Installing the CylanceGATEWAY agent Skip Navigation

Installing the
CylanceGATEWAY
agent

The
CylanceGATEWAY
agent protects users’
Windows 10
,
Windows 11
, and
macOS
devices by allowing you to block connections to Internet destinations that you don’t want devices to reach, even when the device isn't connected to your network.
BlackBerry
maintains an ever-growing list of unsafe Internet destinations that it can block endpoints from connecting to. If your organization also wants to block users from visiting specific sites that don't meet your acceptable use standards, you can create policies to specify additional destinations that all users or specific users or groups cannot access.
The
CylanceGATEWAY
agent is installed on user's devices, allowing them to access network resources safely and protect their device from suspicious and potentially malicious network activity. When the
CylanceGATEWAY
agent is installed and Work Mode is enabled,
CylanceGATEWAY
establishes secure connections between the user’s device and your organization's network and the public Internet, analyzes your network activity, and applies network access policies that you manage. When you enable Safe Mode for
macOS
and
Windows
devices,
CylanceGATEWAY
extends the tenant ACL rules and endpoint protection for devices when Work Mode is not enabled to ensure that devices are always protected for network traffic that does not use the tunnel.
When you deploy a new installation of the
CylanceGATEWAY
agent, users' devices must be restarted, and users must manually complete the installation process and enable Work Mode or activate Safe Mode. When you deploy an upgrade of the
CylanceGATEWAY
agent, users' devices must be restarted for the upgrade to complete. During the upgrade, the
CylanceGATEWAY
agent retains all of the configurations. No additional action is required by users.
When the
CylanceGATEWAY
agent installation is controlled by enterprise device management tools (for example,
Microsoft
System Center Configuration Manager (SCCM) or another deployment tool), you can include the customDomain parameters to minimize user interaction when the agent is activated. You can obtain the custom domain name from the "Custom Domain Name" field in Settings > Application. You can supply the parameters for
Windows
devices from the command line and for
macOS
devices using a managed app configuration or MCX app preferences. You can also direct users to manually download and install the
CylanceGATEWAY
agent to enable Work Mode or activate Safe Mode
  • For
    macOS
    devices, include the following value to specify the custom domain name to be used when users activate
    CylanceGATEWAY
    agent 2.9 or later:
    <dict> <key>customDomain</key> <string>
    Your_custom_domain_name
    </string> </dict>
  • For
    Windows
    devices, include the following command to specify the custom domain name to be used when users activate
    CylanceGATEWAY
    agent 2.9 or later:
    CylanceGATEWAY-<
    version
    >.exe /v"CUSTOM_DOMAIN=<
    your_custom_domain_name
    >"
    To specify the custom domain name for a silent installation, see Perform a silent installation and upgrade of the CylanceGATEWAY agent.