The SIEM app is now a part of the Elastic Security solution. Click here to view SIEM documentation for previous releases.
« Configure network map data Ingest data to Elastic Security »
Elastic Docs Elastic Security Solution [7.9] Get started with Elastic Security Elastic Security system requirements

Enable full disk access

edit

Enable full disk access

edit

Elastic Endpoint Security requires full disk access to protect you from malware and other cybersecurity threats. Full Disk Access permissions is a new privacy feature introduced in macOS Mojave (10.14) that prevents some applications from accessing your data. This means you need to manually grant permission for Elastic Endpoint Security to access these protected areas of your Mac.

This article describes how to enable full disk access for both the Elastic Agent, required in order to enable Elastic Endpoint Security, and the legacy Endgame sensor.

  1. Open the System Preferences application.
  2. Click Security and Privacy. On the Security and Privacy panel, select the Privacy tab.

  3. In the left pane, select Full Disk Access.

    Select Full Disk Access
  4. In the lower-left corner of the panel, click the Lock button and enter your username and password. You can now add the elastic-agent or esensor file.
  5. Click the + button to view Finder. Navigate to the /Library/Endgame directory, select the elastic-agent or esensor file, and then click Open.
  6. In the Privacy tab, confirm that the elastic-agent or esensor file appears in the list of applications that have full access permission, as seen in the following image:

Elastic Endpoint Security now has the access required to fully protect your system.

« Configure network map data Ingest data to Elastic Security »