Enabling Screen Recording and Input Monitoring

Some functions in Connection Manager for Mac require access to Screen Recording and Input Monitoring.

macOS 11 Big Sur introduced the capability for Mobile Device Management (MDM) profiles to give a standard user access to these functions. macOS does not provide this access automatically. You must configure the access by using an MDM Privacy Preferences Policy Control (PPPC) profile following the steps below.

1. Navigate to System Preferences > Security and Privacy > Privacy tab.
2. In the left-hand panel select Input Monitoring.
3. In the right-hand panel check the box next to Delinea.ConnectionManager.
4. In the left-hand panel select Screen Recording.
5. In the right-hand panel check the box next to Delinea.ConnectionManager.

Inside your MDM, create a PPPC profile using the settings below:

• Identifier: com.Delinea.ConnectionManager

• Identifier Type: Bundle ID

• Code Requirement:

  Copy

  identifier "com.Delinea.ConnectionManager" and anchor apple generic and certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = UJDHBB2D6Q

   

• Services and Key Values:

  • ScreenCapture: AllowStandardUserToSetSystemService
  • ListenEvent: AllowStandardUserToSetSystemService