Item Search

NameAudit NamePluginCategory
2.13.1 Audit Passwords System Preference SettingCIS Apple macOS 15.0 Sequoia v1.0.0 L1Unix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

2.13.1 Audit Passwords System Preference SettingCIS Apple macOS 14.0 Sonoma v2.0.0 L1Unix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

2.13.1 Audit Passwords System Preference SettingCIS Apple macOS 13.0 Ventura v3.0.0 L1Unix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

2.14 Audit Passwords System Preference SettingCIS Apple macOS 12.0 Monterey v3.1.0 L1Unix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

3.1.1 Ensure 'Controls when the profile can be removed' is set to 'Never'AirWatch - CIS Apple iOS 11 v1.0.0 Institution Owned L1MDM
3.2.1.10 Ensure 'Force encrypted backups' is set to 'Enabled'AirWatch - CIS Apple iPadOS 17 Institutionally Owned L1MDM

CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.10 Ensure 'Force encrypted backups' is set to 'Enabled'AirWatch - CIS Apple iOS 13 and iPadOS 13 Institution Owned L1MDM

CONTINGENCY PLANNING

4.1.1 Review Manage Sharing & AccessMobileIron - CIS Apple iPadOS 17 Institutionally Owned L1MDM

CONFIGURATION MANAGEMENT

AIOS-13-000200 - Apple iOS/iPadOS must be configured to not allow passwords that include more than two repeating or sequential characters.AirWatch - DISA Apple iOS/iPadOS 13 v2r1MDM

CONFIGURATION MANAGEMENT

AIOS-13-001300 - Apple iOS/iPadOS must not include applications with the following characteristics: access to Siri when the device is locked.AirWatch - DISA Apple iOS/iPadOS 13 v2r1MDM

ACCESS CONTROL

AIOS-13-008900 - Apple iOS/iPadOS must implement the management setting: remove managed applications upon unenrollment from MDM (including sensitive and protected data).AirWatch - DISA Apple iOS/iPadOS 13 v2r1MDM

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-13-013800 - Apple iOS/iPadOS must disable Allow USB drive access in Files access if the AO has not approved the use of DoD approved USB storage drives with iOS/iPadOS devices.AirWatch - DISA Apple iOS/iPadOS 13 v2r1MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

AIOS-14-004100 - Apple iOS/iPadOS must not allow backup to remote systems (iCloud Photo Sharing, also known as Shared Photo Streams).AirWatch - DISA Apple iOS/iPadOS 14 v1r3MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

AIOS-15-014600 - Apple iOS/iPadOS 15 must disable copy/paste of data from managed to unmanaged applications.MobileIron - DISA Apple iOS/iPadOS 14 v1r4MDM

CONFIGURATION MANAGEMENT

AIOS-16-001000 - Apple iOS/iPadOS 16 must allow the Administrator (MDM) to perform the following management function: enable/disable VPN protection across the device and [selection: other methods] - MDM to perform the following management function: enable/disable VPN protection across the device and [selection: other methods].AirWatch - DISA Apple iOS/iPadOS 16 v2r1MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

AIOS-16-006600 - Apple iOS/iPadOS 16 must be configured to not allow passwords that include more than four repeating or sequential characters.AirWatch - DISA Apple iOS/iPadOS 16 v2r1MDM

CONFIGURATION MANAGEMENT

AIOS-16-007200 - Apple iOS/iPadOS 16 must not include applications with the following characteristics: access to Siri when the device is locked.AirWatch - DISA Apple iOS/iPadOS 16 v2r1MDM

CONFIGURATION MANAGEMENT

AIOS-16-009200 - Apple iOS/iPadOS 16 must be configured to not allow backup of [all applications, configuration data] to locally connected systems.AirWatch - DISA Apple iOS/iPadOS 16 v2r1MDM

SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-16-009900 - Apple iOS/iPadOS 16 must be configured to [selection: wipe protected data, wipe sensitive data] upon unenrollment from MDM.AirWatch - DISA Apple iOS/iPadOS 16 v2r1MDM

CONFIGURATION MANAGEMENT, MEDIA PROTECTION

AIOS-16-010400 - Apple iOS/iPadOS 16 must require a valid password be successfully entered before the mobile device data is unencrypted.AirWatch - DISA Apple iOS/iPadOS 16 v2r1MDM

SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-16-014300 - Apple iOS/iPadOS 16 must disable 'Allow network drive access in Files access' - Allow network drive access in Files access.AirWatch - DISA Apple iOS/iPadOS 16 v2r1MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

AIOS-16-014600 - Apple iOS/iPadOS 16 must disable copy/paste of data from managed to unmanaged applications.MobileIron - DISA Apple iOS/iPadOS 16 v2r1MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

AIOS-16-701000 - Apple iOS/iPadOS 16 must allow the administrator (MDM) to perform the following management function: enable/disable VPN protection across the device - MDM to perform the following management function: enable/disable VPN protection across the device and [selection: other methods].AirWatch - DISA Apple iOS/iPadOS 16 BYOAD v1r1MDM

CONFIGURATION MANAGEMENT

AIOS-16-707400 - The Apple iOS/iPadOS 16 allow list must be configured to not include applications with the following characteristics:AirWatch - DISA Apple iOS/iPadOS 16 BYOAD v1r1MDM

CONFIGURATION MANAGEMENT

AIOS-16-712000 - A managed photo app must be used to take and store work-related photos.AirWatch - DISA Apple iOS/iPadOS 16 BYOAD v1r1MDM

ACCESS CONTROL

AIOS-16-714600 - Apple iOS/iPadOS 16 must disable copy/paste of data from managed to unmanaged applications.MobileIron - DISA Apple iOS/iPadOS BYOAD 16 v1r1MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

AIOS-17-001000 - Apple iOS/iPadOS 17 must allow the Administrator (MDM) to perform the following management function: enable/disable VPN protection across the device and [selection: other methods] - MDM to perform the following management function: enable/disable VPN protection across the device and [selection: other methods].AirWatch - DISA Apple iOS/iPadOS 17 v2r1MDM

CONFIGURATION MANAGEMENT

AIOS-17-006600 - Apple iOS/iPadOS 17 must be configured to not allow passwords that include more than four repeating or sequential characters.AirWatch - DISA Apple iOS/iPadOS 17 v2r1MDM

IDENTIFICATION AND AUTHENTICATION

AIOS-17-007200 - Apple iOS/iPadOS 17 must not include applications with the following characteristics: access to Siri when the device is locked.AirWatch - DISA Apple iOS/iPadOS 17 v2r1MDM

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

AIOS-17-009900 - Apple iOS/iPadOS 17 must be configured to [selection: wipe protected data, wipe sensitive data] upon unenrollment from MDM.AirWatch - DISA Apple iOS/iPadOS 17 v2r1MDM

CONFIGURATION MANAGEMENT, MEDIA PROTECTION

AIOS-17-010400 - Apple iOS/iPadOS 17 must require a valid password be successfully entered before the mobile device data is unencrypted.AirWatch - DISA Apple iOS/iPadOS 17 v2r1MDM

SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-17-701000 - Apple iOS/iPadOS 17 must allow the administrator (MDM) to perform the following management function: enable/disable VPN protection across the device - MDM to perform the following management function: enable/disable VPN protection across the device and [selection: other methods].AirWatch - DISA Apple iOS/iPadOS 17 BYOAD v1r1MDM

CONFIGURATION MANAGEMENT

AIOS-17-712000 - A managed photo app must be used to take and store work-related photos.AirWatch - DISA Apple iOS/iPadOS 17 BYOAD v1r1MDM

ACCESS CONTROL

AIOS-17-714600 - Apple iOS/iPadOS 17 must disable copy/paste of data from managed to unmanaged applications.MobileIron - DISA Apple iOS/iPadOS BYOAD 17 v1r1MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

AIOS-18-009900 - Apple iOS/iPadOS 18 must be configured to [selection: wipe protected data, wipe sensitive data] upon unenrollment from MDM.AirWatch - DISA Apple iOS/iPadOS 18 v1r1MDM

MEDIA PROTECTION

AIOS-18-010400 - Apple iOS/iPadOS 18 must require a valid password be successfully entered before the mobile device data is unencrypted.AirWatch - DISA Apple iOS/iPadOS 18 v1r1MDM

SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-18-014600 - Apple iOS/iPadOS 18 must disable copy/paste of data from managed to unmanaged applications.MobileIron - DISA Apple iOS/iPadOS 18 v1r1MDM

CONFIGURATION MANAGEMENT

Big Sur - Enforce Enrollment in Mobile Device ManagementNIST macOS Big Sur v1.4.0 - 800-53r4 HighUnix

CONFIGURATION MANAGEMENT

Big Sur - Enforce Enrollment in Mobile Device ManagementNIST macOS Big Sur v1.4.0 - 800-53r4 LowUnix

CONFIGURATION MANAGEMENT

Big Sur - Enforce Enrollment in Mobile Device ManagementNIST macOS Big Sur v1.4.0 - 800-53r4 ModerateUnix

CONFIGURATION MANAGEMENT

GOOG-011-999999 - All Google Android 11 installations must be removed.AirWatch - DISA Google Android 11 COBO v2r1MDM

CONFIGURATION MANAGEMENT

GOOG-011-999999 - All Google Android 11 installations must be removed.AirWatch - DISA Google Android 11 COPE v2r1MDM

CONFIGURATION MANAGEMENT

MobileIron - CIS Apple iOS 8 v1.0.0 L1MobileIron - CIS Apple iOS 8 v1.0.0 L1MDM

ACCESS CONTROL

MobileIron - CIS Apple iOS 8 v1.0.0 L2MobileIron - CIS Apple iOS 8 v1.0.0 L2MDM

ACCESS CONTROL

MobileIron - CIS Apple iOS 9 v1.0.0 L1MobileIron - CIS Apple iOS 9 v1.0.0 L1MDM

ACCESS CONTROL

Monterey - Enforce Enrollment in Mobile Device ManagementNIST macOS Monterey v1.0.0 - CNSSI 1253Unix

CONFIGURATION MANAGEMENT

Monterey - Enforce Enrollment in Mobile Device ManagementNIST macOS Monterey v1.0.0 - 800-171Unix

CONFIGURATION MANAGEMENT

Monterey - Enforce Enrollment in Mobile Device ManagementNIST macOS Monterey v1.0.0 - 800-53r4 HighUnix

CONFIGURATION MANAGEMENT

Monterey - Enforce Enrollment in Mobile Device ManagementNIST macOS Monterey v1.0.0 - 800-53r5 LowUnix

CONFIGURATION MANAGEMENT

ZEBR-11-009400 - Zebra Android 11 work profile must be configured to enforce the system application disable list.AirWatch - DISA Zebra Android 11 COBO v1r3MDM

CONFIGURATION MANAGEMENT