GlobalProtect
Non-Removable System Extensions on macOS Sequoia Endpoints Using Jamf Pro
Table of Contents
Non-Removable System Extensions on macOS Sequoia Endpoints Using Jamf Pro
Non-Removable System Extensions on macOS Sequoia Endpoints Using Jamf Pro
| Where Can I Use This? | What Do I Need? |
|---|---|
|
|
You can now use the new system extension type Non-removable system
extensions from UI introduced by Jamf Pro for the devices running on
macOS 15 Sequoia or later versions to prevent the end users from disabling the
GlobalProtect system extensions on endpoints thereby reducing the risks associated
with disabled system extensions. GlobalProtect app version 6.2.6 and later supports
macOS 15 Sequoia. This functionality is available only for the devices running on
macOS 15 Sequoia or later versions.
With this new feature, the Non-removable system extensions from
UI system extension type in Jamf Pro prevents users from disabling
the GlobalProtect system extension through the MDM settings (.) .
- Upgrade the GlobalProtect app to version 6.2.6 or later.Upgrade the macOS to version 15 Sequoia or later.In the mobile device management (MDM), Jamf Pro, create a configuration profile to prevent end users from removing GlobalProtect system extensions.
- Enter a Display Name.Set the System Extension Type as Non-removable system extensions from UI while configuring Configuration Profile.
![]()
Enter the Team Identifier for the GlobalProtect app (PXPZ95SK77).Save the configuration profile.After you enable the Non-removable system extensions from UI, end users cannot disable the GlobalProtect system extension.![]()
If the GlobalProtect system extensions are disabled by the end-user, the following GlobalProtect features do not work:- Split-tunnel by Domain
- Split-tunnel by App
- Enforcer
- Split-DNS
- Traffic Enforcement
