Check: APPL-14-000170
Apple macOS 14 (Sonoma) STIG:
APPL-14-000170
(in versions v1 r2 through v1 r1)
Title
The macOS system must be configured to use an authorized time server. (Cat II impact)
Discussion
Approved time servers must be the only servers configured for use. This rule ensures the uniformity of time stamps for information systems with multiple system clocks and systems connected over a network. An authoritative time server is synchronized with redundant United States Naval Observatory (USNO) time servers as designated for the appropriate DOD network. Satisfies: SRG-OS-000355-GPOS-00143,SRG-OS-000356-GPOS-00144
Check Content
Verify the macOS system is configured to use an authorized time server with the following command: /usr/bin/osascript -l JavaScript << EOS $.NSUserDefaults.alloc.initWithSuiteName('com.apple.MCX')\ .objectForKey('timeServer').js EOS If the result is not an authoritative time server which is synchronized with redundant United States Naval Observatory (USNO) time servers as designated for the appropriate DoD network, this is a finding.
Fix Text
Configure the macOS system to use an authorized time server by installing the "com.apple.MCX" configuration profile.
Additional Identifiers
Rule ID: SV-259450r940972_rule
Vulnerability ID: V-259450
Group Title: SRG-OS-000355-GPOS-00143
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-001891 |
The information system compares internal information system clocks on an organization-defined frequency with an organization-defined authoritative time source. |
| CCI-002046 |
The information system synchronizes the internal system clocks to the authoritative time source when the time difference is greater than the organization-defined time period. |
Controls
| Number | Title |
|---|---|
| AU-8 (1) |
Synchronization With Authoritative Time Source |