macOS Client

Coming Soon — The AegisWire macOS client is currently in development. The information below describes the planned architecture and feature set. No download is available yet.

The AegisWire macOS client will use Apple's native NetworkExtension framework for tunnel management, targeting macOS 13 (Ventura) and later.

Planned Architecture

• NetworkExtension Packet Tunnel Provider for kernel-level tunnel integration
• Apple Silicon and Intel support (universal binary)
• System Extension model (not legacy kernel extension)

Planned Features

Enrollment

• Token-based enrollment: paste a token provided by your AegisWire administrator
• QR code scanning from the admin interface
• SSO enrollment via external identity provider (if configured by your organisation)

Connection

• One-click connect with automatic gateway selection
• Menu bar status icon showing connection state
• Full tunnel and split tunnel modes (determined by organisation policy)
• Connection details: gateway region, duration, data transferred

Security

• Kill switch to block traffic on unexpected disconnection
• DNS through tunnel with enterprise DNS override support
• AWT handshake with hybrid post-quantum key exchange

Configuration

• Tunnel mode selection (if permitted by organisation policy)
• Kill switch mode: always on or on-disconnect only
• Split DNS support for enterprise environments

System Requirements (Planned)

• macOS 13 (Ventura) or later
• Apple Silicon (M1/M2/M3/M4) or Intel processor
• Administrator access for initial NetworkExtension approval

Development Status

The macOS client is in active development. Key areas:

• NetworkExtension integration: in progress
• AWT protocol implementation: in progress
• Enrollment flow: in progress
• Admin interface integration: planned

Check back for updates or contact your AegisWire account representative for timeline information.