BlackFog Endpoint Deployment: Supported Platforms, Virtual Machines, and Rollout Process

Supported Platforms

BlackFog's agent supports the full range of operating systems and platforms found in modern enterprise environments. This breadth of support is critical for organisations with mixed device estates, BYOD policies, or legacy systems that cannot be upgraded. Kyanite Blue assesses your device estate during onboarding and confirms coverage across every endpoint.

• Windows: 7, 8, 8.1, 10, 11 — all editions including Home, Pro, Enterprise, and Education
• Windows Server: 2008, 2008 R2, 2012, 2012 R2, 2016, 2019, 2022
• macOS: supported on current and recent releases
• Android: mobile device protection for corporate and BYOD devices
• iOS: iPhone and iPad protection for corporate and BYOD devices
• Chromebook: Chrome OS protection for education and enterprise deployments

Virtual Machine and Cloud Support

Organisations running virtualised infrastructure or cloud-hosted workloads have the same data exfiltration risks as physical endpoints — and in many cases greater risk, as cloud instances may have direct internet access with fewer controls. BlackFog deploys on virtual machines across all major hypervisors and cloud platforms, protecting cloud-hosted desktops, virtual servers, and developer environments with the same exfiltration prevention as physical endpoints.

• Hyper-V: Windows and Linux virtual machines on-premises
• VMware: vSphere, Workstation, and Fusion virtual machines
• Microsoft Azure: Azure Virtual Machines and Azure Virtual Desktop (AVD)
• Google Cloud: Compute Engine instances
• AWS: EC2 instances and Amazon WorkSpaces
• Citrix: virtual desktop infrastructure (VDI) deployments

The Kyanite Blue Deployment Process

Kyanite Blue manages the full deployment lifecycle for all BlackFog clients. Our structured process ensures complete coverage with minimal disruption. We begin with an environment assessment to understand your device estate, network architecture, and specific data protection requirements. Policy configuration is tailored to your organisation before any agents are deployed. Rollout is phased — typically starting with a pilot group of 25-50 devices before extending to the full estate — allowing us to refine policies based on real-world data before full deployment.

• Step 1 — Environment Assessment: device inventory, network review, data flow analysis
• Step 2 — Policy Configuration: custom whitelist, data transfer rules, and alert thresholds
• Step 3 — Pilot Deployment: 25-50 devices for initial validation and policy refinement
• Step 4 — Full Rollout: phased deployment across all endpoints via your MDM or SCCM
• Step 5 — Validation: confirmation of agent health, policy enforcement, and console connectivity on every device
• Step 6 — Handover to Managed Monitoring: Kyanite Blue begins continuous console monitoring

No Network Reconfiguration Required

Unlike network-level DLP solutions that require proxy servers, SSL inspection appliances, or DNS changes, BlackFog operates entirely at the endpoint level. The agent installs directly on each device and controls outbound data flows locally. This architecture eliminates the network change management that delays deployment in regulated environments — particularly healthcare, government, and financial services organisations where network modifications require extensive approval processes, scheduled maintenance windows, and formal change control documentation. BlackFog can be deployed alongside existing network security infrastructure without conflict.

Integration with Endpoint Management Tools

BlackFog integrates with standard enterprise endpoint management platforms for silent deployment at scale. Kyanite Blue configures deployment packages for your specific management tool, enabling push installation to all endpoints without user interaction. Supported management platforms include Microsoft Intune, SCCM/MECM, Jamf (for Mac), Google Workspace Admin (for Chromebooks), and any management tool that supports MSI or script-based installation. For organisations without centralised endpoint management, Kyanite Blue provides guided manual installation procedures.