Initial agent install

You can install the Forcepoint F1E agent manually in your macOS.

Steps

  1. From the mac packages, copy FORCEPOINT-ONEENDPOINT-Mac.zip to the endpoint machine, then double-click the file to unzip the installation package.
    macOS automatically creates a directory named EndpointInstaller, which contains a file called WebsenseEndpoint.pkg.
  2. If you are deploying a Forcepoint DLP Endpoint package, add the private key file key.pem and the certificate file server.pem to the EndpointInstaller folder.
    Note: If you are deploying a Forcepoint Web Security Endpoint package, you must add a configuration file named HWSConfig.xml to the EndpointInstaller folder.
  3. To start the installation process, double-click WebsenseEndpoint.pkg.
  4. Click Continue, and agree to the license agreement.
  5. Click Install.
  6. To install the software, enter a user name and password for a user with administrator rights.
    The System Extension Blocked message opens.

    Note: If you are installing Forcepoint DLP Endpoint v21.12 or later on macOS 11 (Big Sur) onwards, message appears for you to enable full disk access (FDA) for four new processes.
  7. To install the system extensions, do the following:
    1. Click Open Security Preferences.
      The General section of the Security & Privacy window opens.

    2. Click the lock to unlock your mac, and select Allow.
      You may require to enter the password to unlock Security & Privacy Preferences.
      The message to add proxy configurations opens.

    3. Click Allow.
      A confirmation message appears when the Forcepoint Endpoint software is successfully installed.
  8. To grant FDA access, do the following:
    1. Click Open Full Disk Access .
      The macOS System Preferences window opens.
    2. On the Privacy tab, select ESDaemonBundle and Websense Endpoint Helper.


    3. Click the button.
    4. Go to Library > Application Support > Websense Endpoint > DLP, select wsdlpd, and then click Open.


    5. Verify that wsdlpd is included in the list and selected.
    6. Click the button under the list.
    7. Go to Library > Application Support > Websense Endpoint > EPClassifier, select EndPointClassifier, and then click Open.
    8. Verify that EndPointClassifier is included in the list and selected.
    9. Close the Security & Privacy window.
      Note: If you are deploying Forcepoint DLP Endpoint using Jamf, you can enable FDA for these processes using a configuration file.