AOSX-15-000015 – The macOS system must utilize an Endpoint Security Solution (ESS) and implement all DoD required modules.

Details

The macOS system must employ automated mechanisms to determine the state of system components. The DoD requires the installation and use of an approved ESS to be implemented on the operating system. For additional information, reference all applicable ESS OPORDs and FRAGOs on SIPRNet.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Install an approved ESS onto the system and ensure that all components are at least updated to their DoD-approved minimal versions.

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_OS_X_10-15_V1R7_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: System and Information Integrity.This control applies to the following type of system Unix.

References

800-53|SI-2(2)
CAT|II
CCI|CCI-001233
Rule-ID|SV-225129r802343_rule
STIG-ID|AOSX-15-000015
STIG-Legacy|SV-111635
STIG-Legacy|V-102673
Vuln-ID|V-225129

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles