Shell Script PPPC Warning

ammonsc
Contributor II

I have a shell script that runs as part of a package install after enrollment that helps kick off my SplashBuddy setup.

Stealing (learning from) https://yearofthegeek.net/2018/05/updating-our-depnotify-process/

The process works perfect however now my shell script that gets called is asking for permission to control the Finder. You cannot add a .sh file to the JAMF PPPC Utility any ideas how to build a configuration profile so that popup does not do that?

3 REPLIES 3

Ludeth
New Contributor II

Have you tried adding the terminal app to a PPPC Profile and see if that resolves it?

sshort
Valued Contributor

@ammonsc Check out this post on signing scripts for PPPC: https://carlashley.com/2018/09/23/code-signing-scripts-for-pppc-whitelisting/

That should only be required if the pop-up dialog is actually saying script.sh wants to control Finder, vs something like @Ludeth mentions that sometimes it's the jamf binary or Terminal that is requesting permission (and needs to be whitelisted).

ammonsc
Contributor II

I forgot to mention

Yes, I have added Terminal, osascript, jamf, and jamfagent to PPPC