Check: APPL-14-000080
Apple macOS 14 (Sonoma) STIG:
APPL-14-000080
(in versions v1 r2 through v1 r1)
Title
The macOS system must enable SSH server for remote access sessions. (Cat II impact)
Discussion
Remote access sessions must use encrypted methods to protect unauthorized individuals from gaining access. Satisfies: SRG-OS-000080-GPOS-00048,SRG-OS-000113-GPOS-00058,SRG-OS-000425-GPOS-00189,SRG-OS-000426-GPOS-00190
Check Content
Verify the macOS system is configured to enable SSH server for remote access sessions with the following command: /bin/launchctl print-disabled system | /usr/bin/grep -c '"com.openssh.sshd" => enabled' If the result is not "1", this is a finding.
Fix Text
Configure the macOS system to enable SSH server for remote access sessions with the following command: /bin/launchctl enable system/com.openssh.sshd
Additional Identifiers
Rule ID: SV-259442r940948_rule
Vulnerability ID: V-259442
Group Title: SRG-OS-000080-GPOS-00048
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-000213 |
The information system enforces approved authorizations for logical access to information and system resources in accordance with applicable access control policies. |
| CCI-001942 |
The information system implements replay-resistant authentication mechanisms for network access to non-privileged accounts. |
| CCI-002420 |
The information system maintains the confidentiality and/or integrity of information during preparation for transmission. |
| CCI-002422 |
The information system maintains the confidentiality and/or integrity of information during reception. |