Starting with macOS 10.14, Apple began implementing a new security framework in their systems.
It limits/restricts access to User Private/Sensitive data. The impact is that the uses must each approve an application (like the BigFix client) before it can access certain sections of a computer. On macOS 10.14, or later, access to some user application data will require user approval. Approvals can also be managed remotely via MDM with the new Privacy Preferences Policy Control payload on macOS 10.14 or later.
So far, this has not been a direct issue for my company, but that looks like it’s about to change.
The Antivirus software that we use needs to be “Approved” on all the Apple systems. I’m being asked if BigFix can do it. Apparently, it requires certain MDM functions be approved via Apple. The Antivirus software only mentions JAMF in their documentation when it comes to remote deployment of the software under macOS.
Has anyone had any experience with this new security setup on Mac’s and working with it via BigFix?
I need to find a way to deploy the software and get it configured on 1,700+ macOS systems without relying on the users to manually authorize the software.