Allocator::standard(Allocator::sensitive));
+
+    // Fetch the key
+    int rc = 0;
+    void * stash_key = NULL;
+    int stash_key_len = 0;
+    service_context_t context = common().session().get_current_service_context();
+    rc = service_client_stash_get_key(&context, &stash_key, &stash_key_len);
+    if (rc == 0) {
+        if (stash_key) {
+            data.copy(CssmData((void *)stash_key,stash_key_len));
+            memset(stash_key, 0, stash_key_len);
+            free(stash_key);
+        }
+    } else {
+        CssmError::throwMe(rc);
+    }
+    
+    {
+        StLock<Mutex> _(common());
+
+        // Now establish it as the keychain master key
+        CssmClient::Key key(Server::csp(), data.get());
+        CssmKey::Header &hdr = key.header();
+        hdr.keyClass(CSSM_KEYCLASS_SESSION_KEY);
+        hdr.algorithm(CSSM_ALGID_3DES_3KEY_EDE);
+        hdr.usage(CSSM_KEYUSE_ANY);
+        hdr.blobType(CSSM_KEYBLOB_RAW);
+        hdr.blobFormat(CSSM_KEYBLOB_RAW_FORMAT_OCTET_STRING);
+        common().setup(mBlob, key);
+
+        if (!decode())
+            CssmError::throwMe(CSSM_ERRCODE_OPERATION_AUTH_DENIED);
+    }
+
+    // when upgrading from pre-10.9 create a keybag if it doesn't exist with the master secret
+    // only do this after we have verified the master key unlocks the login.keychain
+    if (service_client_kb_load(&context) == KB_BagNotFound) {
+        service_client_kb_create(&context, data.data(), (int)data.length());
+    }
+}
+
+//
+// Get the keychain master key and invoke the securityd_service
+// to stash it in the AppleFDEKeyStore ready for commit to the
+// NVRAM blob.
+//
+void KeychainDatabase::stashDb()
+{
+    CssmAutoData data(Allocator::standard(Allocator::sensitive));
+    
+    {
+        StLock<Mutex> _(common());
+
+        if (!common().isValid()) {
+            CssmError::throwMe(CSSMERR_CSP_INVALID_KEY);
+        }
+        
+        CssmKey key = common().masterKey();
+        data.copy(key.keyData());
+    }
+    
+    service_context_t context = common().session().get_current_service_context();
+    int rc = service_client_stash_set_key(&context, data.data(), (int)data.length());
+    if (rc != 0) CssmError::throwMe(rc);
+}
 
 //
 // The following unlock given an explicit passphrase, rather than using
@@ -483,6 +616,15 @@ void KeychainDatabase::makeUnlocked(const CssmData &passphrase)
 		if (!decode())
 			CssmError::throwMe(CSSM_ERRCODE_OPERATION_AUTH_DENIED);
 	}
+
+    if (common().isLoginKeychain()) {
+        bool locked = false;
+        service_context_t context = common().session().get_current_service_context();
+        if ((service_client_kb_is_locked(&context, &locked, NULL) == 0) && locked) {
+            unlock_keybag(common(), passphrase.data(), (int)passphrase.length());
+        }
+    }
+
 	assert(!isLocked());
 	assert(mValidData);
 }
@@ -497,7 +639,33 @@ bool KeychainDatabase::decode(const CssmData &passphrase)
 {
 	assert(mBlob);
 	common().setup(mBlob, passphrase);
-	return decode();
+	bool success = decode();
+    if (success) {
+        if (common().isLoginKeychain() && (unlock_keybag(common(), passphrase.data(), (int)passphrase.length()) != 0)) {
+            service_context_t context = common().session().get_current_service_context();
+            // check to see if it was locked with the master key if so change the secret to the passphrase
+            if (!common().session().keybagGetState(session_keybag_check_master_key)) {
+
+                CssmAutoData key(Allocator::standard(Allocator::sensitive));
+                key = common().masterKey()->keyData();
+                if (service_client_kb_unlock(&context, key.data(), (int)key.length()) == 0) {
+                    service_client_kb_change_secret(&context, key.data(), (int)key.length(), passphrase.data(), (int)passphrase.length());
+                }
+                common().session().keybagSetState(session_keybag_check_master_key);
+            }
+
+            bool no_pin = false;
+            if (service_client_kb_is_locked(&context, NULL, &no_pin) == 0) {
+                if ((passphrase.length() > 0) && no_pin) {
+                    syslog(LOG_ERR, "Updating passphrase for your iCloud keychain");
+                    service_client_kb_change_secret(&context, NULL, 0, passphrase.data(), (int)passphrase.length());
+                } else {
+                    syslog(LOG_ERR, "The passphrase for your login.keychain and your iCloud keychain are out of sync");
+                }
+            }
+        }
+    }
+    return success;
 }
 
 
@@ -623,18 +791,43 @@ void KeychainDatabase::establishOldSecrets(const AccessCredentials *creds)
 bool KeychainDatabase::interactiveUnlock()
 {
 	secdebug("KCdb", "%p attempting interactive unlock", this);
-	QueryUnlock query(*this);
+	SecurityAgent::Reason reason = SecurityAgent::noReason;
+    QueryUnlock query(*this);
 	// take UI interlock and release DbCommon lock (to avoid deadlocks)
 	StSyncLock<Mutex, Mutex> uisync(common().uiLock(), common());
 	
 	// now that we have the UI lock, interact unless another thread unlocked us first
 	if (isLocked()) {
 		query.inferHints(Server::process());
-		return query() == SecurityAgent::noReason;
+        reason = query();
+        if (mSaveSecret && reason == SecurityAgent::noReason) {
+            query.retrievePassword(mSecret);
+        }
+        query.disconnect();
 	} else {
 		secdebug("KCdb", "%p was unlocked during uiLock delay", this);
-		return true;
 	}
+
+    if (common().isLoginKeychain()) {
+        bool locked = false;
+        service_context_t context = common().session().get_current_service_context();
+        if ((service_client_kb_is_locked(&context, &locked, NULL) == 0) && locked) {
+            QueryKeybagNewPassphrase keybagQuery(common().session());
+            keybagQuery.inferHints(Server::process());
+            CssmAutoData pass(Allocator::standard(Allocator::sensitive));
+            CssmAutoData oldPass(Allocator::standard(Allocator::sensitive));
+            SecurityAgent::Reason queryReason = keybagQuery.query(oldPass, pass);
+            if (queryReason == SecurityAgent::noReason) {
+                service_client_kb_change_secret(&context, oldPass.data(), (int)oldPass.length(), pass.data(), (int)pass.length());
+            } else if (queryReason == SecurityAgent::resettingPassword) {
+                query.retrievePassword(pass);
+                service_client_kb_reset(&context, pass.data(), (int)pass.length());
+            }
+
+        }
+    }
+
+    return reason == SecurityAgent::noReason;
 }
 
 
@@ -657,19 +850,41 @@ void KeychainDatabase::establishNewSecrets(const AccessCredentials *creds, Secur
 				StSyncLock<Mutex, Mutex> uisync(common().uiLock(), common());
 				query.inferHints(Server::process());
 				CssmAutoData passphrase(Allocator::standard(Allocator::sensitive));
-				if (query(passphrase) == SecurityAgent::noReason) {
+                CssmAutoData oldPassphrase(Allocator::standard(Allocator::sensitive));
+				if (query(oldPassphrase, passphrase) == SecurityAgent::noReason) {
 					common().setup(NULL, passphrase);
+                    change_secret_on_keybag(common(), oldPassphrase.data(), (int)oldPassphrase.length(), passphrase.data(), (int)passphrase.length());
 					return;
 				}
                 }
 				break;
 			// try to use an explicitly given passphrase
 			case CSSM_SAMPLE_TYPE_PASSWORD:
-				secdebug("KCdb", "%p specified explicit passphrase", this);
-				if (sample.length() != 2)
-					CssmError::throwMe(CSSM_ERRCODE_INVALID_SAMPLE_VALUE);
-				common().setup(NULL, sample[1]);
-				return;
+				{
+                    secdebug("KCdb", "%p specified explicit passphrase", this);
+                    if (sample.length() != 2)
+                        CssmError::throwMe(CSSM_ERRCODE_INVALID_SAMPLE_VALUE);
+                    common().setup(NULL, sample[1]);
+                    if (common().isLoginKeychain()) {
+                        CssmAutoData oldPassphrase(Allocator::standard(Allocator::sensitive));
+                        list<CssmSample> oldSamples;
+                        creds->samples().collect(CSSM_SAMPLE_TYPE_KEYCHAIN_LOCK, oldSamples);
+                        for (list<CssmSample>::iterator oit = oldSamples.begin(); oit != oldSamples.end(); oit++) {
+                            TypedList &tmpList = *oit;
+                            tmpList.checkProper();
+                            if (tmpList.type() == CSSM_SAMPLE_TYPE_PASSWORD) {
+                                if (tmpList.length() == 2) {
+                                    oldPassphrase = tmpList[1].data();
+                                }
+                            }
+                        }
+                        if (!oldPassphrase.length() && mSecret && mSecret.length()) {
+                            oldPassphrase = mSecret;
+                        }
+                        change_secret_on_keybag(common(), oldPassphrase.data(), (int)oldPassphrase.length(), sample[1].data().data(), (int)sample[1].data().length());
+                    }
+                    return;
+                }
 			// try to open with a given master key
 			case CSSM_WORDID_SYMMETRIC_KEY:
 			case CSSM_SAMPLE_TYPE_ASYMMETRIC_KEY:
@@ -698,8 +913,10 @@ void KeychainDatabase::establishNewSecrets(const AccessCredentials *creds, Secur
 		StSyncLock<Mutex, Mutex> uisync(common().uiLock(), common());
         query.inferHints(Server::process());
 		CssmAutoData passphrase(Allocator::standard(Allocator::sensitive));
-		if (query(passphrase) == SecurityAgent::noReason) {
+        CssmAutoData oldPassphrase(Allocator::standard(Allocator::sensitive));
+		if (query(oldPassphrase, passphrase) == SecurityAgent::noReason) {
 			common().setup(NULL, passphrase);
+            change_secret_on_keybag(common(), oldPassphrase.data(), (int)oldPassphrase.length(), passphrase.data(), (int)passphrase.length());
 			return;
 		}
 	}
@@ -874,7 +1091,7 @@ KeyBlob *KeychainDatabase::encodeKey(const CssmKey &key, const CssmData &pubAcl,
 	}
 	StLock<Mutex> _(common());
 	if(!inTheClear)
-		unlockDb();
+		makeUnlocked();
 	
     // tell the cryptocore to form the key blob
     return common().encodeKeyCore(key, pubAcl, privAcl, inTheClear);
@@ -890,7 +1107,7 @@ void KeychainDatabase::decodeKey(KeyBlob *blob, CssmKey &key, void * &pubAcl, vo
 	StLock<Mutex> _(common());
 
 	if(!blob->isClearText())
-		unlockDb();							// we need our keys
+		makeUnlocked();							// we need our keys
 
 	common().decodeKeyCore(blob, key, pubAcl, privAcl);
 	// memory protocol: pubAcl points into blob; privAcl was allocated
@@ -1043,23 +1260,36 @@ void KeychainDatabase::dumpNode()
 //
 KeychainDbCommon::KeychainDbCommon(Session &ssn, const DbIdentifier &id)
 	: LocalDbCommon(ssn), sequence(0), version(1), mIdentifier(id),
-      mIsLocked(true), mValidParams(false)
+      mIsLocked(true), mValidParams(false), mLoginKeychain(false)
 {
     // match existing DbGlobal or create a new one
-	Server &server = Server::active();
-	StLock<Mutex> _(server);
-	if (KeychainDbGlobal *dbglobal =
-			server.findFirst<KeychainDbGlobal, const DbIdentifier &>(&KeychainDbGlobal::identifier, identifier())) {
-		parent(*dbglobal);
-		secdebug("KCdb", "%p linking to existing DbGlobal %p", this, dbglobal);
-	} else {
-		// DbGlobal not present; make a new one
-		parent(*new KeychainDbGlobal(identifier()));
-		secdebug("KCdb", "%p linking to new DbGlobal %p", this, &global());
-	}
-	
-	// link lifetime to the Session
-	session().addReference(*this);
+	{
+        Server &server = Server::active();
+        StLock<Mutex> _(server);
+        if (KeychainDbGlobal *dbglobal =
+                server.findFirst<KeychainDbGlobal, const DbIdentifier &>(&KeychainDbGlobal::identifier, identifier())) {
+            parent(*dbglobal);
+            secdebug("KCdb", "%p linking to existing DbGlobal %p", this, dbglobal);
+        } else {
+            // DbGlobal not present; make a new one
+            parent(*new KeychainDbGlobal(identifier()));
+            secdebug("KCdb", "%p linking to new DbGlobal %p", this, &global());
+        }
+
+        // link lifetime to the Session
+        session().addReference(*this);
+        
+        if (strcasestr(id.dbName(), "login.keychain") != NULL) {
+            mLoginKeychain = true;
+        }
+    }
+
+    if (mLoginKeychain && !session().keybagGetState(session_keybag_loaded)) {
+        service_context_t context = session().get_current_service_context();
+        if (service_client_kb_load(&context) == 0) {
+            session().keybagSetState(session_keybag_loaded);
+        }
+    }
 }
 
 KeychainDbCommon::~KeychainDbCommon()
@@ -1068,6 +1298,9 @@ KeychainDbCommon::~KeychainDbCommon()
 
 	// explicitly unschedule ourselves
 	Server::active().clearTimer(this);
+    if (mLoginKeychain) {
+        session().keybagClearState(session_keybag_unlocked);
+    }
 }
 
 KeychainDbGlobal &KeychainDbCommon::global() const
@@ -1147,17 +1380,27 @@ void KeychainDbCommon::setUnlocked()
 
 void KeychainDbCommon::lockDb()
 {
-    StLock<Mutex> _(*this);
-    if (!isLocked()) {
-		DatabaseCryptoCore::invalidate();
-        notify(kNotificationEventLocked);
-		SECURITYD_KEYCHAIN_LOCK(this, (char*)this->dbName());
-		Server::active().clearTimer(this);
-
-		mIsLocked = true;		// mark locked
-		
-		// this call may destroy us if we have no databases anymore
-		session().removeReference(*this);
+    bool lock = false;
+    {
+        StLock<Mutex> _(*this);
+        if (!isLocked()) {
+            DatabaseCryptoCore::invalidate();
+            notify(kNotificationEventLocked);
+            SECURITYD_KEYCHAIN_LOCK(this, (char*)this->dbName());
+            Server::active().clearTimer(this);
+
+            mIsLocked = true;		// mark locked
+            lock = true;
+            
+            // this call may destroy us if we have no databases anymore
+            session().removeReference(*this);
+        }
+    }
+    
+    if (mLoginKeychain && lock) {
+        service_context_t context = session().get_current_service_context();
+        service_client_kb_lock(&context);
+        session().keybagClearState(session_keybag_unlocked);
     }
 }
 
diff --git a/src/kcdatabase.h b/src/kcdatabase.h
index 27fcfa5..439ffbe 100644
--- a/src/kcdatabase.h
+++ b/src/kcdatabase.h
@@ -111,6 +111,7 @@ public:
 	const DbIdentifier &identifier() const {return mIdentifier; }
 	const DLDbIdentifier &dlDbIdent() const { return identifier(); }
 	const char *dbName() const { return dlDbIdent().dbName(); }
+    bool isLoginKeychain() const { return mLoginKeychain; }
 	
 	DbBlob *encode(KeychainDatabase &db);
 	
@@ -144,6 +145,7 @@ private:
 	// all following data protected by object lock
 	bool mIsLocked;				// logically locked
 	bool mValidParams;			// mParams has been set
+    bool mLoginKeychain;
 };
 
 
@@ -190,6 +192,9 @@ public:
 	void lockDb();											// unconditional lock
 	void unlockDb();										// full-feature unlock
 	void unlockDb(const CssmData &passphrase);				// unlock with passphrase
+    
+    void stashDbCheck();                                    // check AppleKeyStore for master key
+    void stashDb();                                         // stash master key in AppleKeyStore
 
 	bool decode();											// unlock given established master key
 	bool decode(const CssmData &passphrase);				// set master key from PP, try unlock
@@ -245,6 +250,8 @@ protected:
 private:
 	// all following data is locked by the common lock
     bool mValidData;				// valid ACL and params (blob decoded)
+    CssmAutoData mSecret;
+    bool mSaveSecret;
         
     uint32 version;					// version stamp for blob validity
     DbBlob *mBlob;					// database blob (encoded)
diff --git a/src/securityd.d b/src/securityd.d
index 1a711ce..32f5d75 100644
--- a/src/securityd.d
+++ b/src/securityd.d
@@ -15,7 +15,7 @@
 typedef const void *DTHandle;
 typedef uint32_t DTPort;
 typedef uint32_t DTGuest;
-
+typedef uint8_t bool;
 
 /*
  * The main static provider for securityd
diff --git a/src/session.cpp b/src/session.cpp
index 8e4a1a0..b79f683 100644
--- a/src/session.cpp
+++ b/src/session.cpp
@@ -44,6 +44,7 @@
 #include "database.h"
 #include "server.h"
 #include <security_utilities/logging.h>
+#include <agentquery.h>
 
 using namespace CommonCriteria;
 
@@ -63,7 +64,7 @@ const char Session::kRealname[] = "realname";
 // Create a Session object from initial parameters (create)
 //
 Session::Session(const AuditInfo &audit, Server &server)
-	: mAudit(audit), mSecurityAgent(NULL), mAuthHost(NULL)
+	: mAudit(audit), mSecurityAgent(NULL), mAuthHost(NULL), mKeybagState(0)
 {
 	// link to Server as the global nexus in the object mesh
 	parent(server);
@@ -129,14 +130,32 @@ Session &Session::find(pid_t id, bool create)
 void Session::destroy(SessionId id)
 {
     // remove session from session map
-    StLock<Mutex> _(mSessionLock);
-    SessionMap::iterator it = mSessions.find(id);
-	if (it != mSessions.end()) {
-		RefPointer<Session> session = it->second;
-		assert(session->sessionId() == id);
-		mSessions.erase(it);
-		session->kill();
-	}
+    bool unlocked = false;
+    RefPointer<Session> session = NULL;
+    {
+        StLock<Mutex> _(mSessionLock);
+        SessionMap::iterator it = mSessions.find(id);
+        if (it != mSessions.end()) {
+            session = it->second;
+            assert(session->sessionId() == id);
+            mSessions.erase(it);
+
+            for (SessionMap::iterator kb_it = mSessions.begin(); kb_it != mSessions.end(); kb_it++) {
+                RefPointer<Session> kb_session = kb_it->second;
+                if (kb_session->originatorUid() == session->originatorUid()) {
+                    if (kb_session->keybagGetState(session_keybag_unlocked)) unlocked = true;
+                }
+            }
+        }
+    }
+
+    if (session.get()) {
+        if (!unlocked) {
+            service_context_t context = session->get_current_service_context();
+            service_client_kb_lock(&context);
+        }
+        session->kill();
+    }
 }
 
 
@@ -173,7 +192,6 @@ void Session::kill()
 void Session::updateAudit() const
 {
     CommonCriteria::AuditInfo info;
-	StLock<Mutex> _(mSessionLock);
     try {
         info.get(mAudit.sessionId());
     } catch (...) {
@@ -182,6 +200,59 @@ void Session::updateAudit() const
     mAudit = info;
 }
 
+void Session::verifyKeyStorePassphrase(int32_t retries)
+{
+    QueryKeybagPassphrase keybagQuery(*this, retries);
+    keybagQuery.inferHints(Server::process());
+    if (keybagQuery.query() != SecurityAgent::noReason) {
+        CssmError::throwMe(CSSM_ERRCODE_OPERATION_AUTH_DENIED);
+    }
+}
+
+void Session::changeKeyStorePassphrase()
+{
+    service_context_t context = get_current_service_context();
+    QueryKeybagNewPassphrase keybagQuery(*this);
+    keybagQuery.inferHints(Server::process());
+    CssmAutoData pass(Allocator::standard(Allocator::sensitive));
+    CssmAutoData oldPass(Allocator::standard(Allocator::sensitive));
+    SecurityAgent::Reason queryReason = keybagQuery.query(oldPass, pass);
+    if (queryReason == SecurityAgent::noReason) {
+        service_client_kb_change_secret(&context, oldPass.data(), (int)oldPass.length(), pass.data(), (int)pass.length());
+    } else {
+        CssmError::throwMe(CSSM_ERRCODE_OPERATION_AUTH_DENIED);
+    }
+}
+
+void Session::resetKeyStorePassphrase(const CssmData &passphrase)
+{
+    service_context_t context = get_current_service_context();
+    service_client_kb_reset(&context, passphrase.data(), (int)passphrase.length());
+}
+
+service_context_t Session::get_current_service_context()
+{
+    // if this gets called from a timer there is no connection() object.
+    // need to check for valid connection object and pass the audit token along
+    service_context_t context = { sessionId(), originatorUid(), {} }; //*Server::connection().auditToken()
+    return context;
+}
+
+void Session::keybagClearState(int state)
+{
+    mKeybagState &= ~state;
+}
+
+void Session::keybagSetState(int state)
+{
+    mKeybagState |= state;
+}
+
+bool Session::keybagGetState(int state)
+{
+    return mKeybagState & state;
+}
+
 
 //
 // Manage authorization client processes
@@ -210,7 +281,7 @@ void Session::invalidateAuthHosts()
 //
 void Session::processSystemSleep()
 {
-    SecurityAgent::Clients::killAllClients();
+    SecurityAgentXPCQuery::killAllXPCClients();
 
 	StLock<Mutex> _(mSessionLock);
 	for (SessionMap::const_iterator it = mSessions.begin(); it != mSessions.end(); it++)
@@ -420,6 +491,14 @@ void Session::setupAttributes(SessionCreationFlags flags, SessionAttributeBits a
 	MacOSError::throwMe(errSessionAuthorizationDenied);
 }
 
+uid_t Session::originatorUid()
+{
+    if (mAudit.uid() == AU_DEFAUDITID) {
+        StLock<Mutex> _(*this);
+        updateAudit();
+    }
+    return mAudit.uid();
+}
 
 //
 // Authorization database I/O
diff --git a/src/session.h b/src/session.h
index cccaf24..958af36 100644
--- a/src/session.h
+++ b/src/session.h
@@ -40,12 +40,20 @@
 #include <bsm/audit.h>
 #include <bsm/audit_session.h>
 #include <sys/event.h>
+#include "securityd_service/securityd_service/securityd_service_client.h"
 
 class Key;
 class Connection;
 class Server;
 class AuthHostInstance;
 
+enum {
+    session_keybag_locked           = 0,
+    session_keybag_unlocked         = 1 << 0,
+    session_keybag_check_master_key = 1 << 1,
+    session_keybag_loaded           = 1 << 2,
+};
+
 //
 // A Session object represents one or more Connections that are known to
 // belong to the same authentication domain. Informally this means just
@@ -78,7 +86,7 @@ public:
 	
     virtual void setupAttributes(SessionCreationFlags flags, SessionAttributeBits attrs);
 
-	virtual uid_t originatorUid() const		{ updateAudit(); return mAudit.uid(); }
+	virtual uid_t originatorUid();
 
 	virtual CFDataRef copyUserPrefs() = 0;
 
@@ -153,6 +161,17 @@ protected:
 	
 	void kill();
 
+public:
+    void verifyKeyStorePassphrase(int32_t retries);
+    void changeKeyStorePassphrase();
+    void resetKeyStorePassphrase(const CssmData &passphrase);
+    service_context_t get_current_service_context();
+    void keybagClearState(int state);
+    void keybagSetState(int state);
+    bool keybagGetState(int state);
+private:
+    int mKeybagState;
+
 public:
 	static Session &find(SessionId id, bool create);	// find and optionally create
     template <class SessionType> static SessionType &find(SecuritySessionId id);
diff --git a/src/token.cpp b/src/token.cpp
index 1f8f7c0..55198c1 100644
--- a/src/token.cpp
+++ b/src/token.cpp
@@ -270,12 +270,16 @@ void Token::insert(::Reader &slot, RefPointer<TokenDaemon> tokend)
 		secdebug("token", "%p installing MDS from %s(%s)", this,
 			tokend->bundlePath().c_str(),
 			mdsDirectory[0] ? mdsDirectory : "ALL");
-		string holdGuid = mGuid.toString();	// extend lifetime of .toString()
+		string holdGuid = mGuid.toString();	// extend lifetime of std::string
+		string holdTokenUid;
+		if (tokend->hasTokenUid())
+			holdTokenUid = tokend->tokenUid();
+		string holdPrintName = this->printName();
 		MDS_InstallDefaults mdsDefaults = {
 			holdGuid.c_str(),
 			mSubservice,
-			tokend->hasTokenUid() ? tokend->tokenUid().c_str() : "",
-			this->printName().c_str()
+			holdTokenUid.c_str(),
+			holdPrintName.c_str()
 		};
 		mds().install(&mdsDefaults,
 			tokend->bundlePath().c_str(),
diff --git a/src/tokenacl.cpp b/src/tokenacl.cpp
index 0fe9955..9d7c1d6 100644
--- a/src/tokenacl.cpp
+++ b/src/tokenacl.cpp
@@ -183,7 +183,8 @@ void TokenAcl::pinChange(unsigned int pin, CSSM_ACL_HANDLE handle, TokenDatabase
 	QueryNewPin query(pin, handle, database, SecurityAgent::changePassphrase);
 	query.inferHints(Server::process());
 	CssmAutoData newPin(Allocator::standard(Allocator::sensitive));
-	switch (query(newPin)) {
+    CssmAutoData oldPin(Allocator::standard(Allocator::sensitive));
+	switch (query(oldPin, newPin)) {
 	case SecurityAgent::noReason:		// worked
 		return;
 	default:
diff --git a/src/tokendatabase.cpp b/src/tokendatabase.cpp
index db2bd69..fa077dc 100644
--- a/src/tokendatabase.cpp
+++ b/src/tokendatabase.cpp
@@ -161,7 +161,9 @@ TokenDaemon &TokenDatabase::tokend()
 
 const char *TokenDatabase::dbName() const
 {
-	return common().dbName().c_str();
+    //store dbName to ensure that will live outside function scope
+    mDbName = common().dbName();
+	return mDbName.c_str();
 }
 
 bool TokenDatabase::transient() const
diff --git a/src/tokendatabase.h b/src/tokendatabase.h
index 8ffa2fd..2578367 100644
--- a/src/tokendatabase.h
+++ b/src/tokendatabase.h
@@ -238,6 +238,7 @@ private:
 	
 private:
 	AccessCredentials *mOpenCreds;			// credentials passed during open
+    mutable std::string mDbName;            // stored name for method dbName() which need to call c_str on object outside function scope
 };
 
 
diff --git a/src/transition.cpp b/src/transition.cpp
index c0f6902..49e31f0 100644
--- a/src/transition.cpp
+++ b/src/transition.cpp
@@ -45,7 +45,9 @@
 #include <securityd_client/xdr_auth.h>
 #include <securityd_client/xdr_dldb.h>
 #include <security_utilities/logging.h>
+#include <AssertMacros.h>
 
+#include <CoreFoundation/CFNumber.h>
 #include <CoreFoundation/CFDictionary.h>
 #include <CoreFoundation/CFPropertyList.h>
 
@@ -650,13 +652,63 @@ kern_return_t ucsp_server_unlockDb(UCSP_ARGS, DbHandle db)
 	END_IPC(DL)
 }
 
+static void check_stash_entitlement(Process & proc)
+{
+    OSStatus status = noErr;
+    CFDictionaryRef code_info = NULL;
+    CFDictionaryRef entitlements = NULL;
+    CFTypeRef value = NULL;
+    bool entitled = false;
+    
+    status = SecCodeCopySigningInformation(proc.processCode(), kSecCSRequirementInformation, &code_info);
+    require_noerr(status, done);
+    
+    if (CFDictionaryGetValueIfPresent(code_info, kSecCodeInfoEntitlementsDict, &value)) {
+        if (CFGetTypeID(value) == CFDictionaryGetTypeID()) {
+            entitlements = (CFDictionaryRef)value;
+        }
+    }
+    require(entitlements != NULL, done);
+    
+    if (CFDictionaryGetValueIfPresent(entitlements, CFSTR("com.apple.private.securityd.stash"), &value)) {
+        if (CFGetTypeID(value) && CFBooleanGetTypeID()) {
+            entitled = CFBooleanGetValue((CFBooleanRef)value);
+        }
+    }
+    
+done:
+    if (code_info) {
+        CFRelease(code_info);
+    }
+    
+    if (!entitled) {
+        CssmError::throwMe(CSSM_ERRCODE_OS_ACCESS_DENIED);
+    }
+}
+
 kern_return_t ucsp_server_unlockDbWithPassphrase(UCSP_ARGS, DbHandle db, DATA_IN(passphrase))
 {
 	BEGIN_IPC(unlockDbWithPassphrase)
-	Server::keychain(db)->unlockDb(DATA(passphrase));
+    Server::keychain(db)->unlockDb(DATA(passphrase));
 	END_IPC(DL)
 }
 
+kern_return_t ucsp_server_stashDb(UCSP_ARGS, DbHandle db)
+{
+    BEGIN_IPC(stashDb)
+    check_stash_entitlement(connection.process());
+    Server::keychain(db)->stashDb();
+    END_IPC(DL)
+}
+
+kern_return_t ucsp_server_stashDbCheck(UCSP_ARGS, DbHandle db)
+{
+    BEGIN_IPC(stashDbCheck)
+    check_stash_entitlement(connection.process());
+    Server::keychain(db)->stashDbCheck();
+    END_IPC(DL)
+}
+
 kern_return_t ucsp_server_isLocked(UCSP_ARGS, DbHandle db, boolean_t *locked)
 {
     BEGIN_IPC(isLocked)
@@ -664,6 +716,26 @@ kern_return_t ucsp_server_isLocked(UCSP_ARGS, DbHandle db, boolean_t *locked)
     END_IPC(DL)
 }
 
+kern_return_t ucsp_server_verifyKeyStorePassphrase(UCSP_ARGS, uint32_t retries)
+{
+    BEGIN_IPC(verifyKeyStorePassphrase)
+    connection.process().session().verifyKeyStorePassphrase(retries);
+    END_IPC(DL)
+}
+
+kern_return_t ucsp_server_changeKeyStorePassphrase(UCSP_ARGS)
+{
+    BEGIN_IPC(verifyKeyStorePassphrase)
+    connection.process().session().changeKeyStorePassphrase();
+    END_IPC(DL)
+}
+
+kern_return_t ucsp_server_resetKeyStorePassphrase(UCSP_ARGS, DATA_IN(passphrase))
+{
+    BEGIN_IPC(verifyKeyStorePassphrase)
+    connection.process().session().resetKeyStorePassphrase(DATA(passphrase));
+    END_IPC(DL)
+}
 
 //
 // Key management