FYI for anyone with BESAgent deployed on macOS, and a third-party MDM system (JAMF, WorkspaceONE, Meraki, etc.)…
If your deployment of PPC profiles for com.bigfix.BESAgent
predates BigFix version 9.5.14, you may need to revise your profiles.
When configuring a macOS PPC profile, the admin needs to tell the MDM system the target software’s code signing identifier. This information is captured with the macOS codesign
binary:
codesign --display --requirements - "/Library/BESAgent/BESAgent.app/Contents/MacOS/BESAgent"
The BESAgent’s Team ID string changed when the product transitioned to HCL. The new value is seen in BESAgent versions 9.5.14 and later. If your PPC profiles predate the release of 9.5.14 (October 2019), I recommend rechecking the code signing values.
See also:
(Many thanks to the HCL friends who helped discover and isolate this information.)