Detections
Analytics

1.103 APPL-14-002150

Information

The macOS system must disable iCloud desktop and document folder synchronization.

GROUP ID: V-259523RULE ID: SV-259523r958478

The macOS system's ability to automatically synchronize a user's desktop and documents folder to their iCloud Drive must be disabled.

Apple's iCloud service does not provide an organization with enough control over the storage and access of data and, therefore, automated file synchronization must be controlled by an organization approved service.

Solution

Configure the macOS system to disable iCloud desktop and document folder synchronization by installing the "com.apple.applicationaccess" configuration profile.

See Also

https://workbench.cisecurity.org/benchmarks/24070

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7, 800-53|CM-7a., CAT|II, CCI|CCI-000381, Rule-ID|SV-259523r958478_rule, STIG-ID|APPL-14-002150, Vuln-ID|V-259523

Plugin: Unix

Control ID: eac452e7fcabfa3f0bc0dc39a11ba293591d48139d1befeb758213a5584e3c12