cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

MacOS and Windows enfornce system firewall

Highlighted
Here to help

MacOS and Windows enfornce system firewall

Is there MDM setting for MacOS and Windows to make sure the default system firewall is turned ON? I simply cannot find it

 

thank you

 

 

4 REPLIES 4
Highlighted
Kind of a big deal

Re: MacOS and Windows enfornce system firewall

I know for Mac OS youc an force filevault and firewall via a configuration profile. I am not sure about Windows.

Find this helpful? Click the kudos button. Thanks!
Highlighted
Comes here often

Re: MacOS and Windows enfornce system firewall

Where is the setting located for Mac OS? I can't find it in any of the available options.

Also can't find it for Windows, but our Windows systems can at least have it enforced via GPO.
Highlighted
Building a reputation

Re: MacOS and Windows enfornce system firewall

I highly recommend buying Apple's Server app for $20. You're able to create custom profiles and the Profile Manager section has additional templates that Meraki does not offer.

 

That being said, I have a custom payload that enforces the firewall you can use 🙂

 

https://bazaarvoice.box.com/s/nfrkdo2gz3tplcgxqgtxoqvxweqdreaj

 

 

Highlighted
Here to help

Re: MacOS and Windows enfornce system firewall

Here is the policy in case anybody is interested

 

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
	<key>PayloadContent</key>
	<array>
		<dict>
			<key>Applications</key>
			<array>
				<dict>
					<key>Allowed</key>
					<false/>
					<key>BundleID</key>
					<string></string>
				</dict>
			</array>
			<key>BlockAllIncoming</key>
			<false/>
			<key>EnableFirewall</key>
			<true/>
			<key>EnableStealthMode</key>
			<false/>
			<key>PayloadDescription</key>
			<string>Firewall Payload</string>
			<key>PayloadDisplayName</key>
			<string>Firewall Payload</string>
			<key>PayloadIdentifier</key>
			<string>com.apple.security.firewall</string>
			<key>PayloadOrganization</key>
			<string></string>
			<key>PayloadType</key>
			<string>com.apple.security.firewall</string>
			<key>PayloadUUID</key>
			<string>2c446a50-e683-0135-c0eb-0c85903e08f9</string>
			<key>PayloadVersion</key>
			<integer>1</integer>
		</dict>
	</array>
	<key>PayloadDescription</key>
	<string>Required firewall enforcement</string>
	<key>PayloadDisplayName</key>
	<string>Firewall enforced on client</string>
	<key>PayloadIdentifier</key>
	<string>com.apple.security.firewall.pci</string>
	<key>PayloadOrganization</key>
	<string>Your company Inc.</string>
	<key>PayloadType</key>
	<string>Configuration</string>
	<key>PayloadUUID</key>
	<string>c9fe66c3-5292-4298-aa54-006fcd59bfdf</string>
</dict>
</plist>

 

Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels