macOS Agent: Configuring Zone-Based (URL) Decryption
  • 17 Oct 2020
  • 1 Minute To Read
  • Print
  • Share
  • Dark
    Light

macOS Agent: Configuring Zone-Based (URL) Decryption

  • Print
  • Share
  • Dark
    Light

This configuration relies on XPC Service to monitor designated folders and provides notifications to a configured host application (SecureCircle Agent). Read more about configuration source.

  • This script will monitor a provided path
<key>Paths</key>

recursively for files that have been downloaded (tagged) from a specific domain

<key>Zones</key>

and decrypt automatically using the SecureCircle Agent, based on their extension or matching RegEx expression

<key>Masks</key>
  • Required: Must provide the correct CircleID {SecureCircle_cirID} for files expected to be downloaded/decrypted.
  • SecureCircle Agent must be properly configured/registered with the target circle.
  1. Begin by creating a configuration file using Terminal, like so--
  • Begin by creating a configuration file using Terminal, like so--
  • Set your working directory to the Preferences folder:
cd /Users/{current_user}/Library/Preferences
  • Create a configuration plist file (recommended to copy&paste as demonstrated)
defaults write com.securecircle.uspace.fhuser '<dict>
	<key>Monitoring</key>
	<dict>
		<key>Paths</key>
		<dict>
			<key>/Users/<username>/Downloads/destination_folder1</key>
			<dict>
				<key>CUUID</key>
				<string>{SecureCircle_cirID}</string>
				<key>Masks</key>
				<array>
					<string>{sample_extensions or RegEx}</string>
					<string>.*\.pptx$</string>
					<string>.*\.docx$</string>
					<string>.*\.xlsx$</string>
					<string>.*\.txt$</string>
				</array>
				<key>Zones</key>
				<array>
					<string>{sample_web_address or RegEx}</string>
					<string>.*dropbox.*</string>
					<string>.*salesforce.*</string>
				</array>
			</dict>
			<key>/Users/<username>/Downloads/destination_folder2</key>
			<dict>
				<key>CUUID</key>
				<string>{SecureCircle_cirID}</string>
				<key>Masks</key>
				<array>
					<string>{sample_extensions or RegEx}</string>
					<string>.*\.pdf$</string>
					<string>.*\.rtf$</string>
				</array>
				<key>Zones</key>
				<array>
					<string>{sample_web_address or RegEx}</string>
					<string>.*google.*</string>
					<string>.*example.*</string>
				</array>
			</dict>
		</dict>
	</dict>
</dict>'
  1. Ensure your configuration plist was created correctly by reading the configuration and validating your set parameters
  • defaults read com.securecircle.uspace.fhuser
  • Example output from a configured system:
scvlad@Vlads-MBP Preferences % defaults read com.securecircle.uspace.fhuser
{
    Monitoring =     {
        Paths =         {
            "/Users/scvlad/Downloads/Test1" =             {
                CUUID = "{cirID_masked_for_example}";
                Masks =                 (
                    ".*\\\\.png$",
                    ".*\\\\.jpg$",
                    ".*\\\\.jpeg$",
                    ".*\\\\.plist$",
                    ".*\\\\.pdf$"
                );
                Zones =                 (
                    ".*dropbox.*",
                    ".*gofiles.*",
                    ".*dropmefiles.*",
                    ".*file-examples.*"
                );
            };
            "/Users/scvlad/Desktop/Important" =             {
                CUUID = "{cirID_masked_for_example}";
                Masks =                 (
                    ".*\\\\.pptx$",
                    ".*\\\\.docx$",
                    ".*\\\\.xlsx$",
                    ".*\\\\.pdf$"
                );
                Zones =                 (
                    ".*salesforce.*",
                    ".*onedrive.*"
                );
            };
        };
    };
}
Additional Reading
Was This Article Helpful?