Tamper prevention is enabled by default in new plans. For plans that existed prior to the release of tamper prevention, tamper prevention is disabled and needs to be manually enabled.
Important:
An additional configuration profile needs to be installed on target computers running macOS 15 or later, in order to make the Jamf Protect agent a non-removable system extension. For more information see Making Jamf Protect a Non-Removable System Extension.
Requirements
macOS 13 or later
Jamf Protect 5.1.2 or later
Jamf Protect running as a system extension as approved through your MDM
System Integration Protection (SIP) enabled on the target computer
Note:For more information on enabling SIP, see System Integrity Protection.
- In Jamf Protect, click Plans.
- Navigate to an existing plan and edit the plan, or create a new plan.
- Under Legacy, click Edit legacy features.
- Configure Tamper Prevention settings.
- Choose Block and report to prevent unauthorized changes to Jamf Protect's application.
- Choose Disable to disable all prevention of unauthorized changes considered tampering to Jamf Protect's application.
- Click Save.