Created
April 23, 2025 20:26
-
-
Save jonesiscoding/4ad7a9c58852d59eea0b11f8294b55e2 to your computer and use it in GitHub Desktop.
Gatekeeper Bypass for App
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" encoding="UTF-8"?> | |
| <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd"> | |
| <plist version="1.0"> | |
| <dict> | |
| <key>PayloadContent</key> | |
| <array> | |
| <dict> | |
| <key>PayloadDescription</key> | |
| <string>Configures Gatekeeper to allow YourAppNameHere</string> | |
| <key>PayloadDisplayName</key> | |
| <string>System Policy Rule</string> | |
| <key>PayloadIdentifier</key> | |
| <string>com.apple.systempolicy.rule.USE-UUIDGEN-TO-GENERATE</string> | |
| <key>PayloadType</key> | |
| <string>com.apple.systempolicy.rule</string> | |
| <key>PayloadUUID</key> | |
| <string>USE-UUIDGEN-TO-GENERATE</string> | |
| <key>PayloadVersion</key> | |
| <integer>1</integer> | |
| <key>Requirement</key> | |
| <string>YourCodeRequirementFromApp</string> | |
| <key>OperationType</key> | |
| <string>operation:execute</string> | |
| <key>Priority</key> | |
| <real>100.0</real> | |
| <key>Comment</key> | |
| <string>Adium - OperationType: operation:execute</string> | |
| </dict> | |
| </array> | |
| <key>PayloadDisplayName</key> | |
| <string>Gatekeeper: YourAppNameHere</string> | |
| <key>PayloadIdentifier</key> | |
| <string>com.yourbundle.USE-UUIDGEN-TO-GENERATE</string> | |
| <key>PayloadOrganization</key> | |
| <string>YourOrgName</string> | |
| <key>PayloadScope</key> | |
| <string>System</string> | |
| <key>PayloadType</key> | |
| <string>Configuration</string> | |
| <key>PayloadUUID</key> | |
| <string>USE-UUIDGEN-TO-GENERATE</string> | |
| <key>PayloadVersion</key> | |
| <integer>1</integer> | |
| </dict> | |
| </plist> |
Author
Author
If trying to work with a modified app bundle, re-sign the app bundle with codesign and your own Developer ID, then package and deploy the app via an MDM, along with this configuration profile.
codesign -f -s <identity> --timestamp=none /path/YourAppHere.app
Important: Get the code requirement for the configuration profile after re-signing the app bundle. :)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
uuidgenfrom the CLI.codesign -d -r - /path/YourAppHere.app(only the portion starting withidentifier