Detections
Analytics

CIS Apple macOS 11 v2.0.0 L2

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Apple macOS 11 v2.0.0 L2

Updated: 9/30/2022

Authority: Operating Systems and Applications

Plugin: Unix

Revision: 1.1

Estimated Item Count: 44

Audit Items

DescriptionCategories
1.7 Audit Computer Name
2.3.2 Ensure Screen Saver Corners Are Secure - bottom left corner
2.3.2 Ensure Screen Saver Corners Are Secure - bottom right corner
2.3.2 Ensure Screen Saver Corners Are Secure - top left corner
2.3.2 Ensure Screen Saver Corners Are Secure - top right corner
2.4.10 Ensure Content Caching Is Disabled
2.4.12 Ensure Media Sharing Is Disabled
2.5.3 Ensure Location Services Is Enabled
2.5.4 Audit Location Services Access
2.5.5 Ensure Sending Diagnostic and Usage Data to Apple Is Disabled
2.5.7 Audit Camera Privacy and Confidentiality
2.6.1.1 Audit iCloud Configuration
2.6.1.2 Audit iCloud Keychain
2.6.1.3 Audit iCloud Drive
2.6.1.4 Ensure iCloud Drive Document and Desktop Sync is Disabled - Desktop
2.6.1.4 Ensure iCloud Drive Document and Desktop Sync is Disabled - Document
2.6.2 Audit App Store Password Settings
2.7.1 Ensure Backup Up Automatically is Enabled
3.2 Ensure Security Auditing Flags Are Configured Per Local Organizational Requirements - 'audit all authorization and authentication events'
3.2 Ensure Security Auditing Flags Are Configured Per Local Organizational Requirements - 'audit all failed write actions where enforcement stopped a file write'
3.2 Ensure Security Auditing Flags Are Configured Per Local Organizational Requirements - 'audit failed program execution'
3.2 Ensure Security Auditing Flags Are Configured Per Local Organizational Requirements - 'audit successful/failed administrative events'
3.2 Ensure Security Auditing Flags Are Configured Per Local Organizational Requirements - 'audit successful/failed file attribute modification events'
3.2 Ensure Security Auditing Flags Are Configured Per Local Organizational Requirements - 'audit successful/failed login/logout events'
3.7 Audit Software Inventory
4.1 Ensure Bonjour Advertising Services Is Disabled
4.3 Audit Network Specific Locations
4.6 Audit Wi-Fi Settings
5.1.8 Ensure No World Writable Files Exist in the Library Folder
5.2.3 Ensure Complex Password Must Contain Alphabetic Characters Is Configured
5.2.4 Ensure Complex Password Must Contain Numeric Character Is Configured
5.2.5 Ensure Complex Password Must Contain Special Character Is Configured
5.2.6 Ensure Complex Password Must Contain Uppercase and Lowercase Characters Is Configured
5.5 Ensure login keychain is locked when the computer sleeps
5.9 Ensure system is set to hibernate - DestroyFVKeyOnStandby
5.9 Ensure system is set to hibernate - hibernatemode
5.9 Ensure system is set to hibernate - highstandbythreshold
5.9 Ensure system is set to hibernate - standbydelayhigh
5.9 Ensure system is set to hibernate - standbydelaylow
5.13 Create a Login window banner
5.15 Ensure Fast User Switching Is Disabled
7.1 Extensible Firmware Interface (EFI) password
7.2 FileVault and Local Account Password Reset using AppleID
CIS_Apple_macOS_11_v2.0.0_L2.audit from CIS Apple macOS 11 Benchmark v2.0.0