Cylance Endpoint Security requirements
Logging in to the management console
- Custom authentication
- Enhanced authentication sign in
  - Sign in to the Cylance Endpoint Security management console using enhanced authentication
  - Generate a new SSO callback URL
Installing the BlackBerry Connectivity Node
Linking to your company directory
Setting up administrators
Adding users and devices
Enrolling CylancePROTECT Mobile and CylanceGATEWAY users
- Create an enrollment policy
- Supported enrollment email variables
Setting up zones to manage CylancePROTECT Desktop and CylanceOPTICS
- Add and configure a zone
Setting up CylancePROTECT Desktop
Setting up CylancePROTECT Mobile
Setting up CylanceOPTICS
- Install the CylanceOPTICS agent on devices
  - Configuration requirements for macOS 11.x and later
  - OS commands for the CylanceOPTICS agent
- Enable and configure CylanceOPTICS
Setting up CylanceGATEWAY
Setting up CylanceAVERT
Managing updates for the CylancePROTECT Desktop and CylanceOPTICS agents
- Manage updates for the CylancePROTECT Desktop and CylanceOPTICS agents
Connecting Cylance Endpoint Security to external services
- Integrating Cylance Endpoint Security with Okta
  - Prerequisites for adding an Okta connector
  - Add and configure an Okta connector
- Integrating Cylance Endpoint Security with Mimecast
  - Prerequisites for adding a Mimecast connector
  - Add and configure a Mimecast connector
Appendix: Best practices for deploying CylancePROTECT Desktop on Windows virtual machines

CylancePROTECT Desktop
configuration requirements for
macOS
and later

When installing

CylancePROTECT Desktop

agent version 2.1 or later on devices running

macOS

, note the following configuration requirements. The requirements depend on whether devices are managed by an MDM solution (for example, Jamf Pro).

MDM managed devices

The information below uses Jamf Pro as the MDM solution, but it is applicable to other MDM solutions.

Requirement	Steps
General settings	Create a configuration profile and specify the following settings in the General tab: Specify a name and description for the profile. Level: Computer Level Distribution Method: Install Automatically
Enable the CylancePROTECT kernel extension. ( macOS 10 only)	Configure the following settings from the Approved Kernel Extensions option: Display Name: Cylance Team ID: 6ENJ69K633 In the Scope tab, verify that the configuration profile is scoped to apply to macOS 10 devices running CylancePROTECT Desktop and CylanceOPTICS .
Enable the CylancePROTECT system extension. ( macOS 11+)	Configure the following settings from the System Extensions option: Display Name: CylanceSystemExtension System Extension Types: Allowed System Extensions Team Identifier: 6ENJ69K633 Allowed System Extensions: com.cylance.CylanceEndpointSecurity.extension
Enable full disk access for the CylancePROTECT agent and system extensions.	Configure the following settings from the Privacy Preferences Policy Control option. Add an App Access configuration and specify the following settings: Identifier: com.cylance.Agent Identifier Type: Bundle ID Code Requirement: identifier "com.cylance.Agent" and anchor apple generic and certificate 1[field.1.2.840.113635.100.6.2.6] /* exists / and certificate leaf[field.1.2.840.113635.100.6.1.13] / exists / and certificate leaf[subject.OU] = "6ENJ69K633" Add the SystemPolicyAllFiles service and set to Allow . Add another App Access configuration and specify the following settings: Identifier: com.cylance.CylanceEndpointSecurity.extension Identifier Type: Bundle ID Code Requirement: identifier "com.cylance.CylanceEndpointSecurity.extension" and (certificate leaf[field.1.2.840.113635.100.6.1.9] / exists / or certificate 1[field.1.2.840.113635.100.6.2.6] / exists / and certificate leaf[field.1.2.840.113635.100.6.1.13] / exists */ and certificate leaf[subject.OU] = "6ENJ69K633" Add the SystemPolicyAllFiles service and set to Allow .
Notifications	In the Notifications tab of the configuration profile, the following settings are recommended: Critical Alerts: Enabled Notifications: Enabled Banner alert type: Persistent Notifications on Lock screen: Displayed Notifications in Notification Center: Displayed Badge app icon: Displayed Play sound for notifications: Enabled
Scope	Configure the following settings in the Scope tab: Verify that the configuration profile is scoped to apply to macOS devices that will be running CylancePROTECT Desktop .
Restart after installation.	After you complete the configuration steps above and install the CylancePROTECT Desktop agent, restart the device.

Devices that are not MDM managed

On devices that are not MDM managed, the user receives a prompt to approve the "CylanceES System Extension" after installing the

macOS

agent on the device. Follow these instructions from the prompt to enable the system extension and allow full disk access. Users can also tap the notification from "CylanceUI" to configure its notification settings.

Click

Open Security Preferences

. This opens the

System Preferences

Security & Privacy

General

tab.

If necessary, click the lock to authenticate the changes and click

Allow

Beside the

System software from application 'CylanceES' was blocked from loading

message, click

Allow

to approve the extension.

To enable full disk access, on the device, navigate to

System Preferences

Security & Privacy

Privacy

tab.

If necessary, click the lock to authenticate the changes and click

Allow

Scroll down and click

Full Disk Access

Select

CylanceEsExtension

Allow notifications for the agent from the

System Preferences

Notifications

CylanceUI

tab.

Section:

Install the macOS agent

CylancePROTECT Desktop configuration requirements for macOS and later

MDM managed devices

Devices that are not MDM managed

CylancePROTECT Desktop
configuration requirements for
macOS
and later