zl4bv/jamf_bitdefender.md

## jamf_bitdefender.md

      
    Raw
  

              jamf_bitdefender.md
            
          
    Jamf configuration profile settings for Bitdefender Endpoint Security

Privacy Preferences Policy Control

Required for macOS Big Sur.
App Access

Identifier: com.bitdefender.epsecurity.BDLDaemonApp
Identifier Type: Bundle ID
Code Requirement: anchor apple generic and identifier "com.bitdefender.epsecurity.BDLDaemonApp" and (certificate leaf[field.1.2.840.113635.100.6.1.9] /* exists */ or certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = GUNFMW623Y)

App or Service: SystemPolicyAllFiles
Access: Allow

Required for macOS Catalina or earlier.
App Access

Identifier: com.bitdefender.EndpointSecurityforMac
Identifier Type: Bundle ID
Code Requirement: identifier "com.bitdefender.EndpointSecurityforMac" and anchor apple generic and certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = GUNFMW623Y

App or Service: SystemPolicyAllFiles
Access: Allow

Required for macOS Catalina or earlier.
App Access

Identifier: /Library/Bitdefender/AVP/BDLDaemon
Identifier Type: Path
Code Requirement: identifier BDLDaemon and anchor apple generic and certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = GUNFMW623Y

App or Service: SystemPolicyAllFiles
Access: Allow

Approved Kernel Extensions

Required for macOS Catalina or earlier.
Approved Team ID

Display Name: Bitdefender
Team ID: GUNFMW623Y

System Extensions

Required for macOS Big Sur.
Allowed TeamIDs and System Extensions

Display Name: Bitdefender
System Extension Types: Allowed System Extensions
Team Identifier: GUNFMW623Y

Allowed System Extensions: com.bitdefender.cst.net.dci.dci-network-extension

Notes

To grab an updated identifer for the code requirement, run the following command and use the string after "designated=>"
codesign -display -r - <identifier>

Sources


https://www.bitdefender.com/support/bitdefender-endpoint-security-for-mac:-how-to-configure-jamf-pro-for-macos-big-sur-11-0-and-later-2661.html
https://www.jamf.com/jamf-nation/discussions/31445/bitdefender-jamf-push-full-disk-access-required
https://docs.jamf.com/jamf-school/deploy-guide-docs/Configuring_a_Privacy_Preferences_Policy_Control_Profile_for_Computers.html
https://www.bitdefender.com/support/how-to-whitelist-bitdefender-endpoint-security-for-mac-kernel-extensions-using-jamf-pro-10-x-2242.html