Big Sur - Map identity for PKI based authentication

Information

Without mapping the certificate used to authenticate to the user account, the ability to determine the identity of the individual user or group will not be available for forensic analysis.

Solution

For directory bound systems, the technology inherently meets this requirement. No fix is required.

See Also

https://github.com/usnistgov/macos_security

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(2)(c), CCE|CCE-85337-4, CCI|CCI-000187

Plugin: Unix

Control ID: 9a2e5442e62e781c3ef5540dc99e4d772108425bd7abd7d614e568283d547430