macOS

  • 1 minute read
Prev Next

WARNING

This page contains advanced information targeted for Power Users. You may break client functionality if you are not a power user.

Ensure you are using a supported version of macOS:

https://www.appgate.com/support/software-defined-perimeter-support

Pre-setting defaults

It is possible to set some defaults from the terminal:

To skip the Data usage user approval screen enter: defaults write com.appgate.sdp.service user_approval -bool YES

To set one or more default profiles after a fresh install of the Client enter: defaults write com.appgate.sdp.service default_profiles "appgate://profile1.com/foo;appgate://profile2.com/bar" Each profile should be separated using a semicolon encapsulated in quotes.``

To set the default attention mode enter: defaults write com.appgate.sdp attention_mode [ATTENTION_VALUE] where ATTENTION_VALUE can be 0-2 (Low-Normal-High).

Client logs

Log files are located under /users/<username>/.appgatesdp/log/

Driver logs

In file format they are located under /var/log/appgate/driver.log

You can use the Console app also to view client logs under var/log/appgate/driver.log

Installation (as root)

Run the installer app in the Appgate SDP dmg file.

Uninstallation (as root)

Run the uninstaller app in the Appgate SDP dmg file.

For manual uninstallation: sudo /Library/Application\ Support/AppGate/interactive-uninstall

Cleaning client settings

Delete following files:

~/Library/Preferences/com.appgate.sdp.helper.plist

~/Library/Preferences/com.appgate.sdp.plist

~/Library/Preferences/com.appgate.sdp.service.plist

Then reboot the computer.

Removing stored passwords and certificates

Passwords and certificates are stored in the Keychain due to security reasons.

Quit the AppGate client, Open Keychain Access app, search for “appgate” and delete relevant Appgate SDP Client entries.

DNS configuration

The Client comes with the option of running a custom DNS script that tries to change the network configuration when connecting to Appgate SDP. A custom script enables the Appgate SDP DNS to call for Appgate SDP domains, while the regular DNS remains in charge of resolving everything else. You might require this if, for example, you are using legacy applications that rely on resolving through /etc/resolv.conf.

To achieve this you can add a script which will be will be used when the Client connects and then resets the network configuration when Appgate SDP disconnects.

To use a custom DNS script:

  • Create your script and save it somewhere such as in /etc/custom_dns_script.sh

  • Create a new file containing the line dns_script=/etc/custom_dns_script.sh

  • Save this file as /etc/appgate.conf

When the Client connects, the script will be called with:

--servers <dns-server-ips> --domains <dns-domains>

and when the Client disconnects it will be called with:

--reset

Related articles
  • macOS Clients
    Admin Guide > Admin Guide v6.5 > General administration > Client deployment and management > macOS Clients
  • macOS Clients
    Admin Guide > Admin Guide v6.6 > General administration > Client deployment and management > macOS Clients
  • macOS
    Client Guide > User Guide v6.6 > Advanced
  • macOS
    Client Guide > User Guide v6.7 > Advanced