Web Protection for macOS requires a system extension to be allowed in order to monitor the endpoint's network activity. The end user can allow this extension locally, or an administrator can do it remotely with a mobileconfig profile using a Mobile Device Management (MDM) tool. For more information on completing this remotely, see MDM configuration files for macOS in OneView.
Allow system extension locally on device
If you don't use a MDM, then a prompt appears on the end user's device when Web Protection is enabled on the endpoint's policy.
Have the user click Allow or Open System Settings and follow the prompts to allow the MB-EngineHostsApp-NCEP system extension to filter network content.
If the pop-up was dismissed or ignored, follow these steps instead:
- On the affected Mac device, click on the Apple icon > System Settings.
- Go to General > Login Items & Extensions.
- Click the information button (i) next to Endpoint Security Extensions.
- Toggle on Malwarebytes Engine Host (NCEP) and Malwarebytes Corporation.
- Enter your Mac password and click Ok.
- Click Done.
- Another prompt to allow the MB-EngineHostApp-NCEP displays, click Allow.
For admins to easily identify which endpoints haven't allowed the system extension:
- In OneView, go to Manage > Endpoints.
- Filter the Protection Status column for the Unprotected status.
- Filter the OS Platform column for MacOS.
For troubleshooting Web Protection on macOS, see Troubleshooting macOS Web Protection in OneView.