5.18 Install an approved tokend for smartcard authentication


US Federal government systems as well as many others are requiring the use of smartcards for user authentication. In order to enable this functionality for console authentication as well as authentication through the browser or VPN client a middleware package that contains a "tokend" is used on OS X. The open source provided installers for OS X are located here: https://smartcardservices.macosforge.org/ If your organization requires the use of a smartcard this control checks whether a tokend is in place. If your organization is not using smartcards or smartcard middleware that does not use tokend this control should not be scored. A tokend is part of mandated smartcard authentication for many organizations.

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.


Install the appropriate tokend middleware installer for MacOS Forge or third party vendor. https://smartcardservices.macosforge.org/

See Also


Item Details


References: 800-53|IA-5(11)

Plugin: Unix

Control ID: 602ec4c0dcc21baaabbeaf82fa299d40fc84473f239c18e871b6473b1327473c