Help

PPPC for CyberArk

thuan
New Contributor II

Posted on ‎12-28-2018 12:15 PM

Hi all,

I'm testing out Mojave 10.14.2 in our corp environment.
Jamf Pro: 10.8.0

I've tried the PPPC utility to created the config profile for it.
I even created a config profile to white list its kernel extension.
I then deployed the profile and the CyberArkEPM but when I deployed it to the client, it still prompt for user interaction approval.
Need your suggestions.

Thanks in advance.

Reply
12 REPLIES 12

Chuey
Contributor III

Posted on ‎12-28-2018 12:36 PM

Our security vendor had instructions with the correct information needed for Kernel Ext Approval such as "Display Name", "Team ID", and the "Bundle ID" -- was pretty straight forward using JAMF's "Approved Kernel Extension" Payload.

As far as the PPPC -- can you provide screenshots with the error you're getting for approval and then a screenshot of the PPPC config ?

Thanks

0 Kudos
Reply

rqomsiya
Contributor III

Posted on ‎12-28-2018 03:50 PM

@Chuey Can you share the Display Name, Team ID and Bundle ID?

Thanks,
R

0 Kudos
Reply

Chuey
Contributor III

Posted on ‎01-02-2019 08:00 AM

@rqomsiya I do not have that information for CyberArk .. I would reach out to their support and they should be able to give you this information very easily.

0 Kudos
Reply

thuan
New Contributor II

Posted on ‎01-07-2019 07:49 AM

17687e3b81364ba3be43704abdb07b89
I found out the Team ID, but error still persist.

This is message that I received during the installation.

0 Kudos
Reply

Chuey
Contributor III

Posted on ‎01-07-2019 12:39 PM

@thuan Seems like you'd have to use the PPPC Utility to whitelist terminal I suppose.

0 Kudos
Reply

thuan
New Contributor II

Posted on ‎01-08-2019 06:55 AM

hello Chuey,

I did that and also white list a few other options, but no luck.

0 Kudos
Reply

Chuey
Contributor III

Posted on ‎01-08-2019 08:44 AM

@thuan I would need to see the PPPC Configuration (screenshots) of how you're building the config profile. Then all you should have to do is go to your JAMF Pro, Config Profiles, Upload, Select, Scope, Done.

0 Kudos
Reply

thuan
New Contributor II

Posted on ‎01-08-2019 11:19 AM

4470936889094dc188fa0019ba366c9a

0 Kudos
Reply

caffine247
New Contributor III

Posted on ‎08-01-2019 12:50 PM

@thuan where did you find the app to place into the PPPC?

0 Kudos
Reply

sterlingi
New Contributor

Posted on ‎02-26-2020 02:40 PM

@fneidhardt -- didn't see a response from thuan, but I found the PPPC app here -- https://github.com/jamf/PPPC-Utility

(I'm 6 months late to the game, but the answer will be here for anyone else if you'd already found it.)

edit wait, you were looking for the actual location of the CyberArk application to add to the PPPC not where to get the PPPC (sorry, been a long day). Would love a response from him on that....I only see agent info in /Library/Application Support/CyberArk/ and /Library/Security/SecurityAgentPlugins/CyberArkEPMSecurityAgentPlugin but neither of these seem to be the same. ¯_(ツ)_/¯

0 Kudos
Reply

summoner2100
Contributor

Posted on ‎02-26-2020 04:20 PM

Any package where you need the bundleID and Team ID. Open the package on your machine and click the padlock in the top right. Id's are there.

Reply

summoner2100
Contributor

Posted on ‎02-26-2020 04:22 PM

To figure out what it needs to allow. Install on a test machine, and manually approve the system preference option. When it shows in the list, right click and it should give you an option to locate in finder. Drag that into PPPC utility. You should be done.

Reply