Application Blocking

By Jonathan Connor

Learn more about Kandji's Application Blocking

Kandji can block specific applications from being opened on enrolled macOS devices. Attempting to open a Blocked Application results in the Application being immediately closed, and a block message displayed to the user.

Examples

  • Blocking Mail.app and Outlook.app to ensure users only access email via a Web Browser.
  • Block Office 2011 Applications after deploying Office 2019 to prevent incompatibility.
  • Limiting specific users access to Terminal.app

Blocking an Application from Device Record

  1. Login to Kandji and open a computer record that currently has the Application that you wish to block installed.
  2. Click the Applications tab and locate the Application in question.
  3. Click the More (...) button to the right of the Application and click "Block Application".
  4. Select the desired Blueprint that should receive the Blocking Rule, and customize the identifiers as needed.
  5. Click Create.

When using Bundle IDs for blocking, please note that Bundle IDs can only contain alphanumeric characters (A–Z, a–z, and 0–9), hyphens (-), and periods (.). Bundle IDs are case-insensitive. Learn More

You can customize the Block Message by editing the Application Blocking Parameter inside the applied Blueprint.

Manually Blocking an Application

  1. Login to Kandji and open the desired Blueprint.
  2. Click Edit Parameters and scroll down to Application Blocking.
  3. Enable the parameter, and identify the Application by Process Name, Path, DeveloperID, or BundleID.
  4. Customize the Block Message and "More Info" button that is displayed to users when attempting to open a Blocked Application.
  5. Click Save.

Result

Users attempting to open a Blocked Application receive a popup with the customizable block message. Users that click Learn More will be directed to the URL specified in the Block Message.