APPL-11-000002 - The macOS system must retain the session lock until the user reestablishes access using established identification and authentication procedures.

Information

Users must be prompted to enter their passwords when unlocking the screen saver. The screen saver acts as a session lock and prevents unauthorized users from accessing the current user's account.

Solution

This setting is enforced using the 'Login Window Policy' configuration profile.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_macOS_11_V1R5_STIG.zip

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-11b., CAT|II, CCI|CCI-000056, Rule-ID|SV-230744r599842_rule, STIG-ID|APPL-11-000002, Vuln-ID|V-230744

Plugin: Unix

Control ID: a5ecedb96b634ac9e40395b9184b44d671634343688f7b2b3f3eb6972393e47a