Insert a Script to an Application Group

You can control scripts using the Script application type. System administrators can apply Application Rules on scripts to allow installation and management of development tools; for example, Homebrew.

Supported script types include:

  • bash (.sh)
  • ruby (.rb)
  • python (.py - xattr)

To use Homebrew effectively, you must download the Homebrew script and remove the following lines, also shown highlighted in the image:

elsif !`dsmemberutil checkmembership -U "#{ENV["USER"]}" -G admin`.include?("user is a member")
 abort "This script requires the user #{ENV[USER]} to be an Administrator."

Download the Homebrew script and remove certain lines.

Matching criteria is case sensitive.

  1. Select the Application Group you want to add the script control to.
  2. In the right pane, select Actions > Add Application > Script.
  3. You need to configure the matching criteria for the script. You can configure:
    • File or Folder Name matches
    • File Hash (SHA-1 Fingerprint)
    • Command Line Arguments
    • Parent Process matches
  4. Click OK. The script is added to the Application Group.

For more information, please see Application Definitions in Privilege Management for Mac.