Use this procedure to manually create the correct mobileconfig in your MDM.

MDM begins when you set up a server and distribute your MDM enrollment profile to devices to initiate connecting them. Once the device installs an MDM enrollment profile and connects to the server, it can receive commands from the server. When you remove the MDM enrollment profile from a device, that terminates the device management relationship with the server.

Procedure

  • Specify the Apple Team ID and System Extension bundle Identifier in your Allowed System Extension configuration profile:
    • System Extension Types: Allowed System Extensions
    • Apple Team ID: 7AGZNQ2S2T
    • System Extension Bundle ID: com.vmware.carbonblack.cloud.se-agent.extension

    The Workspace One configuration should look like the following:

    The Workspace One configuration showing the System Extensions panel

    The JAMF configuration should look like the following:

    The JAMF configuration allowing users to approve system extensions