3.2.1.14 Ensure 'Allow trusting new enterprise app authors' is set to 'Disabled'

Information

This recommendation pertains to permitting application installation by end users from outside the Apple App Store or Mobile Device Management (MDM) deployment.

Rationale:

Allowing application installation by end users from outside of the Apple App Store or Mobile Device Management (MDM) may permit a user to install a malicious application.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Open Apple Configurator.

Open the Configuration Profile.

In the left window pane, click on the Restrictions tab.

In the right window pane, under the tab Functionality, uncheck the checkbox for Allow trusting new enterprise app authors.

Deploy the Configuration Profile.

See Also

https://workbench.cisecurity.org/benchmarks/15548