Safari Extension Reminder Keeps Popping Up

I need a solution

Issue:
User has Symantec DLP Endpoint Prevent installed. He goes into Safari preferences>extensions and enables the Symantec DLP browser extension. 15-20 minutes later, he will receive the reminder to enable the Safari extension again. He goes back into the Safari preferences and the extension is disabled again. He will reenable the extension again until he eventually quits using Safari. I’ve uninstalled and reinstalled the endpoint agent. Besides altering the notification settings, does anyone have suggestions on how to resolve this issue? The extension notification settings are currently set to default.

Symantec DLP Endpoint Prevent 15.5 MP1 & MP2 (Tiried two different versions)
Workstation: Mac OS X 10.14.6

0

Related:

  • No Related Posts

Install ShareConnect for Mac

To begin using ShareConnect, you must install the ShareConnect desktop app to turn them into remote computers for your ShareConnect account. When you install ShareConnect on your Mac, the installation package (including applications and plugins) will be downloaded onto your computer. By leaving the applications installed and the plugin enabled, you can avoid the extended download process if you need to install ShareConnect once more on your Mac.

Note: These instructions apply to Mac customers only; also see Install ShareConnect on Windows.

About the installation package

The installation package includes the following components:

  • ShareConnect desktop application

    This is the main software that is installed on your Mac to enable it be a remote computer that users can connect to from their iPad or Android tablet.
  • ShareConnect Launcher application

    This “helper” application is required to install and launch the ShareConnect desktop application. It must be installed on the computer, even if the ShareConnect application is already installed.
  • Web Deployment browser plugin (optional)

    This plugin allows your web browser to automatically start the Launcher application, which in turn launches the ShareConnect application. Although disabling or blocking the plugin will not prevent you from starting sessions, our products work best if the plugin is allowed to run when the browser prompts by clicking Allow, Run this time or Trust.

User-added image

Download ShareConnect

1. Click the Add This Computer button to initiate the software download.

User-added image

Once the web browser launches, you will see the following:

  • If the Launcher application is not installed (either first time joining or it was removed), then the Citrix Online Launcher.dmg file will automatically start downloading. Continue to Step #2.
  • If the Launcher application is already installed, then the web browser will automatically start the Launcher app, which will then launch the ShareConnect application (or install it again, if needed).

2. If the Launcher application is not already installed, the Citrix Online Launcher.dmg file will automatically begin downloading. Depending on which web browser you are running, you can complete the download as follows:

  • Apple Safari

    Double-click the “Citrix Online Launcher” file in the browser’s Downloads window

User-added image

  • Mozilla Firefox®

    Select “Open with” then click OK when prompted (click restart the download in the browser window if needed).
User-added image
  • Google Chrome™

    When the download finishes, click Citrix Online Launcher file.zip at the bottom of the page to open the file (you may need to refresh the page and/or click download & run ShareConnect).

When the Citrix Online Launcher window opens, double-click the Launcher icon

User-added image
4. You will see a message noting that “Citrix Online Launcher” is an application downloaded from the internet. Enable the “Don’t warn me […]” check box, then click Open to continue. The ShareConnect application will then finish downloading and you will need to follow the instructions on the screen to finish installation.
User-added image
Make sure that you enter your email address associated with your ShareConnect account to register your Mac as a new remote computer! You will now see the ShareConnect icon on your Menu bar.
User-added image
User-added image

Related:

How to Upload a Folder to ShareFile Using Internet Explorer

Need to upload a folder? The Java Uploader Tool allows users on Internet Explorer browsers to upload a folder and all of its contents. Using the Java Uploader tool, users can upload folders up to 10 GB in size.

Note: This plugin is not available on Google Chrome or FireFox web browsers. (Google Chrome users can drag and drop folders directly into the web browser without a plugin.)

If you would like to upload folders without a plugin or web browser, try the ShareFile Desktop app!

Notice Regarding Google Chrome and the Java Plugin

As of September 2015, Google Chrome no longer supports NPAPI plugins such as Java. The Java Uploader cannot be used on Google Chrome web browsers. Click here for more information on Java and Google Chrome.

As of March 2017, FireFox no longer supports NPAPI plugins such as Java. The Java Uploader cannot be used on the latest versions of FireFox web browsers. Click here for more information on Java and FireFox.


Download the latest version of Java

In order to use the Java Uploader Tool, you must have the most recent version of Java installed on your computer. Click here to download the latest version of Java.

The above link will open the Java download page. Click the Free Java Download button. Java will automatically detect your browser and operating system. Once Java has been downloaded and installed, your browser should identify it as a plugin and enable it by default.

Use the Java Uploader

To upload a folder via the Java Uploader, access the Action Button and choose Upload File.

Click the Switch to Java Uploader button as shown.

User-added image

If you have accepted the Java security prompts and your browser is not blocking access to the plugin, you can use the Java Uploader field to upload a folder. Simply drag your folder into the field or use the Choose Files button to select your folder from its location on your computer. The folder and all of its contents will be uploaded.

User-added image



Java Security Prompt

If you are using the Java Uploader for the first time, you may need to launch the Security Warning manually. Click the Launch Security Warning button when prompted. Some web browsers may ask if you wish to run the Java plugin. Depending on your browser or company computer’s security settings, you may need to “Trust” or “Allow” the Java plugin to run in order for the Uploader to launch.

User-added image
User-added image
User-added image


Error: Java is not installed or enabled

Your ShareFile account will display an error message if you attempt to use Java when it is not installed and/or not enabled on your web browser: If you are receiving this error, your version of Java may be out of date. Click here to download the latest version of Java. To update your Mac’s installed version of Java, click the apple icon in the top left of your screen and then select Software Update to install any available Java or system updates. If your Java version is up to date but you are still receiving the error, the plugin may be disabled in your Browser Settings.

To check if the plugin is enabled on your browser, access the plugin menu using the following steps:

  • Internet Explorer: Click Tools and Manage Add-ons
  • Safari: Click Help and Installed Plug-in

Do you support my version of Java?

User-added image

Java is a third-party tool that receives regular updates. Java is a software platform with a set of System Requirements separate from that of ShareFile. Click here to view the full list of System Requirements for Java. In addition to Java’s browser platform, browser version, and operating system requirements, Java versions also include security settings that can have adverse effects on your ability to use Java in web applications such as ShareFile.

As a result of Java’s regular updates and evolving system requirements, it is possible that Java may cease to function properly on your computer. Discrepancies caused by the Java platform are outside of ShareFile’s control and can impact ShareFile’s Java Uploader tool. Click here to view Java Troubleshooting Tips.

Related:

RightSignature Security Updates – TLS 1.0 and 1.1

As part of our ongoing efforts to provide the best security possible, we’re upgrading the security protocol used by RightSignature’s API. As of May 31, 2018, RightSignature will no longer be supporting TLS 1.0 or TLS 1.1.

Who does this impact?

1. End users (Signers and Senders) using very old browsers.

2. Partners and customers who are utilizing the RightSignature public API.

Why the change?

TLS stands for “Transport Layer Security”. RightSignature, like many web-based services, uses it to secure communication between external applications and the RightSignature API. To further strengthen the security of your documents and data, the RightSignature API will no longer support TLS 1.0 or TLS 1. 1 after May 31, 2018.

What do you need to do by June 1, 2018?

End users (Signers and Senders) should use following browser versions or newer:

a. Chrome 66
b. Firefox 59
c. IE 11
d. Safari 11.1
e. iOS Safari 11.3

Partners should contact their IT department, and ensure that they’ve enabled TLS 1.2 for connecting to the RightSignature API. This applies to all private, public, and partner applications connecting to the the API.

For more information on the risks and deprecation of TLS 1.0 and TLS 1.1, check out this blog post.

For questions related to the RightSignature API, visit our Customer Community.

Related:

  • No Related Posts

Browsers Compatible with ShareFile

ShareFile is accessible by any computer with a supported web browser and an Internet connection. In order to utilize all features and functions of the ShareFile web application, we recommend the following browser types.

Officially Supported Internet Browsers for ShareFile

Microsoft Edge

Latest Version*

*Due to a Known Microsoft Issue, CIFS connectors cannot be accessed from the Microsoft Edge browser when utilizing NetScaler for authentication.

Important: ShareFile password reset uses the reCAPTCHA tool for verification. reCAPTCHA is not supported by Microsoft Edge. See ShareFile No Password Reset in Microsoft Edge for more information.

Internet Explorer

Version 11 or later

Don’t know which version of IE you have? Click here to find out what version you are currently using and set your browser to automatically update to the latest version.

Mozilla FireFox Latest Version
Google Chrome Latest Version
Apple Safari Version 10 or newer

Due to issues displaying certain folders and menus, the ShareFile web application may not be accessible via Safari in Private Browsing mode.


FAQ

1. I don’t see my browser on this list…do you support it?

The ShareFile application may operate on 3rd party browsers not listed above, but ShareFile cannot guarantee that all features will work as expected. ShareFile recommends using an officially supported browser. All supported browsers are available for download for free on their respective websites.

2. Do you support my version of Java?

Java is a third-party tool that receives regular updates. Java is a software platform with a set of System Requirements separate from that of ShareFile. Click here to view the full list of System Requirements for Java.

In addition to Java’s browser platform, browser version, and operating system requirements, Java versions also include security settings that can have adverse effects on your ability to use Java in web applications such as ShareFile. As a result of Java’s regular updates and evolving system requirements, it is possible that Java may cease to function properly on your computer. Discrepancies caused by the Java platform are outside of ShareFile’s control and can impact your computer’s performance in a variety of ways. Click here to view Java Troubleshooting Tips.

3. Where can I find more information regarding Google Chrome and Mozilla Firefox support for Java Plugin?

As of September 2015, Google Chrome no longer supports NPAPI plugins such as Java. Click here for more information on Java and Google Chrome.

As of March 2017, FireFox no longer supports NPAPI plugins such as Java. Click here for more information on Java and FireFox.

4. Do you support AOL browsers?

ShareFile should function properly with AOL browsers if that version of AOL is built upon a supported version of Internet Explorer. ShareFile cannot guarantee that all features will work as expected. ShareFile recommends using an officially supported browser. All supported browsers are available for download for free on their respective websites.

Related:

Mac OS 10.15 Catalina Support and Known Issues

This article provides information about support for MacOS 10.15 Catalina, as well as known issues. It is highly advisable to read the known issues as there are several unavoidable issues in this OS release.

Apple has new enforced per application permissions in this version. Some permissions (such as user folders) will present a pop-up notice to the user to allow access, however for system level access, no notification is presented by the OS. Several Sophos services require this system level of access in order to detect and clean threats. This means that Apple will not notify users if these issues are being experienced.

All of our applications and installers are 64-bit, and will not be limited by Apple’s 32-bit restriction.

The following sections are covered:

Applies to the following Sophos products and versions

Central Mac Endpoint

Sophos Anti-Virus for Mac OS X

Operating systems

MacOS 10.15 Catalina

MacOS 10.15 Catalina overview

With the release of macOS 10.15 Catalina, Apple has added additional security lock downs to the operating system, including per application disk access lock downs. This results in several large impacting issues that must be corrected for full protection. Please see the Known Issues section below for full details. It is not recommended upgrading to 10.15 until your organization has a transition plan in place.

Required version: Sophos Endpoint 9.9.4 or above

In order to support macOS 10.15 Catalina, Sophos Endpoint 9.9.4 or above is required. Earlier versions will run if present during an upgrade, but are subject to the same known issues below, but not all permissions can be added (SophosServiceManager and SophosScanAgent cannot be added with 9.9.3), 9.9.3 and below will not install on a 10.15 system, and Central clients 9.9.2 or below will fail to communicate with Central until they update.

Sophos released 9.9.4 to Central in September 2019. 9.9.4 is also Preview subscription for Enterprise Console customers as of mid-September 2019.

For both Central and Enterprise Console, 9.9.5 releases in mid-October 2019 (to Recommended and Preview for Enterprise Console), and includes permissions popup to make installations a bit easier.

Apple has locked down the following User Folders in OS 10.15.

  • Desktop
  • Documents
  • Downloads
  • Mail
  • Safari cache

The agents will need to be added to the Full Disk Access area of security and privacy, unless otherwise noted.

All Versions

The following issues will be experienced after upgrading to macOS 10.15 and before applying the corrective steps.

  • SophosCleanD – Unable to clean up threats in the above folders
  • SophosScanAgent – On Demand scans / Scheduled scans will not detect threats in the above folders
  • Sophos Finder Scan (Through SophosScanAgent) – Will not detect threats in the above folders
  • SophosServiceManager – Parent process for SophosScanAgent
  • Sophos Diagnostic Utility (Standalone only) – User prompted to allow access to the above folders, This is “Files and Folders” access.
  • sweep – Command line scanning tool. Only used manually and only needs to be added if command line scans are being run.
  • SDU4OSX / Sophos Diagnostic Utility – Unable to access all logs

Sophos Central 9.9.4 and above

  • SophosEndpointUIServer – User is not notified of threat detection (no popup)
  • SophosCleanD – Unable to restore files (Cryptoguard) in the above folders
  • Sophos MCS Server Change – MCS has been changed to use SHA2+TLS1.2 for its connection. This uses different servers than before, and should only be an issue if specific firewall allow rules are required for the communication). (note: 9.9.3 has this change in place already)

Sophos Endpoint (Enterprise Console Managed) 9.9.4 and above

  • For initial install, all install files must be copied from the CID share locally first before running the install.
  • SophosAutoUpdate – Cannot update from SMB shares. Only HTTP/HTTPS will work until approved

Older Endpoint versions

  • Subject to the same limitations as above
  • May have other issues not covered
  • Will upgrade to 9.9.4 (other than if impacted by SophosAutoUpdate issue) even with errors
  • 9.9.2 and below will fail to communicate with MCS (Central)

The following can be performed on OS 10.14, before upgrading to 10.15, or after 10.15 has been installed. The only exception to this is SophosServiceManager, which can only be added on 10.15.

  1. Open System Preferences.
  2. Open Security & Privacy.
  3. Go to the Privacy tab.
  4. Click the lock in the lower left and authenticate to make changes
  5. Select “Full Disk Access” on the left side
  6. Leave this window open.
  7. Open a Finder window
  8. Go, go to folder
  9. Enter: /Library/Sophos Anti-virus and click go.

  10. Drag and drop the following item from the Finder window to the Security & Privacy Full Disk Access window
    • SophosAutoUpdate (Enterprise Console managed only)
    • SophosCleanD
    • SophosScanAgent
    • SophosServiceManager
    • Sophos Endpoint UIServer (Central Managed only)
    • Sophos Diagnostic Utility (from /Library/Sophos Anti-virus/tools/)

  11. You may receive a notice that some applications will not have full access until it is quit. This is fine, Later or Quit Now are both valid.

Note: The tool “sweep”, which is /usr/local/bin/, cannot be added via this method as it is not a .app. It will prompt the user the first time the tool is run in order to be allowed. It will only be called if you are using it via command line.

Alternate Method of correction:

Using an MDM solution like Apple Profile Manager, or JAMF, you can add permissions in TCC to allow these processes. Visit the following kba articles for further instructions:

KNOWN ISSUE: “Full disk access required” message displays on Catalina when using an MDM solution with the correct access (with Sophos 9.9.5). Please see this KB134833

If you’ve spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article.

This is invaluable to us to ensure that we continually strive to give our customers the best information possible.

Related:

  • No Related Posts