Detections
Analytics

1.66 APPL-14-002010

Information

The macOS system must disable FaceTime.app.

GROUP ID: V-259486RULE ID: SV-259486r958478

The macOS built-in FaceTime.app must be disabled.

The FaceTime.app establishes a connection to Apple's iCloud service, even when security controls have been put in place to disable iCloud access.

[IMPORTANT]

Apple has deprecated the use of application restriction controls ( https://github.com/apple/device-management/blob/eb51fb0cb9626cac4717858556912c257a734ce0/mdm/profiles/com.apple.applicationaccess.new.yaml#L67-L70 ). Using these controls may not work as expected. Third-party software may be required to fulfill the compliance requirements.

Solution

Configure the macOS system to disable FaceTime.app by installing the "com.apple.applicationaccess.new" configuration profile.

See Also

https://workbench.cisecurity.org/benchmarks/24070

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7, 800-53|CM-7a., CAT|II, CCI|CCI-000381, Rule-ID|SV-259486r958478_rule, STIG-ID|APPL-14-002010, Vuln-ID|V-259486

Plugin: Unix

Control ID: 9e7067927e2963254712b200bc1cdab8e96508fb819bcff65202e31e698c98c4