Disabling Local Vault via Admin Enforcement on MacOS
Disabling on Installation
If you are installing Verify Privilege Vault Remote for the first time or local vaults were previously disabled, install Verify Privilege Vault Remote version 2.6 or newer via quiet mode using the following command:
sudo installer -pkg Delinea.ConnectionManager.2.6.0.MacOSInstaller.pkg -target / && sudo defaults write /Library/Preferences/com.Delinea.ConnectionManager.plist disablelocalvault yThe following file will be created during installation and can later be used to adjust administrator settings.
/Library/Preferences/com.Delinea.ConnectionManager.plist
This file can be edited only by administrators and is read-only for regular users.
Backing Up and Disabling Existing Local Vaults
If users already had an existing local vault created, administrators can disable these local vaults, before or after installation by running the following command:
sudo defaults write /Library/Preferences/com.Delinea.ConnectionManager.plist disablelocalvault fy After users launch Verify Privilege Vault Remote, they will see a message that their local vault has been disabled by an administrator.
Re-Enabling Local Vault After Disabling
Administrators can centrally re-enable user access to local vault by running the following command:
sudo defaults remove /Library/Preferences/com.Delinea.ConnectionManager.plist disablelocalvault