Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.3 Ensure Download New Updates When Available Is EnabledCIS Apple macOS 13.0 Ventura v3.1.0 L1Unix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.3 Ensure Download New Updates When Available Is EnabledCIS Apple macOS 14.0 Sonoma v2.1.0 L1Unix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.4 Ensure Install of macOS Updates Is EnabledCIS Apple macOS 13.0 Ventura v3.1.0 L1Unix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

2.2.2 Ensure Firewall Stealth Mode Is EnabledCIS Apple macOS 14.0 Sonoma v2.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.2 Ensure Firewall Stealth Mode Is EnabledCIS Apple macOS 15.0 Sequoia v1.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION

2.3.3.10 Ensure Bluetooth Sharing Is DisabledCIS Apple macOS 15.0 Sequoia v1.1.0 L1Unix

ACCESS CONTROL, CONFIGURATION MANAGEMENT, MEDIA PROTECTION, SYSTEM AND SERVICES ACQUISITION

2.4.2 Ensure Show Bluetooth Status in Menu Bar Is EnabledCIS Apple macOS 13.0 Ventura v3.1.0 L1Unix

CONFIGURATION MANAGEMENT

2.5.2.2 Ensure Listen for (Siri) Is DisabledCIS Apple macOS 15.0 Sequoia v1.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.6.8 Ensure an Administrator Password Is Required to Access System-Wide PreferencesCIS Apple macOS 14.0 Sonoma v2.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.9.2 Ensure Power Nap Is Disabled for Intel MacsCIS Apple macOS 13.0 Ventura v3.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.10.1 Ensure an Inactivity Interval of 15 Minutes Or Less for the Screen Saver Is EnabledCIS Apple macOS 13.0 Ventura v3.1.0 L1Unix

ACCESS CONTROL

2.10.3 Ensure a Custom Message for the Login Screen Is EnabledCIS Apple macOS 13.0 Ventura v3.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.10.3 Ensure Wake for Network Access Is DisabledCIS Apple macOS 15.0 Sequoia v1.1.0 L1Unix

CONFIGURATION MANAGEMENT

2.10.4 Ensure Login Window Displays as Name and Password Is EnabledCIS Apple macOS 14.0 Sonoma v2.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.11.1 Ensure an Inactivity Interval of 15 Minutes Or Less for the Screen Saver Is EnabledCIS Apple macOS 15.0 Sequoia v1.1.0 L1Unix

ACCESS CONTROL

2.11.1 Ensure Users' Accounts Do Not Have a Password HintCIS Apple macOS 14.0 Sonoma v2.1.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

2.11.2 Audit Touch IDCIS Apple macOS 13.0 Ventura v3.1.0 L1Unix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION

2.11.4 Ensure Login Window Displays as Name and Password Is EnabledCIS Apple macOS 15.0 Sequoia v1.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.11.5 Ensure Show Password Hints Is DisabledCIS Apple macOS 15.0 Sequoia v1.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.12.2 Audit Touch IDCIS Apple macOS 15.0 Sequoia v1.1.0 L1Unix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION

2.13.2 Ensure Guest Access to Shared Folders Is DisabledCIS Apple macOS 15.0 Sequoia v1.1.0 L1Unix

ACCESS CONTROL, MEDIA PROTECTION

2.15.1 Audit Notification SettingsCIS Apple macOS 13.0 Ventura v3.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.17.1 Audit Internet Accounts for Authorized UseCIS Apple macOS 15.0 Sequoia v1.1.0 L1Unix

ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

3.1 Ensure Security Auditing Is EnabledCIS Apple macOS 13.0 Ventura v3.1.0 L1Unix

AUDIT AND ACCOUNTABILITY

3.3 Ensure install.log Is Retained for 365 or More Days and No Maximum SizeCIS Apple macOS 12.0 Monterey v4.0.0 L1Unix

AUDIT AND ACCOUNTABILITY

3.5 Ensure Access to Audit Records Is ControlledCIS Apple macOS 13.0 Ventura v3.1.0 L1Unix

ACCESS CONTROL, MEDIA PROTECTION

3.5 Ensure Access to Audit Records Is ControlledCIS Apple macOS 14.0 Sonoma v2.1.0 L1Unix

ACCESS CONTROL, MEDIA PROTECTION

3.6 Ensure Firewall Logging Is Enabled and ConfiguredCIS Apple macOS 12.0 Monterey v4.0.0 L1Unix

AUDIT AND ACCOUNTABILITY, SYSTEM AND COMMUNICATIONS PROTECTION

3.6 Ensure Firewall Logging Is Enabled and ConfiguredCIS Apple macOS 14.0 Sonoma v2.1.0 L1Unix

AUDIT AND ACCOUNTABILITY, SYSTEM AND COMMUNICATIONS PROTECTION

4.2 Ensure HTTP Server Is DisabledCIS Apple macOS 13.0 Ventura v3.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

4.3 Ensure NFS Server Is DisabledCIS Apple macOS 15.0 Sequoia v1.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

5.1.1 Ensure Home Folders Are SecureCIS Apple macOS 12.0 Monterey v4.0.0 L1Unix

ACCESS CONTROL, MEDIA PROTECTION

5.1.5 Ensure Appropriate Permissions Are Enabled for System Wide ApplicationsCIS Apple macOS 12.0 Monterey v4.0.0 L1Unix

ACCESS CONTROL, MEDIA PROTECTION

5.1.6 Ensure No World Writable Files Exist in the System FolderCIS Apple macOS 12.0 Monterey v4.0.0 L1Unix

ACCESS CONTROL, MEDIA PROTECTION

5.2.2 Ensure Password Minimum Length Is ConfiguredCIS Apple macOS 14.0 Sonoma v2.1.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

5.2.8 Ensure Password History Is Set to at least 24CIS Apple macOS 14.0 Sonoma v2.1.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

5.5 Ensure the "root" Account Is DisabledCIS Apple macOS 12.0 Monterey v4.0.0 L1Unix

ACCESS CONTROL

5.9 Ensure the Guest Home Folder Does Not ExistCIS Apple macOS 14.0 Sonoma v2.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

6.1.3 Ensure Guest Account Is DisabledCIS Apple macOS 12.0 Monterey v4.0.0 L1Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION

6.1.4 Ensure Guest Access to Shared Folders Is DisabledCIS Apple macOS 12.0 Monterey v4.0.0 L1Unix

ACCESS CONTROL, MEDIA PROTECTION

6.2 Ensure Show All Filename Extensions Setting is EnabledCIS Apple macOS 12.0 Monterey v4.0.0 L1Unix

CONFIGURATION MANAGEMENT

6.3.4 Ensure Prevent Cross-site Tracking in Safari Is EnabledCIS Apple macOS 14.0 Sonoma v2.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

6.3.7 Ensure Show Full Website Address in Safari Is EnabledCIS Apple macOS 15.0 Sequoia v1.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

6.3.10 Ensure Show Status Bar Is EnabledCIS Apple macOS 14.0 Sonoma v2.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

6.4.1 Ensure Secure Keyboard Entry Terminal.app Is EnabledCIS Apple macOS 15.0 Sequoia v1.1.0 L1Unix

CONFIGURATION MANAGEMENT

7.2.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledCIS Apple macOS 12.0 Monterey v4.0.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

AIOS-02-080016 - Apple iOS must implement the management setting: not allow automatic completion of Safari browser passcodes.MobileIron - DISA Apple iOS 10 v1r3MDM

CONFIGURATION MANAGEMENT

AIOS-14-009800 - Apple iOS/iPadOS must implement the management setting: not allow messages in an ActiveSync Exchange account to be forwarded or moved to other accounts in the Apple iOS/iPadOS Mail app.MobileIron - DISA Apple iOS/iPadOS 14 v1r3MDM

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

AIOS-16-011400 - Apple iOS/iPadOS 16 must implement the management setting: not allow messages in an ActiveSync Exchange account to be forwarded or moved to other accounts in the Apple iOS/iPadOS 16 Mail app.MobileIron - DISA Apple iOS/iPadOS 16 v2r1MDM

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

AIOS-17-011400 - Apple iOS/iPadOS 17 must implement the management setting: not allow messages in an ActiveSync Exchange account to be forwarded or moved to other accounts in the Apple iOS/iPadOS 17 Mail app.MobileIron - DISA Apple iOS/iPadOS 17 v2r1MDM

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION