Using JAMF

Below instructs the use of JAMF to ease installation of the endpoint and any prerequisites. Using JAMF eliminates manual steps needed on Mac to trust the Certificate and accept permissions for our system extension.

1. Upload the `MobileConfig` File

You can retrieve the MDM profile's XML here and directly upload it to JAMF. This will contain all requisite permissions at once, including:

Root Certificate - for trusting the on-device SSL inspection
Network Extension Permission - for re-routing traffic to the on-device proxy
VPN Permission - for re-routing traffic to the on-device proxy
Privacy Preferences Permission - for anti-tampering

After uploading it to JAMF, you will have the full profile available to target and deploy to devices.

2. Deploy profile to devices

Take your new profile scope, click Scope, and target it to your endpoints:

Add the target machines you want to distribute to.

The profile should have 4 items (certificate, system extension, vpn, and privacy preferences):

3. Install the application pkg

Create a JAMF policy with the installation .zip that includes:

Installer .pkg (It's a universal binary that supports Intel & Arm)
agent_parameters.json
Certificate

Directly upload the .zip to JAMF. Scope the target machines you want to send to and send. The target machines should now pick up and install the dope.security package and require no manual intervention.

The next step on the target machines will be to authenticate using Google or O365.

PreviousInstalling using MDM on Mac NextMac Installer

Last updated 8 months ago

1. Upload the MobileConfig File

2. Deploy profile to devices

3. Install the application pkg

1. Upload the `MobileConfig` File