An error occurred:

Check: APPL-13-000015

Apple macOS 13 (Ventura) STIG: APPL-13-000015 (in versions v1 r4 through v1 r1)

Title

The macOS system must use an Endpoint Security Solution (ESS) and implement all DOD required modules. (Cat II impact)

Discussion

The macOS system must employ automated mechanisms to determine the state of system components. The DOD requires the installation and use of an approved ESS solution to be implemented on the operating system. For additional information, reference all applicable ESS OPORDs and FRAGOs on SIPRNet.

Check Content

Verify the macOS system is configured with an approved ESS solution. If an approved ESS solution is not installed, this is a finding. Verify that all installed components of the ESS solution are at the DOD-approved minimal version. If the installed components are not at the DOD-approved minimal versions, this is a finding.

Fix Text

Configure the macOS system with an approved ESS solution and ensure that all components are at least updated to their DOD-approved minimal versions.

Additional Identifiers

Rule ID: SV-257152r939261_rule

Vulnerability ID: V-257152

Group Title: SRG-OS-000191-GPOS-00080

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-001233

The organization employs automated mechanisms on an organization-defined frequency to determine the state of information system components with regard to flaw remediation.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
SI-2 (2)

Automated Flaw Remediation Status