Enable MIP classification notifications on macOS endpoints

On macOS endpoints, users are prompted once to permit the DLP Agent to display notifications about label suggestions and label enforcement. To prevent MIP classification notifications from being blocked by users, you can create an MDM configuration profile to bypass the prompt for permission.
For illustration purposes, the following instructions assume that you plan to use Jamf, an IT management application.
  1. Create a custom JSON schema to specify macOS app notifications settings.
  2. In Jamf, select a configuration profile.
  3. Navigate to
    Application & Custom Settings > External Applications
    , and then click
    Add
    .
  4. In the
    Source
    menu, select
    Custom Schema
    .
  5. In the
    Preference Domain
    box, type
    com.apple.notificationsettings
    .
  6. In the
    Custom Schema
    box, enter the custom schema that you created.
  7. Under
    Domain Preferences
    , do the following:
    1. In the
      Bundle ID
      box, type
      com.symantec.dlp.CUI
      .
    2. In the
      Allow Notifications from App
      menu, select
      true
    3. In the
      Alert Type Style
      menu, select
      banners
    4. In the
      Show In Notification Center
      menu, select
      true
    5. In the
      Badges Enabled
      menu, select
      true
  8. Click
    Save
    .