Initial agent install
You can install the Forcepoint F1E agent manually in your macOS.
Steps
-
From the mac packages, copy FORCEPOINT-ONEENDPOINT-Mac.zip to the endpoint machine, then double-click the file to unzip the installation package.
macOS automatically creates a directory named EndpointInstaller, which contains a file called WebsenseEndpoint.pkg.
-
If you are deploying a Forcepoint DLP Endpoint package, add the private key file key.pem and the certificate file server.pem to the
EndpointInstaller folder.
Note: If you are deploying a Forcepoint Web Security Endpoint package, you must add a configuration file named HWSConfig.xml to the EndpointInstaller folder.
- To start the installation process, double-click WebsenseEndpoint.pkg.
- Click Continue, and agree to the license agreement.
- Click Install.
-
To install the software, enter a user name and password for a user with administrator rights.
The System Extension Blocked message opens.Note: If you are installing Forcepoint DLP Endpoint v21.12 or later on macOS 11 (Big Sur) onwards, message appears for you to enable full disk access (FDA) for four new processes.
-
To install the system extensions, do the following:
-
Click Open Security Preferences.
The General section of the Security & Privacy window opens.
-
Click the lock to unlock your mac, and select Allow.
You may require to enter the password to unlock Security & Privacy Preferences.The message to add proxy configurations opens.
-
Click Allow.
A confirmation message appears when the Forcepoint Endpoint software is successfully installed.
-
Click Open Security Preferences.
-
To grant FDA access, do the following:
-
Click Open Full Disk Access .
The macOS System Preferences window opens.
-
On the Privacy tab, select ESDaemonBundle and Websense Endpoint Helper.
- Click the button.
-
Go to Library > Application Support > Websense Endpoint > DLP, select wsdlpd, and then click Open.
- Verify that wsdlpd is included in the list and selected.
- Click the button under the list.
- Go to Library > Application Support > Websense Endpoint > EPClassifier, select EndPointClassifier, and then click Open.
- Verify that EndPointClassifier is included in the list and selected.
-
Close the Security & Privacy window.
Note: If you are deploying Forcepoint DLP Endpoint using Jamf, you can enable FDA for these processes using a configuration file.
-
Click Open Full Disk Access .