Open dstranathan opened 3 years ago
objective-see
commented
3 years ago Aloha, good questions
Was told (by an MDM guru) that one needs to deploy two payloads ...one for the system extension approval (which sounds like you've already done) and another one for the network extension/filter approval.
Not sure about the answer to that ...maybe (by design) removing it unsets the approval? (vs. killing it?)
unfo33
commented
3 years ago I know I need one for network extension/filter approval but I don't know what the values are. usually the vendor provides them. For example see McAfee's for their firewall: https://kc.mcafee.com/corporate/index?page=content&id=KB93600
If you could provide that it would be quite helpful. I've tried quite a few variations but only managed to break it.
unfo33
commented
3 years ago Actually I was able to figure this out!
I'm deploying LuLu to a some IT Macs running Catalina and Big Sur.
1 I am leveraging Jamf Pro 10.26's System Extension Approvals payload to suppress the initial LuLu System Extension pop-up (which redirects to the GateKeeper Security & Privacy preference pane). However, I can't seem to suppress the 2nd Network Content Filter (purple icon) pop-up. Any thoughts on how to handle this? I want to automatically approve this without manual intervention (and human error).
2 The LuLu system Extension creates a virtual interface in the Network system preference pane (technically its a Network 'Content Filter Configuration'). However, if I remove it manually (via the minus button), the system extension seems to stay loaded and the LuLu app/service continues to work fine. How is this possible? Is this normal?