Skip to main content

PARTNERS

Allow full disk access to Bitdefender Endpoint Security for Mac in macOS Mojave (10.14) and later

Starting with macOS Mojave (10.14), Apple has introduced certain privacy protections that by default block applications’ access to specific system application folders and resources, such as Mail, Messages, Safari, Time Machine backups.

In order for Endpoint Security for Mac to scan such protected folders, the user must allow full disk access for the BDLDaemon or BDLDaemon.app, and Endpoint Security for Mac application files. Otherwise, modules such as Advanced Threat Control, Antimalware On-Access, and Endpoint Detection and Response do not work properly. The Endpoint Security for Mac user interface will show a critical issue until access is granted.

Issue

On systems running macOS Mojave (10.14), the Endpoint Security for Mac user interface displays a critical issue prompting the user to add the following application files to the Full Disk Access list in the Security & Privacy > Privacy.

On macOS Mojave (10.14) and Catalina (10.15), the following files require full disk access:

  • BDLDaemon

  • EndpointSecurityforMac.app

On macOS Big Sur (11.x) and later, the following files require full disk access:

  • BDLDaemon.app

  • EndpointSecurityforMac.app

Note

In case of a network with various macOS versions, it is recommended to allow all BDLDaemon, BDLDaemon.app, and EndpointSecurityforMac.app files.

The path to these files is /Library/Bitdefender/AVP for the version 7.4 of the product and /Library/Bitdefender/AVP/product/bin/EndpointSecurityforMac.app for the version 7.6.

Solution

To allow full disk access to the Endpoint Security for Mac files and fix the issue:

  1. In the View Issues window, click the Open Privacy button to go to the Security & Privacy window > Privacy tab > Full Disk Access folder.

  2. Click the lock to make changes and enter an administrator password.

  3. Click the + button to manually add the EndpointSecurityforMac.app, BDLDaemon and BDLDaemon.app files to the Full Disk Access list.

    15446_2.png

Note

  • The above steps apply for Endpoint Security for Mac 4.4.85.179550 and later.

  • To be fully functional, Endpoint Security for Mac also requires kernel extension approval in macOS High Sierra (10.13), Mojave (10.14), and Catalina (10.15). For details, refer to this topic.

  • In macOS Big Sur (11.x), Apple replaced kernel extensions with a new generation of system extensions. To accommodate this change, Endpoint Security for Mac requires additional approvals from users. For details, refer to this topic.

  • For details on how to configure Jamf Pro for macOS Big Sur 11.0 and later, including system extensions, traffic proxy and full disk access, refer to this topic.