System or Team Identifiers for MacOS and JAMF? - Page 1

#1 VintageMacGuy 1 year ago

Has anyone used JAMF to distribute this to Macs?

We are rolling out NXLog to our Macs. I have the installer working, but don't have any security info to configure things like PPPC or System Extensions. I was able to manually tick the box for Full Disk Access, but I am still getting an error message saying that im_maces|in NXLog requires Transparency, Consent, and Control (TCC) approval to connect to Endpoint Security.

If I can find the Bundle ID and Identifier, I should be able to roll that info a PPPC configuration profile which will flip the switch to turn on the Full Disk Access during install, so I don't have to manually do that.

Then to clear the error message I am getting above, I likely need a Team Identifier and/or System Extension type for the System Extensions portion of the Configuration Profile in JAMF?

But I have checked this website and don't seem to find anything here in the documentation or message boards about any identifier. Is there a way to find this info out by looking on a system that has the software installed?

Permalink

#2 ygini 1 year ago

#1 VintageMacGuy

Has anyone used JAMF to distribute this to Macs? We are rolling out NXLog to our Macs. I have the installer working, but don't have any security info to configure things like PPPC or System Extensions. I was able to manually tick the box for Full Disk Access, but I am still getting an error message saying that im_maces|in NXLog requires Transparency, Consent, and Control (TCC) approval to connect to Endpoint Security. If I can find the Bundle ID and Identifier, I should be able to roll that info a PPPC configuration profile which will flip the switch to turn on the Full Disk Access during install, so I don't have to manually do that. Then to clear the error message I am getting above, I likely need a Team Identifier and/or System Extension type for the System Extensions portion of the Configuration Profile in JAMF? But I have checked this website and don't seem to find anything here in the documentation or message boards about any identifier. Is there a way to find this info out by looking on a system that has the software installed?

Hey

Funny, we are doing the same thing the same day ^^

You can get the Team Identifier using codesign -dv --verbose=4 /opt/nxlog/bin/nxlog which will give:

Executable=/opt/nxlog/bin/nxlog.app/Contents/MacOS/nxlog
Identifier=nxlog
Format=bundle with Mach-O thin (arm64)
CodeDirectory v=20500 size=1233 flags=0x10000(runtime) hashes=28+7 location=embedded
VersionPlatform=1
VersionMin=720896
VersionSDK=786688
Hash type=sha256 size=32
CandidateCDHash sha256=faebfc8b3a4ab66910a2477fac96b25888e91c05
CandidateCDHashFull sha256=faebfc8b3a4ab66910a2477fac96b25888e91c054a7c1ad9ddff3f85f87ef54a
Hash choices=sha256
CMSDigest=faebfc8b3a4ab66910a2477fac96b25888e91c054a7c1ad9ddff3f85f87ef54a
CMSDigestType=2
Executable Segment base=0
Executable Segment limit=65536
Executable Segment flags=0x1
Page size=4096
CDHash=faebfc8b3a4ab66910a2477fac96b25888e91c05
Signature size=9099
Authority=Developer ID Application: NXLog Informaciotechnologiai es Szolgaltato Korlatolt Felelossegu Tarsasag (6KBH6TBU4P)
Authority=Developer ID Certification Authority
Authority=Apple Root CA
Timestamp=May 2, 2022 at 5:03:54 PM
Info.plist=not bound
TeamIdentifier=6KBH6TBU4P
Runtime Version=12.1.0
Sealed Resources version=2 rules=13 files=1
Internal requirements count=1 size=168

Team identifier is 6KBH6TBU4P.

I've tried to add a System Extension with Endpoint Security allowance and no difference.

Do you have more chance?