The Code Requirement value for SEHA.app for Jamf deployment differs between local validation and the information provided in the documentation.
search cancel

The Code Requirement value for SEHA.app for Jamf deployment differs between local validation and the information provided in the documentation.

book

Article ID: 278880

calendar_today

Updated On:

Products

Data Loss Prevention Endpoint Prevent

Issue/Introduction

The code requirement value for SEHA for Jamf is different in the documentation than what we get by running command:

codesign -dr - "Library/Manufacturer/Endpoint Agent/SEHA.app"

Output:
designated => identifier "com.symantec.dlp.ext.host.application" and anchor apple generic and certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = Y2CCP3S9W7

Code value from Broadcom Documentation

anchor apple generic and identifier "com.symantec.dlp.ext.host.application" and (certificate leaf[field.1.2.840.113635.100.6.1.9] /* exists */ or certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = Y2CCP3S9W7)

Code for EDPA match the code from documentation.

Environment

16.0.1

Cause

Documentation error.

Resolution

Discussed this with engineering and got below update.

Use the code requirement value generated with command codesign -dr - "Library/Manufacturer/Endpoint Agent/SEHA.app".

 

Powered by Wolken Software