APPL-14-003001 - The macOS system must issue or obtain public key certificates from an approved service provider.

Information

The organization must issue or obtain public key certificates from an organization-approved service provider and ensure only approved trust anchors are in the System Keychain.

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.

Solution

Configure the macOS system to issue or obtain public key certificates from an approved service provider by obtaining the approved certificates from the appropriate authority and install them to the System Keychain.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_macOS_14_V2R2_STIG.zip

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-23(5), CAT|II, CCI|CCI-002470, Rule-ID|SV-259536r958868_rule, STIG-ID|APPL-14-003001, Vuln-ID|V-259536

Plugin: Unix

Control ID: dccb972465334547a933cbfc86f3d5b67cf69e3e1e7a46950d25d96e0f88f2f4