Allow full-disk access for the endpoint security host application (SEHA.app) on macOS endpoints
You must configure an MDM profile to allow full-disk access for the endpoint security host application (
SEHA.app
) on macOS 11 endpoints.For illustration purposes, the following instructions assume that you plan to use Jamf, an IT management application.
- In Jamf, select a configuration profile.
- Navigate toPrivacy Preferences Policy Control.
- UnderApp Access, in theIdentifier field, typecom.symantec.dlp.ext.host.application.
- In theIdentifier Typemenu, selectBundle ID.
- Run the following command to generate code requirement details:codesign -dr - /path to app/
- Enter text generated in the previous step in theCode Requirementfield.
- In theAPP OR SERVICEtable, add the following settings:APP OR SERVICEACCESSSystemPolicyAllFilesAllowSystemPolicyRemovableVolumesAllowSystemPolicyNetworkVolumesAllow
- ClickSave.
You can refer to the
System > Agents > Overview
page of the Enforce Server administration console to view and troubleshoot any issues.