Skip to main content

Admin Dashboard

Workspace One - macOS Configuration Guide

The following contains procedures for deploying Workspace One for macOS.

Prerequisites

BlocksiForOSX.pkg

Step One: Configuring the Profile

To configure the profile

  1. Go to Workspace ONE dashboard, Resources > Profiles & Baselines > Profiles.

  2. Create a new device profile or select an existing one to update.

    • To create a new profile, click Add > Add Profile.

    • To update an existing one, select Apple macOS and Device Profile

  3. Configure the next settings:

    • System Extension

    • Custom Settings

    • Custom Attributes

  4. Go to the System Extension section and configure it as it is shown in the example below.

    System Extensions Screen

    The values for the Team Identifier and Bundle Identifier are as follows:

    • Team Identifier: FNVRG3YPHU

    • Bundle Identifier: com.blocksi.filteringosx.proxyext

  5. Go to the Custom Settings setting of the profile and type the following configuration:

    Custom Settings Configuration

  6. Go to the Custom Attributes setting. Add custom attributes to profile as following:

    • Attribute name: any

    • Script/Command: Copy the bellow example and replace the next values

      • admin@example.com with your super admin email value

      • XXX:XXX:XXX:XXX with the value of your AD server DNS

    Script/Command text to input:

    Custom Attributes Configuration
    Custom Attributes Configuration Screen

    Descriptions of Key Values:

    Key Value Descriptions

    Additional Information:

    • JsonVars, allowPackages array - array of strings. The app checks string occurrences from this array to the package ID of sender (app). If the sender package ID contains at least one string from this array - app will use secondDNS as DNS. For AD related senders the app will use localNetworkDNS.

    • To clarify, if allowPackages contains the com.apple string, the app will use secondDNS for all packages with com.apple, including com.apple.Safari. In this case, filtering will not work for Safari browser due to the fact that the whole DNS traffic will be redirected from the browser to the secondDNS.

    • If allowAll is true, then the app redirects all DNS requests to secondDNS.

Section Two: Adding the App

To add the app

  1. Go to Resources > Apps > Native.

  2. Click Add > Application File. The following window opens.

    Add Application

  3. Upload PKG file installer (BlocksiForOSX.pkg). It will be provided to you by the Blocksi enrollment team.

  4. Click Continue.

  5. Select Expedited Delivery.

    Add Application 1

  6. Configure assignments according to the requirements.

  7. Deploy the application to your devices.