Details
Gatekeeper is Apple’s application white-listing control that restricts downloaded applications from launching. It functions as a control to limit applications from unverified sources from running without authorization.
Rationale:
Disallowing unsigned software will reduce the risk of unauthorized or malicious applications from running on the system.
Solution
Perform the following to implement the prescribed state:
Open System Preferences
Select Security & Privacy
Select General
Select Allow applications downloaded from: Mac App Store and identified developers
Alternatively, perform the following to ensure the system is configured as:
Run the following command in Terminal:
sudo spctl –master-enable
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Unix.