NIST MacOS Catalina V1.5.0 800-53R5 High

Details The audit service _MUST_ be configured to require records be kept for seven days or longer before deletion, unless...

Details The macOS system _MUST_ be configured to determine the state of system components with regard to flaw remediation. NOTE:...

Details Gatekeeper _MUST_ be configured with a configuration profile to prevent normal users from overriding its settings. If users are...

Details The login window _MUST_ be configured to prompt all users for both a username and a password. By default,...

Details SSH _MUST_ be configured with an Active Server Alive Maximum Count set to 900 or less. Setting the Active...

Details The file /etc/sudoers _MUST_ be configured to include tty_tickets. This rule ensures that the “sudo” command will prompt for...

Details The system log files _MUST_ be owned by root. System logs contain sensitive data about the system and users....

Details The system logs _MUST_ be configured to be writable by root and readable only by the root user and...

Details The auditing system _MUST_ be configured to flag administrative action (ad) events. Administrative action events include changes made to...

Details The auditing system _MUST_ be configured to flag authorization and authentication (aa) events. Authentication events contain information about the...