As a Workspace ONE administrator, after you modify the PLIST file you can deploy the Carbon Black Cloud sensor to an enrolled macOS device.

Add an Application

Use the Workspace ONE UEM admin console to deploy an internal macOS application for the sensor.

Prerequisites

To have the Workspace ONE UEM natively process macOS metadata, install the Workspace ONE UEM Admin Assistant for macOS tool. For description of the Admin Assistant tool and how to install it, see Introduction to Workspace ONE Admin Assistant for macOS, part of the VMwareWorkspace ONE UEM documentation.

Procedure

  1. Select Resources from the Getting Started wizard.
  2. Unfold Apps and select Native > Internal.
  3. Select Application File from the Add drop-down menu.
  4. Click Upload, choose the local file confer_installer_mac-<version>.dmg that you generated with the VMware Workspace ONE UEM Admin Assistant Tool, and save it.
  5. Upload the metadata file by choosing the CbDefense Install-<version>.plist file that you generated with the Workspace ONE Admin Assistant, and save it.
  6. Add an image for the app install by dragging the CBCloud Install.png graphic to the Workspace ONE UEM console.

Define Pre-Install and Uninstall Scripts

You can provide a pre-install and post-install scripts to populate a configuration file that is consumed by the Carbon Black Cloud sensor kit installation.

You must configure the Scripts settings to run the installation and uninstallation of the Carbon Black Cloud sensor macOS application. By providing pre-install scripts and post-install scripts, you can perform additional configuration tasks or install additional items without the need of repacking the application or software. Simply paste the script and Workspace ONE UEM formats it to be used by Munki.

Procedure

  1. Select the Scripts tab.
  2. Paste one of the following scripts into the Pre-Install Script text box and replace the Code value with your Registration Code.
    Each of the scripts includes the bare minimum required information — the Registration Code, for installing the Carbon Black Cloud sensor for macOS. The advanced pre-install script contains additional options for customizing the sensor installation. Replace them with your own values.
    Option Description
    Basic Pre-Install Script For System Extension Install 
    #!/bin/bash
PATH="/var/cbcloud-install"
/bin/mkdir -p "$PATH"
/usr/bin/touch "$PATH/cfg.ini"
/bin/cat > "$PATH/cfg.ini" <<- EOM
[customer]
Code=<REGISTRATION_CODE>
DisableSysextNetworkExtension=false
KernelType=2
EOM

    For example:

    #!/bin/bash
PATH="/tmp/cbcloud-install"
/bin/mkdir -p "$PATH"
/usr/bin/touch "$PATH/cfg.ini"
/bin/chmod 644 "$PATH/cfg.ini"
/bin/cat > "$PATH/cfg.ini" <<- EOM
[customer]
Code=12345
DisableSysextNetworkExtension=false
KernelType=2
EOM
    Basic Pre-Install Script For Kernel Extension Install 
    #!/bin/bash
PATH="/var/cbcloud-install"
/bin/mkdir -p "$PATH"
/usr/bin/touch "$PATH/cfg.ini"
/bin/cat > "$PATH/cfg.ini" <<- EOM
[customer]
Code=<REGISTRATION_CODE>
DisableSysextNetworkExtension=false
KernelType=1
EOM
    Advanced Pre-Install Script 
    PATH="/var/cbcloud-install"
/bin/mkdir -p "$PATH"
/usr/bin/touch "$PATH/cfg.ini"
/bin/cat > "$PATH/cfg.ini" <<- EOM
[customer]
Code=<REGISTRATION_CODE>
ProxyServer=<PROXY_SERVER>
ProxyServerCredentials=<PROXY_CREDS>
LastAttemptProxyServer=<LAST_ATTEMPT_PROXY_SERVER>
PemFile=<customer.pem>
AutoUpdate=<true|false>
AutoUpdateJitter=<true|false>
InstallBypass=<true|false>
FileUploadLimit=<FILE_UPLOAD_LIMIT>
GroupName=<GROUP_NAME>
EmailAddress=<USER_NAME>
BackgroundScan=<true|false>
RateLimit=<RATE_LIMIT>
ConnectionLimit=<CONNECTION_LIMIT>
QueueSize=<QUEUE_SIZE>
LearningMode=<LEARNING_MODE>
<POC=1>
CbLRKill=<true|false>
HideCommandLines=<true|false>
DisableSysextNetworkExtension=<true|false>
KernelType=<1|2> #1=KEXT,2=SysExt
EOM
  3. Select Uninstall Script as the uninstall method.
  4. Paste the script and populate the Deregistration Code into the Uninstall Script text box. 
    #!/bin/sh
/Applications/VMware\ Carbon\ Black\ Cloud/uninstall.bundle/Contents/MacOS/uninstall -y -c <Deregistration_Code>

Set Deployment Options

By setting the deployment options you define the applications or processes that can prevent the installation from completing successfully.

Procedure

  1. Click the Deployment tab.
  2. Select No for the Blocking Applications option.
    The end user must not close any Carbon Black Cloud applications. This is all handled by the Workspace ONE Intelligent Hub and the Carbon Black Cloud sensor installer.
  3. If deploying the sensor with System Extensions, select None from the Restart Action drop-down menu. If deploying the sensor using KEXTs, choose the appropriate restart action.
  4. Click Save and Assign.

Configure the Assignment

Before assigning the configurations to the sensor application installer, you must set your distribution and restriction preferences.

Procedure

  1. In the Distribution page, enter a name for the distribution.
    For example, All Macs.
  2. Select the Assignment Groups containing the devices that must receive the Carbon Black Cloud sensor.
  3. Select Auto for the App Delivery Method option.
  4. Determine if you want the user to see the Carbon Black application in their App Catalog.
    It can remain inactive.
  5. Click Restrictions and enable Remove on Unenroll and Desired State Management.
  6. Create the assignment.
  7. Optional. Locate the Exclusions tab, add exclusions to the assignments, and adjust the priority for the assignments.
  8. Save the assignment.
  9. Review the assigned device and click Publish.