CIS Apple macOS 11 v2.1.0 L2

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Apple macOS 11 v2.1.0 L2

Updated: 2/7/2023

Authority: Operating Systems and Applications

Plugin: Unix

Revision: 1.3

Estimated Item Count: 37

File Details

Filename: CIS_Apple_macOS_11_v2.1.0_L2.audit

Size: 109 kB

MD5: fc3142a28bc9c53b9e05c43dc3c37e5f
SHA256: 9fdc3cb2fe86de6a43890acce4bafb784690e9e55bf5f3fc40fb8e74bd5e17fc

Audit Items

DescriptionCategories
1.8 Ensure Computer Name Does Not Contain PII or Protected Organizational Information
2.3.2 Ensure Screen Saver Corners Are Secure - bottom left corner
2.3.2 Ensure Screen Saver Corners Are Secure - bottom right corner
2.3.2 Ensure Screen Saver Corners Are Secure - top left corner
2.3.2 Ensure Screen Saver Corners Are Secure - top right corner
2.4.10 Ensure Content Caching Is Disabled
2.4.12 Ensure Media Sharing Is Disabled
2.5.3 Ensure Location Services Is Enabled
2.5.4 Audit Location Services Access
2.5.5 Ensure Sending Diagnostic and Usage Data to Apple Is Disabled
2.6.1.1 Audit iCloud Keychain
2.6.1.2 Audit iCloud Drive
2.6.1.3 Ensure iCloud Drive Document and Desktop Sync Is Disabled - Desktop
2.6.1.3 Ensure iCloud Drive Document and Desktop Sync Is Disabled - Document
2.6.2 Audit App Store Password Settings
2.7.1 Ensure Backup Automatically is Enabled
2.8.3 Ensure the OS is not Activate When Resuming from Sleep - DestroyFVKeyOnStandby
2.8.3 Ensure the OS is not Activate When Resuming from Sleep - hibernatemode
2.8.3 Ensure the OS is not Activate When Resuming from Sleep - highstandbythreshold
2.8.3 Ensure the OS is not Activate When Resuming from Sleep - standbydelayhigh
2.8.3 Ensure the OS is not Activate When Resuming from Sleep - standbydelaylow
3.2 Ensure Security Auditing Flags For User-Attributable Events Are Configured Per Local Organizational Requirements - 'audit all authorization and authentication events'
3.2 Ensure Security Auditing Flags For User-Attributable Events Are Configured Per Local Organizational Requirements - 'audit all failed write actions where enforcement stopped a file write'
3.2 Ensure Security Auditing Flags For User-Attributable Events Are Configured Per Local Organizational Requirements - 'audit failed program execution'
3.2 Ensure Security Auditing Flags For User-Attributable Events Are Configured Per Local Organizational Requirements - 'audit successful/failed administrative events'
3.2 Ensure Security Auditing Flags For User-Attributable Events Are Configured Per Local Organizational Requirements - 'audit successful/failed file attribute modification events'
3.2 Ensure Security Auditing Flags For User-Attributable Events Are Configured Per Local Organizational Requirements - 'audit successful/failed login/logout events'
3.7 Audit Software Inventory
4.1 Ensure Bonjour Advertising Services Is Disabled
5.1.7 Ensure No World Writable Files Exist in the Library Folder
5.2.3 Ensure Complex Password Must Contain Alphabetic Characters Is Configured
5.2.4 Ensure Complex Password Must Contain Numeric Character Is Configured
5.2.5 Ensure Complex Password Must Contain Special Character Is Configured
5.2.6 Ensure Complex Password Must Contain Uppercase and Lowercase Characters Is Configured
5.8 Ensure a Login Window Banner Exists
5.10 Ensure Fast User Switching Is Disabled
CIS_Apple_macOS_11_v2.1.0_L2.audit from CIS Apple macOS 11 Benchmark v2.1.0