Big Sur - Disable Wi-Fi When Connected to Ethernet

Information

The macOS should be configured to automatically disable Wi-Fi when connected to ethernet.

The use of Wi-Fi to connect to unauthorized networks may facilitate the exfiltration of mission data. Therefore, wireless networking capabilities internally embedded within information system components should be disabled when not intended to be used.

NOTE: If the system requires Wi-Fi to connect to an authorized network, this is not applicable.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

This requirement is a permanent finding and cannot be fixed. An appropriate mitigation for the system must be implemented, but this finding cannot be considered fixed.

See Also

https://github.com/usnistgov/macos_security

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-4, 800-53|AC-18(1), 800-53|AC-18(3), CCE|CCE-85452-1

Plugin: Unix

Control ID: 3c5871254aab4d93edaad7c74de4cdbad0f1d7cd186c1899a46300d82b522e2e