AOSX-13-000925 - The macOS system must not allow an unattended or automatic logon to the system.

Information

When automatic logons are enabled, the default user account is automatically logged on at boot time without prompting the user for a password. Even if the screen is later locked, a malicious user would be able to reboot the computer to log on. Disabling automatic logons mitigates this risk.

Solution

This setting is enforced using the 'Login Window Policy' configuration profile.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_OS_X_10-13_V2R5_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-214894r609363_rule, STIG-ID|AOSX-13-000925, STIG-Legacy|SV-96381, STIG-Legacy|V-81667, Vuln-ID|V-214894

Plugin: Unix

Control ID: 4e1c4df580911b26681512b455d1c3292fad02601261959307dc88dcf49d4d2b