This is not strictly a Network Extension question, but for context: We are developing a content filter using NETransparentProxyProvider network extension and we also need the operating system trust a third party certificate authority (CA). This operation requires user interaction and this is fine during a normal installation. However, it is not desirable when deployed via a Mobile Device Management (MDM) system as the end users can skip the CA installation step ending up with a broken installation. Is there a way to bypass CA certificate trust popups when deployed via an MDM?

We are developing a content filter using the NETransparentProxyProvider. It uses Apple's VPN framework therefore displays a confirmation dialog saying [Software] Would Like to Add Proxy Configurations during installation. This is generally ok, but undesirable when the software is being deployed via a Mobile Device Management (MDM) system as the users can simply click Don't Allow and block the installation. Is there a way to bypass that dialog when using an MDM?

We are developing a content filter using the NETransparentProxyProvider. Since it uses the VPN framework unlike other network extensions the users are able to stop it from the Network Preferences. Other network extensions such as DNSProxyProvider are started and managed automatically by the operating system once installed and end users can't stop/disable them. Is there a way to prevent users from stopping a NETransparentProxyProvider?