Skip to content

Deploying Coro with JumpCloud

This guide describes how to deploy the Coro Agent to your macOS endpoints through JumpCloud.

To deploy Coro via JumpCloud, perform the following steps:

  1. Log into your Workspace on the Coro Console. Navigate to Control Panel > Devices > Agent Deployment and locate the latest version of the macOS agent from the list of available versions. From the Actions menu, select Copy Link to copy the URL:

    Download Link

  2. Select the COPY button to copy the link to your clipboard.

  3. Log in to the JumpCloud management portal, then navigate to Device Management > Policy Management.

  4. Select the “+” icon to add a new policy.

  5. Select Mac from the list of platforms at the top of the dialog, then locate the Application Privacy Preferences option and select Configure.

    Setting Application Privacy Preferences

  6. The New Policy dialog appears:

    Adding a new policy

    In the Details tab, locate the Application Information section and configure the following settings:

    • Code Requirement: 

      anchor apple generic and identifier "net.coro.endsec.Coro" and 
(certificate leaf[field.1.2.840.113635.100.6.1.9] /* exists */ or certificate
1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate
leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = E3P52EVK39)

    • Identifier: net.coro.endsec.Coro

    • Identifier Type: Select "BundleID"

  7. Locate the Privacy Preferences section further down and enable the following settings:

    • Allow Access to All Files
    • SysAdmin Files

    Privacy Preferences options

  8. Select Save to add the new policy.

  9. Repeat steps 4-8 to add a second policy based on the following settings:

    • Code Requirement: 

      anchor apple generic and identifier "net.coro.endsec.CoroService" 
and (certificate leaf[field.1.2.840.113635.100.6.1.9] /* exists */ or certificate 
1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate 
leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = E3P52EVK39)

    • Identifier: net.coro.endsec.CoroService

    • Identifier Type: Select "BundleID"

  10. For the second policy, locate the System Extension option and and select Configure:

    System Extension option

  11. Specify the following settings:

    • Team ID: E3P52EVK39
    • Bundle ID: Select Add Bundle ID to add two IDs: "net.coro.endsec.Coro" and "net.coro.endsec.CoroService"
    • Security Extension: Enable

    System Extension settings

  12. In the main menu bar, select Policy Groups and either:

    • Select the “+” icon to create a new policy group.
    • Choose an existing policy group suitable to distribute the Coro Agent to your devices.

    Policy Groups

  13. In your policy group, perform the following steps:

    1. Select Software Management.
    2. Select the Apple icon, then select the "+" icon to configure the upload settings.
    3. Name your installation, add the Coro Agent download URL obtained in step 1, then validate the URL.
    4. Select Device Groups or Devices as applicable to configure your device distribution.
    5. Select Save to save your changes.

The configuration is complete.

Coro is distributed and installed during your scheduled or configured cycles.