STIGQter: STIG Summary: Jamf Pro v10.x EMM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 03 Feb 2020:

The Jamf Pro EMM local accounts must be configured with password minimum lifetime of 24 hours.

DISA Rule

SV-108723r1_rule

Vulnerability Number

V-99619

Group Title

PP-MDM-991000

Rule Version

JAMF-10-100750

Severity

CAT II

CCI(s)

• CCI-000198 - The information system enforces minimum password lifetime restrictions.

Weight

10

Fix Recommendation

To configure the "Minimum Password Age" to "1" day for the local accounts password, do the following:

1. Open the Jamf Pro EMM console.
2. Click "Settings".
3. Click "System Settings".
4. Click "Jamf Pro System User Accounts & Groups".
5. Click "Password Policy".
6. Click "Edit".
7. Set the "Minimum Password Age" to "1" day.

Check Contents

To verify the "Minimum password Age" of "1" day for the local accounts password is set, do the following:

1. Open the Jamf Pro EMM console.
2. Click "Settings".
3. Click "System Settings".
4. Click "Jamf Pro System User Accounts & Groups".
5. Click "Password Policy".
6. Verify "Minimum Password Age" is set to "1" day.

If the "Minimum Password Age" is not set to "1" day, this is a finding.

Vulnerability Number

V-99619

Documentable

False

Rule Version

JAMF-10-100750

Severity Override Guidance

To verify the "Minimum password Age" of "1" day for the local accounts password is set, do the following:

1. Open the Jamf Pro EMM console.
2. Click "Settings".
3. Click "System Settings".
4. Click "Jamf Pro System User Accounts & Groups".
5. Click "Password Policy".
6. Verify "Minimum Password Age" is set to "1" day.

If the "Minimum Password Age" is not set to "1" day, this is a finding.

Check Content Reference

M

Target Key

3593

Comments