Gatekeeper Disabled

Gatekeeper is a security feature that protects users from downloading and running malicious or unauthorized software on macOS devices. Advanced users and developers may need to temporarily disable Gatekeeper to install and run applications that are not signed or notarized by Apple.

Creating a new Gatekeeper Disabled policy

To create a new Gatekeeper Disabled policy:

  1. From the Device Posture tab, select + ADD :

    Add new device posture policy

  2. Select Add to macOS .

    The Add new device policy to macOS dialog appears.

    note

    The Gatekeeper Disabled device policy is currently supported for macOS devices.

  3. Select Gatekeeper Disabled from the Select policy type dropdown:

    Add new Gatekeeper Disabled policy

  4. Select the policy Action :
    • Review : No auto-remediation is performed and a ticket is raised and classified as requiring review. The ticket remains open until either the admin user closes it manually or the vulnerability is observed by the Coro endpoint agent as being resolved.
    • Enforce : Auto-remediation is performed, recorded in a ticket, and the ticket is auto-closed.
    Important

    Devices running macOS 15 and later support the Review action. The Enforce action is not available.

  5. Enter label names (predefined or custom) to the Labels field listed under Apply policy to devices with these labels to apply the new policy to specific groups of devices:

    Apply device policy labels

  6. Select SAVE .

    The policy is created with the configured settings.

    note

    When Gatekeeper is disabled on a macOS device, a Gatekeeper disabled ticket type is created.

The policy can be viewed by selecting the dropdown next to Gatekeeper Disabled on the Device Posture tab. See Device posture configuration overview.

The following policy details are displayed:

  • Device labels applicable to the policy.
  • The actions applicable to the policy, such as Enforce .

    View Gatekeeper Disabled policy