Create a "New to Santa" doc

[tburgin]

• An overview of Santa.
• A detailed guide on how to set it up.
  • UAKEL
  • Rules
• A detailed guide on using a sync server.

[kcgaisford]

This would be much appreciated.

[vmayoral]

I tried downloading both the .img as well as the tar.gz. In both cases, I've been unable to launch santa.

I don't mind putting some time into helping other new users but I'll need some assistance on these first steps.

My system:

sw_vers
ProductName:    Mac OS X
ProductVersion: 10.15.3
BuildVersion:   19D76

[tburgin]

Hello, the easiest way to get Santa installed is by using the .pkg installer that is packaged inside the .dmg.

I suggest running the latest release. Be sure to see the note about SystemExtension and TCC approvals.

[vmayoral]

Hello, the easiest way to get Santa installed is by using the .pkg installer that is packaged inside the .dmg.

I suggest running the latest release. Be sure to see the note about SystemExtension and TCC approvals.

Thanks @tburgin, let me retry and report back then.

[vmayoral]

All right, so after several attempts, I seem to have been able to successfully install v1.10. What I did:

• Uninstall santa previous versions (and attempts) using uninstall.sh script from the source code
• Dowload latest version of santa
• Accept its permissions according https://github.com/google/santa/releases/tag/1.0.3
• create custom profiles/configurations following https://santa.readthedocs.io/en/latest/deployment/configuration/

 /var/db/santa  santactl status                                                                                                                     ✔  778  13:24:21
>>> Daemon Info
  Driver Connected          | Yes
  Mode                      | Monitor
  File Logging              | Yes
  Watchdog CPU Events       | 0  (Peak: 1.75%)
  Watchdog RAM Events       | 0  (Peak: 16.26MB)
>>> Database Info
  Binary Rules              | 0
  Certificate Rules         | 0
  Compiler Rules            | 0
  Transitive Rules          | 0
  Events Pending Upload     | 1
>>> Sync Info
  Sync Server               | https://sync-server-hostname/api/santa/
  Clean Sync Required       | Yes
  Last Successful Full Sync | Never
  Last Successful Rule Sync | Never
  Push Notifications        | Disconnected
  Bundle Scanning           | No
  Transitive Whitelisting   | No

Thanks @tburgin.

I created a couple of configuration files for now, one to lock-it-down and one for monitor mode. I'll test things for a while and likely report internally afterwards. I probably will get permission to share this publicly afterwards so will ping back if this happens.