Avast was kind enough to publish this article about deploying Avast in a JAMF environment, but if you’re NOT using JAMF the steps don’t quite translate well to other MDM’s (like Mosyle, SimpleMDM, etc). Does anyone have any experience with writing a configuration profile to allow the Content Filter? I’ve gotten the kernel/system extension and “Full Disk Access” addressed but am struggling with the content filter.

Avast gives very specific directions for how to do this in JAMF, but this part does not quite translate to other MDM’s:

Filter Name: Avast Antivirus

Identifier: com.avast.Antivirus.SystemExtension

Network Filter

Network Filter Bundle Identifier: com.avast.Antivirus.SystemExtension

Network Filter Designated Requirement: identifier “com.avast.Antivirus.SystemExtension” and anchor apple generic and certificate 1[field.1.2.840.113635.100.6.2.6] /* exists / and certificate leaf[field.1.2.840.113635.100.6.1.13] / exists */ and certificate leaf[subject.OU] = “6H4HRTU5E3”

The MDM we’re using does not have a native profile to do this, and they advise just writing your own profile. This is a bit above my head!