The macOS system must initiate the session lock no more than five seconds after a screen saver is started.

An XCCDF Rule

Details
Profiles

Description

A screen saver must be enabled and set to require a password to unlock. An excessive grace period impacts the ability for a session to be truly locked, requiring authentication to unlock.

ID: SV-252438r877365_rule
Version: APPL-12-000003
Severity: Medium
References: CCI-000056
Updated: 5 days ago

Remediation Templates

This setting is enforced using the "Login Window Policy" configuration profile.

The macOS system must initiate the session lock no more than five seconds after a screen saver is started.

Description

Remediation Templates

A Manual Procedure