NIST MacOS Monterey V1.0.0 800 53R5 Low

Details The audit log folder _MUST_ be configured to mode 700 or less permissive so that only the root user...

Details The audit log folder _MUST_ not contain access control lists (ACLs). Audit logs contain sensitive data about the system...

Details The audit service _MUST_ be configured to require records be kept for seven days or longer before deletion, unless...

Details Gatekeeper _MUST_ be configured with a configuration profile to prevent normal users from overriding its settings. If users are...

Details The login window _MUST_ be configured to prompt all users for both a username and a password. By default,...

Details Approved time servers _MUST_ be the only servers configured for use. This rule ensures the uniformity of time stamps...

Details The file /etc/sudoers _MUST_ be configured to include tty_tickets. This rule ensures that the “sudo” command will prompt for...

Details The auditing system _MUST_ be configured to flag administrative action (ad) events. Administrative action events include changes made to...

Details The auditing system _MUST_ be configured to flag authorization and authentication (aa) events. Authentication events contain information about the...

Details The audit system _MUST_ be configured to record enforcement actions of attempts to delete file attributes (fd). ***Enforcement actions...