Skip to main content

SentinelOne Deployment (macOS)

Description

SentinelOne is a cybersecurity company that specializes in endpoint security and threat intelligence. They provide a platform for autonomous endpoint protection that uses AI and machine learning to prevent, detect, and respond to a wide range of security threats, including malware, ransomware, and other cyberattacks.

This recipe will guide on how to setup and deploy to your macOS devices.

Ingredients

Directions

Creating the Installation Fileset:

  1. Download and upload SentinelOne profiles to FileWave Central
  2. Create a new Empty Fileset
  3. In the Fileset, create a new folder under /usr/local/etc/FileWaveInstallers/ called SentinelOne and drop the PKG in.
  4. Create a plain text file, named com.sentinelone.registration-token, and copy only your Site/Group Token

    Screenshot 2025-01-15 at 11.22.14 AM.png


  5. Import the token file into the same SentinelOne folder as the PKG

    Make sure the token file ownership is set to root:staff. You can change the ownership by selecting the file > Get Info > Ownership

    Screenshot 2025-01-15 at 11.50.34 AM.png


    Now we need to create a script to install SentinelOne, using the token to register.

  6. In Admin, select the SentinelOne Fileset and then select 'Scripts' in the toolbar
  7. Create a new Activation Script, and paste the following. You will need to change the name of the PKG to what you have uploaded.
      
    sudo /usr/sbin/installer -pkg /usr/local/etc/FileWaveInstallers/SentinelOne/SentinelAgent_XXXX.pkg -target /

    Video: Creating the Install Script

    You're all set with the Installer! Now we need to import the Profiles.


Importing Profiles

Profile Metadata shown below

  1. Download the profiles attached to this article: SentinelOne_Profiles.zip
  2. Unzip the download and import the profiles
    Video: Importing Profiles
Now deploy all Profiles first and then the Installer. SentinelOne will install with all permissions necessary.


Profile Metadata

Service Management Profile

Service Management Profile

SentinelOne_ServiceManagementProfile.png

Privacy Control Configuration Profile

TCC Profile

SentinelOne_TCCProfile01.pngSentinelOne_TCCProfile02.png

Network System Extension Profile

Team Identifier: 4AYE5J54KN

Allowed System Extensions: com.sentinelone.network-monitoring

System Extension Profile

SentinelOne_SystemExtensionProfile.png

Web Content Filter Profile

Network Filter Profile

SentinelOne_WebContentFilterProfile.png

Related Content

No Comments
Back to top