Enable full disk access

edit

Elastic Endpoint Security requires full disk access to protect you from malware and other cybersecurity threats. Full Disk Access permissions is a new privacy feature introduced in macOS Mojave (10.14) that prevents some applications from accessing your data. This means you need to manually grant permission for Elastic Endpoint Security to access these protected areas of your Mac.

This article describes how to enable full disk access for both the Elastic Agent, required in order to enable Elastic Endpoint Security, and the legacy Endgame sensor.

  1. Open the System Preferences application.
  2. Click Security and Privacy. On the Security and Privacy panel, select the Privacy tab.
  3. In the left pane, select Full Disk Access.

    Select Full Disk Access
  4. In the lower-left corner of the panel, click the Lock button and enter your username and password. You can now add the elastic-agent or esensor file.
  5. Click the + button to view Finder. Navigate to the /Library/Endgame directory, select the elastic-agent or esensor file, and then click Open.
  6. In the Privacy tab, confirm that the elastic-agent or esensor file appears in the list of applications that have full access permission, as seen in the following image:

Elastic Endpoint Security now has the access required to fully protect your system.