Detections
Analytics
APPL-11-002064 - The macOS system must have the security assessment policy subsystem enabled.
Information
Any changes to the hardware, software, and/or firmware components of the information system and/or application can potentially have significant effects on the overall security of the system.Accordingly, software defined by the organization as critical must be signed with a certificate that is recognized and approved by the organization.
Solution
To enable the Security assessment policy subsystem, run the following command:/usr/bin/sudo /usr/sbin/spctl --master-enable
See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_macOS_11_V1R8_STIG.zip
Item Details
Audit Name: DISA STIG Apple macOS 11 v1r8
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-5(3), CAT|I, CCI|CCI-001749, Rule-ID|SV-230824r877463_rule, STIG-ID|APPL-11-002064, Vuln-ID|V-230824
Plugin: Unix
Control ID: 02fa0ce85294eab8add7a7c592ce4ff2b098d9c1868d852a5c5229995f05580e