Ventura docs for M2 Macs in this comment: https://gist.github.com/henrik242/65d26a7deca30bdb9828e183809690bd?permalink_comment_id=4555340#gistcomment-4555340
Old Monterey docs in this old revision: https://gist.github.com/henrik242/65d26a7deca30bdb9828e183809690bd/32c410e3a1de73539c76fa13ea5486569c4e0c5d
Solution for Sonoma: https://gist.github.com/sghiassy/a3927405cf4ffe81242f4ecb01c382ac
Summary: For now the concern is only for M-based Macs that need to be wiped with a fresh install of Ventura. It is not known/confirmed if the Ventura policy anpplies to new systems or systems already MDM enrolled/flagged. Upgrades and older Chip systems are not an issue. Currently, downgrades to Monterey, applying “fixes”, and upgrading to Ventura works, but could change in the future.
I have provided many answers and technical details already and am no longer following this thread and posts/replies. If there are any updates or changes that are relevant, I follow the original post where I provided many answers and update steps that have been copied and reposted many times. https://gist.github.com/sghiassy/a3927405cf4ffe81242f4ecb01c382ac
More details:
The official documentation says internet access is mandatory for organization enrolled (MDM) Macs in Ventura. This is not clear if this applies to non-managed devices that were not previously enrolled.
https://support.apple.com/en-us/HT213327
Also for those planning on potentially downgrading newer M-based Macs - Apple does firmware updates with their OS which they CAN stop signing/authorizing old versions after time has passed. If Apple stops signing older firmware, the system cannot be downgraded (like iOS) and this can POTENTIALLY block downgrades to older OS’s. So those trying to use DFU, the wiping device must have internet access to send the DFU device’s ID so Apples servers can sign the update so it only works with that device. This process allows Apple to POTENTIALLY keep MDM enrollment through DFU restores. Now I have heard Apple has not stopped signing old firmwares for Macs, but it COULD happen.
In the Apple Setup -security policy - full security only allows the latest OS/firmware install while reduced will allow older signed OS’s to install. As stated earlier, you cannot downgrade beyond the shipping version. So any Macs that ship with Ventura cannot be downgraded to Monterey. This will likely be newer M2 devices.