Help

Composer Opening Error - Folder Whitelist MCX

chrispike
New Contributor II

Posted on ‎02-09-2012 03:48 AM

Hello all,

I have applied the Folder Whitelist MCX setting under com.apple.applicationaccess.new to only allow Applications to launch from the following folders:

<array>
    <string>/Applications/</string>
    <string>/Library/</string>
    <string>/System/</string>
    <string>/bin/</string>
    <string>/usr/sbin/</string>
        <string>/Users/_localadmin/</string>
</array>

However when I log in with my _localadmin account and try to run Composer from within the Applications directory I get the following error with the options to 'Always Allow...', 'Allow Once...', and 'OK'.

You don't have permission to use the application "jamf-relauncher".

Clicking on 'Always Allow' or 'Allow Once' and entering the admin password just bring the error back.

This mailing list has been massively helpful since we started using Casper and I thought someone on here might have a quick answer!

Cheers,
Chris

0 Kudos
Reply
4 REPLIES 4

acdesigntech
Contributor II

Posted on ‎02-09-2012 10:08 AM

My organization also uses a whitelist/blacklist, but it's only to blacklist one app - FontBook. However, per JAMF support you need to add keys for family controls, whitelist, AND blacklist. I've linked to images hosted on my wordpress blog so you can get the full picture.

You might want to consider allowing apps to launch from the entire /usr directory since you also have libexec, bin, etc under /usr.

http://acdesigntech.wordpress.com/?attachment_id=277
http://acdesigntech.wordpress.com/?attachment_id=276
http://acdesigntech.wordpress.com/?attachment_id=275
http://acdesigntech.wordpress.com/?attachment_id=274
http://acdesigntech.wordpress.com/?attachment_id=273
http://acdesigntech.wordpress.com/?attachment_id=272
http://acdesigntech.wordpress.com/?attachment_id=271

0 Kudos
Reply

chrispike
New Contributor II

Posted on ‎02-10-2012 01:33 AM

Thank you for your reply but I am getting a 'Page not found' error on your links?

0 Kudos
Reply

acdesigntech
Contributor II

Posted on ‎02-10-2012 03:44 AM

Hmmm, i wrote an article last night about it on my blog: http://acdesigntech.wordpress.com/2012/02/09/using-managed-preferences-mcx-to-blacklist-applications

Try that

0 Kudos
Reply

chrispike
New Contributor II

Posted on ‎02-10-2012 05:27 AM

Thank you, very useful.

0 Kudos
Reply