> For the complete documentation index, see [llms.txt](https://ai-security-docs.akto.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://ai-security-docs.akto.io/akto-atlas-agentic-ai-security-for-employee-endpoints/endpoints-discovery-agents/ai-endpoint-shield/macos-installation.md).

# MacOS Installation

## Overview

This document is designed for MacOS Installation and end-user reference. It explains the installation flow of **AI Endpoint Shield** on macOS and the permissions users may be prompted to approve.

## Steps Guide

{% stepper %}
{% step %}
**Gatekeeper Security Warning on First Launch**

When the user double-clicks the **AI Endpoint Shield Installer**, macOS may display a warning stating that the application could not be verified and was blocked to protect the system.

<figure><img src="/files/BwwnzI97ueOnTWpKZ98C" alt="" width="375"><figcaption></figcaption></figure>

This is expected behaviour for applications distributed outside the Mac App Store.

**User Action (Required):**

1. Open **System Settings**
2. Navigate to **Privacy & Security**
3. Scroll to the **Security** section
4. Click **Open Anyway** for **mcp-endpoint-shield**
   {% endstep %}

{% step %}
**Allowing the Application in Privacy & Security**

This screen confirms that the user has explicitly approved the installer. Once approved, macOS will allow the installer to run normally.

<figure><img src="/files/IFgJzBr9Lv6vbltS0cdh" alt="" width="563"><figcaption></figcaption></figure>

No administrator privileges are required at this stage.
{% endstep %}

{% step %}
**Installer Wizard – Introduction Screen**

After approval, the installer wizard launches.

<figure><img src="/files/ABSqfYDM5tJlsLtsT3yu" alt="" width="563"><figcaption></figcaption></figure>

The introduction screen explains:

* What AI Endpoint Shield does
* The installation location (user directory)
* That no root or administrator permissions are required

Click **Continue** to proceed.
{% endstep %}

{% step %}
**Installation Type Confirmation**

<figure><img src="/files/UCSL33OwVRcTj9af8b5h" alt="" width="563"><figcaption></figcaption></figure>

Click **Install** to begin installation.

This screen confirms:

* Disk space required
* Installation scope (current user only)
* Target disk (e.g., Macintosh HD)
  {% endstep %}

{% step %}
**Background Item Registration**

After installation, macOS displays a notification indicating that **mcp\_endpoint\_shield.sh** has been added as a background item.

<figure><img src="/files/dqwVa6GK3sqB6p8uVKki" alt="" width="512"><figcaption></figcaption></figure>

This means:

* AI Endpoint Shield runs automatically in the background
* It starts on user login
* It can be managed via **Login Items & Extensions**

This is required for continuous endpoint monitoring.
{% endstep %}

{% step %}
**Folder Access Permissions (Optional)**

After installation, AI Endpoint Shield may request permission to access specific folders in the user’s home directory:

* Desktop
* Documents
* Downloads

<div><figure><img src="/files/ZYzzUKeeKyCFtoogKcBO" alt="" width="369"><figcaption></figcaption></figure> <figure><img src="/files/T6wOS8BGWSEca3vUeSxy" alt="" width="375"><figcaption></figcaption></figure> <figure><img src="/files/NYp2JbCjc0FuqdQmOcuY" alt="" width="351"><figcaption></figcaption></figure></div>

These permissions are used to:

* Scan MCP-related files
* Validate configurations
* Monitor relevant artifacts within the user environment

**User Choice:**

* **Allow** – Enables folder-level scanning
* **Don’t Allow** – Skips access to that folder

{% hint style="info" %}
These permissions are optional. The application will continue to function even if access is denied, but scanning coverage may be limited.
{% endhint %}
{% endstep %}
{% endstepper %}


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://ai-security-docs.akto.io/akto-atlas-agentic-ai-security-for-employee-endpoints/endpoints-discovery-agents/ai-endpoint-shield/macos-installation.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.