CIS Apple macOS 14.0 Sonoma v2.0.0 L2

Audit Details

Name: CIS Apple macOS 14.0 Sonoma v2.0.0 L2

Updated: 12/9/2024

Authority: CIS

Plugin: Unix

Revision: 1.0

Estimated Item Count: 36

File Details

Filename: CIS_Apple_macOS_14.0_Sonoma_v2.0.0_L2.audit

Size: 119 kB

MD5: e511610e250d58a1e3d7742bd1b5a929
SHA256: 9183a7d69c62e28b4710a05e6a6f6a31d9c1a5e36a51f0e8c2830f29d6c1dcb7

Audit Items

DescriptionCategories
2.1.1.1 Audit iCloud Keychain

ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.1.1.2 Audit iCloud Drive

ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.1.1.3 Ensure iCloud Drive Document and Desktop Sync Is Disabled

ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.1.1.4 Audit Security Keys Used With AppleIDs

IDENTIFICATION AND AUTHENTICATION

2.1.1.5 Audit Freeform Sync to iCloud

ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.1.1.6 Audit Find My Mac

ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.1.2 Audit App Store Password Settings

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.3.3.9 Ensure Content Caching Is Disabled

CONFIGURATION MANAGEMENT

2.3.3.10 Ensure Media Sharing Is Disabled

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.3.3.12 Ensure Computer Name Does Not Contain PII or Protected Organizational Information

CONFIGURATION MANAGEMENT, PROGRAM MANAGEMENT

2.3.4.1 Ensure Backup Automatically is Enabled If Time Machine Is Enabled

CONTINGENCY PLANNING

2.6.1.1 Ensure Location Services Is Enabled

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.6.1.2 Ensure 'Show Location Icon in Control Center when System Services Request Your Location' Is Enabled

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.6.1.3 Audit Location Services Access

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.6.2.1 Audit Full Disk Access for Applications

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.6.3 Ensure Sending Diagnostic and Usage Data to Apple Is Disabled

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.6.7 Audit Lockdown Mode

CONFIGURATION MANAGEMENT, MAINTENANCE

2.7.1 Ensure Screen Saver Corners Are Secure

ACCESS CONTROL

2.9.1.1 Ensure the OS Is Not Active When Resuming from Standby (Intel)

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.9.1.2 Ensure Sleep and Display Sleep Is Enabled on Apple Silicon Devices

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.14.1 Audit Game Center Settings

CONFIGURATION MANAGEMENT

2.16.1 Audit Wallet & Apple Pay Settings

CONFIGURATION MANAGEMENT

3.2 Ensure Security Auditing Flags For User-Attributable Events Are Configured Per Local Organizational Requirements

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

3.7 Audit Software Inventory

CONFIGURATION MANAGEMENT, MAINTENANCE

4.1 Ensure Bonjour Advertising Services Is Disabled

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

5.1.7 Ensure No World Writable Folders Exist in the Library Folder

ACCESS CONTROL, MEDIA PROTECTION

5.2.3 Ensure Complex Password Must Contain Alphabetic Characters Is Configured

IDENTIFICATION AND AUTHENTICATION

5.2.4 Ensure Complex Password Must Contain Numeric Character Is Configured

IDENTIFICATION AND AUTHENTICATION

5.2.5 Ensure Complex Password Must Contain Special Character Is Configured

IDENTIFICATION AND AUTHENTICATION

5.2.6 Ensure Complex Password Must Contain Uppercase and Lowercase Characters Is Configured

IDENTIFICATION AND AUTHENTICATION

5.8 Ensure a Login Window Banner Exists

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

6.2.1 Ensure Protect Mail Activity in Mail Is Enabled

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

6.3.2 Audit History and Remove History Items

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

6.3.5 Audit Hide IP Address in Safari Setting

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

6.3.8 Audit AutoFill

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

CIS_Apple_macOS_14.0_Sonoma_v2.0.0_L2.audit from CIS Apple macOS 14.0 Sonoma Benchmark v2.0.0