macOS Device Profile Configurations
Add configurations to profiles to push settings to devices. The tables below show the configurations available for this platform.
Important: The Apple iOS and macOS platforms have two default profiles: App
Catalog and Profile Catalog. Both profiles are simple web clips that
point to the web address for either the App Catalog or the Profile Catalog. You must
not delete these default profiles.
Security and Restrictions
| Configuration | Description |
|---|---|
| ACME | Configure devices to obtain certificates from an Automatic Certificate Management Environment (ACME) server. |
| Block Process | Restricts applications/processes from operating on your macOS devices. |
| Certificates | Distributes digital certificates to your devices. |
| Energy Saver | Specifies sleep and wake settings for desktop and portable devices. |
| Feature Control | Disables specific device features (e.g., camera, Bluetooth). |
| FileVault | Turns on FileVault disk encryption on devices and sets recovery key options. |
| Finder (macOS) | Specifies the Finder settings and actions allowed on macOS devices. |
| Firewall | Configures advanced firewall policies to filter or reroute network traffic. Restriction: Not supported for
AMAPI-enrolled devices.
|
| Configure Kernel Extensions (macOS) | Specifies a list of kernel extensions a user can install on a device. |
| Login and Background Items (macOS) | Prevents the device users from disabling the login and background items from under
System Settings. Restriction: Requires macOS 13.0+ |
| Notifications | Manage notification settings for apps using their bundle
identifiers. Important: Requires macOS 10.15 or later. |
| Login Window | Controls the look and feel of the device login window, including options for logging in and directory user access to the device. |
| Parental Controls | Configures settings that limit profanity, blocklist/allowlist specific URLs, and establishes time allowances and curfews. |
| Passcode | Use the Passcode configuration to set minimum requirements for passcode-based user authentication on a device. |
| SCEP | Enables certificate enrollment using a Simple Certificate Enrollment Protocol (SCEP) server. |
| Single Sign on (macOS) | Permits device users to authenticate once for many apps via an app extension. This includes options for platform Single Sign On to extend single sign-on capabilities to login window. |
| Security and Privacy | Configures various options for security and privacy. |
| Setup Assistant | Skips certain Setup Assistant sections during the setup of a new user on a macOS device. |
| System Extensions | Allows installation of system extensions. Important: Requires macOS 10.15 or
later. |
| Web Content Filter (macOS) | Specifies a content filtering service for restricting and managing user access to websites on macOS devices. |
Connectivity
| Configuration | Description |
|---|---|
| AirPlay | Manages access to AirPlay destinations. |
| Directory | Configures directory servers for your devices. |
| Ethernet | Configures Ethernet connection settings for your devices. |
| Per App VPN: Custom SSL | Configures Custom SSL VPN account settings for individual applications on your devices. |
| Per App VPN: F5 SSL | Configures F5 SSL VPN account settings for individual applications on your devices. |
| Proxy Profile | Configures proxy settings for directing network traffic on your devices. |
| VPN: Custom SSL | Configures Custom SSL VPN settings. |
| VPN: F5 SSL | Configures F5 SSL VPN settings. |
| VPN: IPSec (Cisco) | Configures your devices' IPSec (Cisco) VPN settings. |
| VPN: L2TP | Configures L2TP VPN settings. |
| Wi-Fi | Configures Wi-Fi settings. |
Other
| Configuration | Description |
|---|---|
| Accessibility | Configures accessibility options on your devices. |
| AirPrint | Configures access to AirPrint printers from your devices. |
| Content Caching (macOS) | Configures content caching on your macOS devices. |
| Custom Profiles | Distributes custom configuration profiles to your devices. |
| Desktop Wallpaper & Screen Saver | Specifies desktop wallpaper and screen saver options for macOS devices. |
| Dock | Specifies the look and feel of the macOS Dock and the applications displayed on it. |
| Extensions | Specifies the enabled / disabled extensions on macOS devices. |
| Fonts | Sets custom fonts for your devices. |
| Login Items | Controls the behavior of macOS devices when they launch. |
| Managed Domains | Separates external data from data that originates within your organization. |
| Software Update | Configures the macOS software update server. |
| Task Scheduler | Schedules execution of device scripts. |
| Time Machine | Specifies the location of a server used to back up a macOS device. |
| Xsan | Specifies an Xsan server network, Apple's storage area network for macOS devices. |