Custom Configuration Profiles for Intune
Verify Privilege Manager White List
Copy
Prvilege Manager White List
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">;
<plist version="1.0">
<dict>
<key>PayloadContent</key>
<array>
<dict>
<key>PayloadDisplayName</key>
<string>Allowed System Extensions</string>
<key>PayloadIdentifier</key>
<string>38e6a808-5528-4a85-b3dd-15eec43649d8</string>
<key>PayloadType</key>
<string>com.apple.system-extension-policy</string>
<key>PayloadUUID</key>
<string>a552a1e2-488e-4bfc-ab51-2eb8dafbf32f</string>
<key>PayloadVersion</key>
<integer>1</integer>
<key>AllowedSystemExtensions</key>
<dict>
<key>UJDHBB2D6Q</key>
<array>
<string>com.delinea.ACSAuthPlugin</string>
<string>com.delinea.preferences.ACSAgent</string>
<string>com.thycotic.privilegemanagergui</string>
<string>com.thycotic.acsd</string>
</array>
</dict>
</dict>
</array>
<key>PayloadDescription</key>
<string>Configures system extensions that are allowed on the machine.</string>
<key>PayloadDisplayName</key>
<string>System Extensions Configuration</string>
<key>PayloadIdentifier</key>
<string>com.yourorganization.systemextensions.main</string>
<key>PayloadOrganization</key>
<string></string>
<key>PayloadType</key>
<string>Configuration</string>
<key>PayloadUUID</key>
<string>539d2412-3ff8-442b-81aa-d24cbe52665b</string>
<key>PayloadVersion</key>
<integer>1</integer>
</dict>
</plist>Verify Privilege Manager Full Disk Access
Copy
Privilege Manager Full Disk Access
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">;
<plist version="1">
<dict>
<key>PayloadUUID</key>
<string>90c69a28-9ddc-47a0-b11b-0e33c07dee76</string>
<key>PayloadType</key>
<string>Configuration</string>
<key>PayloadOrganization</key>
<string>Delinea Inc.</string>
<key>PayloadIdentifier</key>
<string>com.thycotic.acsd</string>
<key>PayloadDisplayName</key>
<string>SYSEX Privacy Preferences PolicyControl PPPC FullDisk Access Payload</string>
<key>PayloadDescription</key>
<string>Configures Privacy Preferences Policy Control for Full Disk Access.</string>
<key>PayloadVersion</key>
<integer>1</integer>
<key>PayloadEnabled</key>
<true/>
<key>PayloadRemovalDisallowed</key>
<false/>
<key>PayloadScope</key>
<string>System</string>
<key>PayloadContent</key>
<array>
<dict>
<key>PayloadUUID</key>
<string>06cadde9-0a38-47b1-9025-ee73a5f6579b</string>
<key>PayloadType</key>
<string>com.apple.TCC.configuration-profile-policy</string>
<key>PayloadOrganization</key>
<string>Delinea Inc.</string>
<key>PayloadIdentifier</key>
<string>com.thycotic.acsd.pppc</string>
<key>PayloadDisplayName</key>
<string>Privacy Preferences Policy Control</string>
<key>PayloadDescription</key>
<string/>
<key>PayloadVersion</key>
<integer>1</integer>
<key>PayloadEnabled</key>
<true/>
<key>Services</key>
<dict>
<key>SystemPolicyAllFiles</key>
<array>
<dict>
<key>Identifier</key>
<string>com.thycotic.acsd</string>
<key>CodeRequirement</key>
<string>anchor apple generic and identifier "com.thycotic.acsd" and (certificate leaf[field.1.2.840.113635.100.6.1.9] /* exists */ or certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = UJDHBB2D6Q)</string>
<key>IdentifierType</key>
<string>bundleID</string>
<key>StaticCode</key>
<integer>0</integer>
<key>Allowed</key>
<integer>1</integer>
</dict>
</array>
</dict>
</dict>
</array>
</dict>
</plist>Verify Privilege Manager Notifications
Copy
Privilege Manager Notifications
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">;
<plist version="1.0">
<dict>
<key>PayloadContent</key>
<array>
<dict>
<key>NotificationSettings</key>
<array>
<dict>
<key>AlertType</key>
<integer>1</integer>
<key>BadgesEnabled</key>
<true/>
<key>BundleIdentifier</key>
<string>com.thycotic.privilegemanagergui</string>
<key>CriticalAlertEnabled</key>
<true/>
<key>NotificationsEnabled</key>
<true/>
<key>ShowInLockScreen</key>
<false/>
<key>ShowInNotificationCenter</key>
<true/>
<key>SoundsEnabled</key>
<true/>
</dict>
</array>
<key>PayloadDisplayName</key>
<string>Notifications</string>
<key>PayloadIdentifier</key>
<string>8BC5EB47-8E9B-4CCB-BFB8-7ED346060748.com.apple.notificationsettings.510D70CC-A4DE-42FB-B327-CAA358740DF7</string>
<key>PayloadOrganization</key>
<string></string>
<key>PayloadType</key>
<string>com.apple.notificationsettings</string>
<key>PayloadUUID</key>
<string>510D70CC-A4DE-42FB-B327-CAA358740DF7</string>
<key>PayloadVersion</key>
<integer>1</integer>
</dict>
</array>
<key>PayloadDisplayName</key>
<string>Approve Privman Notifications</string>
<key>PayloadIdentifier</key>
<string>com.thycotic.com.8BC5EB47-8E9B-4CCB-BFB8-7ED346060748</string>
<key>PayloadOrganization</key>
<string>Thycotic</string>
<key>PayloadScope</key>
<string>System</string>
<key>PayloadType</key>
<string>Configuration</string>
<key>PayloadUUID</key>
<string>8BC5EB47-8E9B-4CCB-BFB8-7ED346060748</string>
<key>PayloadVersion</key>
<integer>1</integer>
</dict>
</plist>Verify Privilege Manager Events
Copy
Privilege Manager Events
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">;
<plist version="1.0">
<dict>
<key>PayloadContent</key>
<array>
<dict>
<key>PayloadDescription</key>
<string></string>
<key>PayloadDisplayName</key>
<string>Privacy Preferences Policy Control</string>
<key>PayloadEnabled</key>
<true/>
<key>PayloadIdentifier</key>
<string>DC4FCA18-FCF2-4332-9192-A00D9A0BC128</string>
<key>PayloadOrganization</key>
<string>Thycotic LTD</string>
<key>PayloadType</key>
<string>com.apple.TCC.configuration-profile-policy</string>
<key>PayloadUUID</key>
<string>DC4FCA18-FCF2-4332-9192-A00D9A0BC128</string>
<key>PayloadVersion</key>
<integer>1</integer>
<key>Services</key>
<dict>
<key>Accessibility</key>
<array>
<dict>
<key>Allowed</key>
<integer>1</integer>
<key>CodeRequirement</key>
<string>anchor apple generic and identifier "com.thycotic.privilegemanagergui" and (certificate leaf[field.1.2.840.113635.100.6.1.9] /* exists */ or certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = UJDHBB2D6Q)</string>
<key>Identifier</key>
<string>com.thycotic.privilegemanagergui</string>
<key>IdentifierType</key>
<string>bundleID</string>
<key>StaticCode</key>
<integer>0</integer>
</dict>
</array>
<key>AppleEvents</key>
<array>
<dict>
<key>AEReceiverCodeRequirement</key>
<string>identifier "com.apple.systemevents" and anchor apple</string>
<key>AEReceiverIdentifier</key>
<string>com.apple.systemevents</string>
<key>AEReceiverIdentifierType</key>
<string>bundleID</string>
<key>Allowed</key>
<integer>1</integer>
<key>CodeRequirement</key>
<string>anchor apple generic and identifier "com.thycotic.privilegemanagergui" and (certificate leaf[field.1.2.840.113635.100.6.1.9] /* exists */ or certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = UJDHBB2D6Q)</string>
<key>Identifier</key>
<string>com.thycotic.privilegemanagergui</string>
<key>IdentifierType</key>
<string>bundleID</string>
<key>StaticCode</key>
<integer>0</integer>
</dict>
</array>
</dict>
</dict>
</array>
<key>PayloadDescription</key>
<string>Privilege Manager PPPC Apple Events</string>
<key>PayloadDisplayName</key>
<string>Privilege Manager PPPC Apple Events</string>
<key>PayloadEnabled</key>
<true/>
<key>PayloadIdentifier</key>
<string>5F761A1C-1F93-4666-99E4-772FDA978AFF</string>
<key>PayloadOrganization</key>
<string>Thycotic LTD</string>
<key>PayloadRemovalDisallowed</key>
<true/>
<key>PayloadScope</key>
<string>System</string>
<key>PayloadType</key>
<string>Configuration</string>
<key>PayloadUUID</key>
<string>5F761A1C-1F93-4666-99E4-772FDA978AFF</string>
<key>PayloadVersion</key>
<integer>1</integer>
</dict>
</plist>