Posted on 09-30-2021 01:12 PM
I am looking for a way to fully disable Airdrop for CIS standard security reasons on our Macs, the typical
Solved! Go to Solution.
Posted on 10-01-2021 07:03 AM
You should be using a configuration profile to block airdrop.
https://github.com/usnistgov/macos_security/blob/main/rules/os/os_airdrop_disable.yaml
But also after disabling you may have to logout or restart in order to get rid of everything and fully disable it.
Posted on 09-30-2021 09:05 PM
Yeah we block airdrop in the media restrictions and I think `sharingd` in the application firewall which is the bonjour process that Air Drop uses
Posted on 10-01-2021 07:03 AM
You should be using a configuration profile to block airdrop.
https://github.com/usnistgov/macos_security/blob/main/rules/os/os_airdrop_disable.yaml
But also after disabling you may have to logout or restart in order to get rid of everything and fully disable it.
Posted on 10-01-2021 11:20 AM
Thank you for the link and info.
Posted on 01-11-2022 07:19 AM
How do the YAML files in the link you provided work with Jamf? I hope you can help me answer. Thank you very much
Posted on 01-19-2022 09:55 AM
Can you please provide Bash script
Posted on 01-19-2022 05:43 PM
Posted on 01-19-2022 11:29 AM
Here is the script to disable Airdrop, "defaults write com.apple.NetworkBrowser DisableAirDrop -bool YES" It does require user logout, login or reboot. Also FYI the config profile method is the best practice way of disabling this.
Posted on 01-26-2022 11:28 PM
Try executing "killall Finder" command after you execute "defaults write com.apple.NetworkBrowser DisableAirDrop -bool YES" command.
Its working for me and I no longer see Airdrop in Go Menu and if you try to access it from spotlight then it will show following error - The operation can't be completed because the item can't be found.
If you want to reenable it do the same process but with NO syntax in the default.write command
Posted on 12-22-2022 09:39 PM
Hi @nachiket_s thank you for your input. I cant get airdrop to disable for the life of me. Can you clarify exactly where I put "defaults write com.apple.NetworkBrowser DisableAirDrop -bool YES"
is this suppose to be added to a configuration profile or do I create a policy? if you can assist with the steps you took that would be amazing!
12-25-2022 11:00 PM - edited 12-25-2022 11:15 PM
This is my method which is working seamlessly for me..other users can try their own methods as well
1) New Macbooks without airdrop enabled already - Created a configuration profile to disable the airdrop button on all systems in inventory
2) For existing macbooks where airdrop shortcuts are already present in the finder--> Pushed the above profile on existing enrolled systems as well and created a smart group which detects the presence of about mentioned configuration profile and scoped this group with attached script to disable the airdrop completely and kill the finder process to remove the shortcuts.
3) Ask the user to log out and log in again
I have found that step 3 is necessary otherwise users can still access airdrop from finder shotcuts or spotlights
#!/bin/sh
## postinstall
tell application "Terminal"
activate
#do script "defaults write com.apple.NetworkBrowser DisableAirDrop -bool YES" in window 1
#do script "killall finder" in window 1
quit
Posted on 03-24-2022 07:46 AM
This code as a custom payload in a Config Profile will do it. Set the domain to: com.apple.applicationaccess
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>allowAirDrop</key>
<false/>
</dict>
</plist>
Set to "true" if you want to turn it on.
Posted on 09-19-2024 01:38 PM
This did not work in Sonoma
Posted on 06-13-2023 03:30 PM
Has anyone found a good way to write an Extension Attribute to let someone know if Airdrop is enabled or disabled? I am having issues finding the plist I can parse that information
Posted on 07-06-2023 02:33 PM
Is anyone aware of any script that can be added as a payload, or other alternative, to disable receiving within AirDrop? Our org is trying to implement a send-only policy, but to my knowledge this does not exist outside of individual AirDrop settings.