Detections
Analytics
APPL-26-000022 - The macOS system must limit consecutive failed login attempts to three.
Information
The macOS must be configured to limit the number of failed login attempts to a maximum of three. When the maximum number of failed attempts is reached, the account must be locked for a period of time.This rule protects against malicious users attempting to gain access to the system via brute-force hacking methods.
Satisfies: SRG-OS-000021-GPOS-00005, SRG-OS-000329-GPOS-00128
Solution
Configure the macOS system to limit consecutive failed login attempts to three by installing the "com.apple.mobiledevice.passwordpolicy" configuration profile.See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_macOS_26_V1R2_STIG.zip
Item Details
Audit Name: DISA Apple macOS 26 Tahoe STIG v1r2
Category: ACCESS CONTROL
References: 800-53|AC-7a., 800-53|AC-7b., CAT|II, CCI|CCI-000044, CCI|CCI-002238, Rule-ID|SV-277036r1149407_rule, STIG-ID|APPL-26-000022, Vuln-ID|V-277036
Plugin: Unix
Control ID: 7417cf89ec0ebfd25dd266412c39654a67b678da3539211c3c4dc164d4c2657f