Apple macOS 14 (Sonoma) STIG Version Comparison

There are 7 differences between versions v1 r2 (April 24, 2024) (the "left" version) and v2 r2 (Oct. 24, 2024) (the "right" version).

Check APPL-14-000015 was removed from the benchmark in the "right" version. The text below reflects the old wording.

This check's original form is available here.

Title

The macOS system must employ automated mechanisms to determine the state of system components.

Check Content

Verify the macOS system is configured with automated mechanisms to determine the state of system components. Ask the system administrator (SA) or information system security officer (ISSO) if the approved endpoint security solution is loaded on the system. If the installed components of the endpoint security solution are not at the DOD-approved minimal versions, this is a finding.

Discussion

The macOS system must employ automated mechanisms to determine the state of system components. The DOD requires the installation and use of an approved endpoint security solution to be implemented on the operating system. For additional information, reference all applicable OPORDs and FRAGOs on SIPRNet.

Fix

Install the approved endpoint security solution onto the system.