NIST MacOS Monterey V1.0.0 800 53R5 Moderate

Details The macOS system _MUST_ be configured to determine the state of system components with regard to flaw remediation. NOTE:...

Details Gatekeeper _MUST_ be configured with a configuration profile to prevent normal users from overriding its settings. If users are...

Details The login window _MUST_ be configured to prompt all users for both a username and a password. By default,...

Details Approved time servers _MUST_ be the only servers configured for use. This rule ensures the uniformity of time stamps...

Details SSH _MUST_ be configured with an Active Server Alive Maximum Count set to 900 or less. Setting the Active...

Details The file /etc/sudoers _MUST_ be configured to include tty_tickets. This rule ensures that the “sudo” command will prompt for...

Details The system log files _MUST_ be owned by root. System logs contain sensitive data about the system and users....

Details The system logs _MUST_ be configured to be writable by root and readable only by the root user and...

Details The auditing system _MUST_ be configured to flag administrative action (ad) events. Administrative action events include changes made to...

Details The audit system _MUST_ be configured to record enforcement actions of failed attempts to modify file attributes (fm). Enforcement...