Thread Info
  • State Verified Answer
  • Replies 12 replies
  • Answers 1 answer
  • Subscribers 10 subscribers
  • Views 23671 views
  • Users 0 members are here
Options
Suggested

Configuration Profile for Proxy Configuration

mscottblake

When you install the 10.0.2 EAP on a macOS 11 Big Sur computer, you are presented with a dialog requesting access for SophosWebNetworkExtension to create a proxy configuration. Is there a way to eliminate this dialog with a configuration profile from an MDM?

Proxy Configuration dialog

Parents
  • 0

    Has anyone run 10.0.2 in conjunction with Zscaler Client App? As soon as I have updated to 10.0.2 and enabled the above extension my Zscaler stopped connecting and I had to uninstall Sophos to get it back up. If this extension will impact the ZPA and ZIA this would cause a big issue as in my case both apps are mandatory. Thank you.

  • 0 in reply to Nicholas Secrier

    Hi , there is a known issue where the system requires a reboot in order for inbound connections to work correctly - could that be part of the issue? If a reboot doesn't solve the issue we'd love to have an engineer look into it. Are you aware of Zscaler's support for Big Sur and whether they install their own extensions?

    If you follow the instructions on the linked page the SDU archive will automatically be uploaded to Sophos, you'll just need to message me the filename and I'll get it to an engineer for analysis.

    https://support.sophos.com/support/s/article/KB-000038603?language=en_US

    Thanks

  • 0 in reply to David Lancaster

    Hi David, sorry for the delay in the reply. I know the issue was related to Sophos as once I have uninstalled it Zscaler is working fine. Zscaler is not using kernel extensions as I didn't have to allow it in the Security and Privacy. In fact, no other application at my end required this access. Once the application was uninstalled, I have installed 10.0.1 again and tested the functionality. All was fine with the exception of the engines that were not working on Big Sur. Then I have added the device to my EAP and updated to 10.0.2 and this time all worked fine.

    It is difficult to say what exactly was happening but when I was looking through the Zscaler Client App I could see that the tunnel used by Zscaler was not coming up hence both ZIA and ZPA were not working.

    Since then, I have few devices that have updated to 10.0.2 and they seem to be working fine so the issue might be specific to my test device setup/. I will continue to monitor the behaviour and will report here if I pick up anything else out of the ordinary.

    Regards,

Reply
  • 0 in reply to David Lancaster

    Hi David, sorry for the delay in the reply. I know the issue was related to Sophos as once I have uninstalled it Zscaler is working fine. Zscaler is not using kernel extensions as I didn't have to allow it in the Security and Privacy. In fact, no other application at my end required this access. Once the application was uninstalled, I have installed 10.0.1 again and tested the functionality. All was fine with the exception of the engines that were not working on Big Sur. Then I have added the device to my EAP and updated to 10.0.2 and this time all worked fine.

    It is difficult to say what exactly was happening but when I was looking through the Zscaler Client App I could see that the tunnel used by Zscaler was not coming up hence both ZIA and ZPA were not working.

    Since then, I have few devices that have updated to 10.0.2 and they seem to be working fine so the issue might be specific to my test device setup/. I will continue to monitor the behaviour and will report here if I pick up anything else out of the ordinary.

    Regards,

Children
No Data
Unfiltered HTML