Skip to main content


Downloading and Installing OTG 2 for Mac

The steps below describe a command-line installation of WebTitan OTG 2 for Mac on a single machine. You need admin privileges for a machine to complete these steps.

During installation, you will be required to:

  • Run two separate commands:

    1. An install command to deploy the .PKG file.

    2. A WebTitan Cloud configuration command that you must edit with your own parameters. An example script that you can edit is given in the steps below.

  • Allow a WebTitan Cloud system extension under the General tab in Security & Privacy Preferences.

  • Allow the DNS Proxy Configurations pop up. A DNS proxy provider is a network extension that implements DNS proxying. WebTitan OTG 2 for Mac uses the DNS proxy provider to forward DNS requests to the OTG DNS server, which records the DNS requests. For privacy reasons, a user must give consent to enable it.

Step 1: Download and install your WebTitan Cloud 4K certificate.

If an SSL certificate has not been installed and a user visits an HTTPS enabled website that is blocked by a policy, their browser will return a certificate error page instead of your WebTitan block page. To avoid this, download and import the WebTitan SSL Certificate.

  1. In WebTitan, go to Settings > SSL Certificates (a Customer Admin can go to Tools > SSL Certificate).

  2. Download your 4K WebTitan certificate and install to your Mac keychain. See

    Ensure When using this certificate is set to Always Trust as shown below:


Step 2: Download and install WebTitan OTG 2 for Mac.

Ensure you have administrative privileges, then follow the steps below to install WebTitan OTG 2 for Mac.

  1. Click here to download the WebTitan OTG 2 for Mac install file (otg_setup.pkg). The current version of OTG 2 for Mac is 2.0.3 (2). You need to know what folder this install file saves to in later steps.

  2. Retrieve the OTG 2 install key from your WebTitan Cloud. Go to Settings > Account and note the OTG Install Key:

  3. Create the command script for installation. Base your script on the example shown below, but with parameters edited for your WebTitan Cloud.

    /Applications/ RPC_URL="" INSTALL_KEY="00000z0z-0zz0-0000-zz0z-0zz000z0zz0z"


    If your WebTitan login URL is your RPC_URL parameter must include port 443. For example:

    /Applications/ RPC_URL="" INSTALL_KEY="00000z0z-0zz0-0000-zz0z-0zz000z0zz0z"

    • There are two required parameters described in the table below that must be edited when creating your own script.

    • There is also an optional parameter described that you can use during installation, but it is not necessary.

    • The command must be on a single line with no line breaks.

    Required Parameters




    The URL of your WebTitan Cloud instance in FQDN format.


    Your WebTitan IP is not accepted as the RPC_URL parameter.

    You can get the FQDN by opening a command prompt in windows and typing nslookup followed by the IP of your WebTitan Cloud. For example, nslookup


    This is the OTG install key used to register an OTG 2 device on WebTitan Cloud. You can get this in your WebTitan Cloud from Settings > Account and noting the OTG Install Key.


    Optional Parameter(s)




    When OTG 2 is installed, a virtual location is automatically created for a device on WebTitan and given a default name. However, you can specify a location name to use with the LOCATION_NAME parameter on install.

    A virtual location can either be created on WebTitan before installation and then the name can be used in this parameter, or, if not already created, the virtual location is created and assigned the name given in this parameter on install.


  4. Open a terminal and change directory to the same directory as the install file you downloaded in Step 1. To change directory, type cd followed by the file path you want to change to. For example:

    cd ~/Downloads

  5. Run the following command script to initiate installation: sudo installer -pkg otg_setup.pkg -target /

  6. Enter your admin password if prompted.

  7. You need to allow WebTitan Cloud in your System Preferences:

    • If prompted, click Open Security Preferences:

    • If not prompted, open manually from System Preferences > Security & Privacy.

    • Click the lock OTG-Mac2-lock-icon.jpg icon in the bottom left of the Security & Privacy window to unlock settings.

    • Enter your admin password if prompted.

    • Click Allow to unblock WebTitan Cloud.

    • Click the lock icon again to re-lock settings.

  8. Copy and paste the install script you created in Step 3 into the terminal window and press Enter.

  9. Click Allow to allow DNS proxy configurations if prompted:

  10. When installation has successfully completed, a WebTitan Cloud WTC-OTG-Mac-icon.jpg icon displays in your top menu bar showing Status: Connected.

Once the steps above are complete, the best way to verify the installation is to check that a device and the associated user and location have been added to your WebTitan Cloud.