Detections
Analytics

CIS Apple macOS 14.0 Sonoma v2.0.0 L2

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Apple macOS 14.0 Sonoma v2.0.0 L2

Updated: 8/12/2025

Authority: CIS

Plugin: Unix

Revision: 1.3

Estimated Item Count: 36

File Details

Filename: CIS_Apple_macOS_14.0_Sonoma_v2.0.0_L2.audit

Size: 90.6 kB

MD5: 7848be6cd715165d5cfd76a30c6a0439
SHA256: b9e3b7dd9377b04bbbd808dabdbbd5346f6fa486f2be67db334ad254f4fc96e8

Audit Items

DescriptionCategories
2.1.1.1 Audit iCloud Keychain
2.1.1.2 Audit iCloud Drive
2.1.1.3 Ensure iCloud Drive Document and Desktop Sync Is Disabled
2.1.1.4 Audit Security Keys Used With AppleIDs
2.1.1.5 Audit Freeform Sync to iCloud
2.1.1.6 Audit Find My Mac
2.1.2 Audit App Store Password Settings
2.3.3.9 Ensure Content Caching Is Disabled
2.3.3.10 Ensure Media Sharing Is Disabled
2.3.3.12 Ensure Computer Name Does Not Contain PII or Protected Organizational Information
2.3.4.1 Ensure Backup Automatically is Enabled If Time Machine Is Enabled
2.6.1.1 Ensure Location Services Is Enabled
2.6.1.2 Ensure 'Show Location Icon in Control Center when System Services Request Your Location' Is Enabled
2.6.1.3 Audit Location Services Access
2.6.2.1 Audit Full Disk Access for Applications
2.6.3 Ensure Sending Diagnostic and Usage Data to Apple Is Disabled
2.6.7 Audit Lockdown Mode
2.7.1 Ensure Screen Saver Corners Are Secure
2.9.1.1 Ensure the OS Is Not Active When Resuming from Standby (Intel)
2.9.1.2 Ensure Sleep and Display Sleep Is Enabled on Apple Silicon Devices
2.14.1 Audit Game Center Settings
2.16.1 Audit Wallet & Apple Pay Settings
3.2 Ensure Security Auditing Flags For User-Attributable Events Are Configured Per Local Organizational Requirements
3.7 Audit Software Inventory
4.1 Ensure Bonjour Advertising Services Is Disabled
5.1.7 Ensure No World Writable Folders Exist in the Library Folder
5.2.3 Ensure Complex Password Must Contain Alphabetic Characters Is Configured
5.2.4 Ensure Complex Password Must Contain Numeric Character Is Configured
5.2.5 Ensure Complex Password Must Contain Special Character Is Configured
5.2.6 Ensure Complex Password Must Contain Uppercase and Lowercase Characters Is Configured
5.8 Ensure a Login Window Banner Exists
6.2.1 Ensure Protect Mail Activity in Mail Is Enabled
6.3.2 Audit History and Remove History Items
6.3.5 Audit Hide IP Address in Safari Setting
6.3.8 Audit AutoFill
CIS_Apple_macOS_14.0_Sonoma_v2.0.0_L2.audit from CIS Apple macOS 14.0 Sonoma Benchmark v2.0.0