Skip to content
Log In

Apple macOS 12 (Monterey) Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-OS-000095-GPOS-00049

    Group
    Show

  • The macOS system must be configured to prevent users from erasing all system content and settings.

    It is detrimental for operating systems to provide, or install by default, functionality exceeding requirements or mission objectives. These unnecessary capabilities or services are often overlooke...
    Rule Medium Severity
    Show

  • SRG-OS-000481-GPOS-00481

    Group
    Show

  • The macOS system must be configured to prevent Apple Watch from terminating a session lock.

    Users must be prompted to enter their passwords when unlocking the screen saver. The screen saver acts as a session lock and prevents unauthorized users from accessing the current user's account.
    Rule Medium Severity
    Show

  • The macOS system must initiate the session lock no more than five seconds after a screen saver is started.

    A screen saver must be enabled and set to require a password to unlock. An excessive grace period impacts the ability for a session to be truly locked, requiring authentication to unlock.
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules