Monterey - Enforce Gatekeeper 30 Day Automatic Rearm

Information

Gatekeeper _MUST_ be configured to automatically rearm after 30 days if disabled.

Solution

This is implemented by a Configuration Profile.

mobileconfig profile info:

com.apple.ManagedClient.preferences:
com.apple.security:
GKAutoRearm
True

See Also

https://github.com/usnistgov/macos_security

Item Details

Category: CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

References: 800-53|CM-5, 800-53|SI-3, CCE|CCE-90927-5

Plugin: Unix

Control ID: 073a6a1d300b44da971b5293830741133bf706374cce36f23f40b6b44bc14533