Install Nightfall AI Agent for MAC OS
Last updated
Was this helpful?
Last updated
Was this helpful?
Nightfall for macOS allows you to detect exfiltration events on your macOS devices. The Nightfall exfiltration feature can monitor any files being uploaded through supported cloud storage apps or browsers on macOS devices.
To use Nightfall for macOS, you must install the Nightfall AI agent. This agent monitors your macOS device continuously. You can install the agent either manually or through a mobile device management (MDM) tool. You can request the Nightfall deployment bundle, which contains the .pkg and other pre-installation scripts required for your MDM deployment.
You can install the Nightfall AI macOS agent in stealth/hidden mode. Installing the agent in stealth mode allows you to silently deploy the Nightfall agent without any visible UI elements and without user distraction. When you install the agent in silent mode, the Nightfall status bar is hidden. Additionally, the Nightfall application will not be visible in the Applications folder when viewed in Finder. However, stealth mode installation does not prevent the agent from working at full capacity.
Covert Monitoring: If an organization suspects an employee of exfiltrating sensitive data, they can install the agent in stealth mode to monitor the employee's asset without the employee's knowledge.
Ensuring Bias-Free Compliance: An organization wishes to confirm if their employees are adhering to HIPAA/PCI compliances; they can install the agent in stealth mode without giving any indication to their employees (which can prompt a change in their behavior).
Prevent User Distractions: Organizations that do not wish to distract their users about the agent installation and monitoring can use the stealth mode.
In the mdm_pre_installation_script.sh
file, find the hide_status_icon
flag.
Set the flag to true
. By default, the flag is set to false
.
Stealth mode installation hides the agent only from UI. Employees can find Nightfall if they navigate to the Application folder via Terminal.
Nightfall employs the automatic endpoint update functionality. With this feature, Nightfall can deliver the majority of endpoint agent bug fixes and feature updates directly to endpoints.
Features:
Stay Secure: Receive the latest security patches and updates promptly, reducing the risk of vulnerabilities being exploited.
Remain Compatible: Keep your deployment compatible with the latest operating system updates and other software changes.
Receive New Features: You get access to new features and improvements to exfiltration monitoring without manual intervention.
Minimize Administrative Overhead: IT administrators don't need to manually deploy updates to each endpoint, saving time and resources.