STIGQter STIGQter: STIG Summary: Apple OS X 10.15 (Catalina) Security Technical Implementation Guide Version: 1 Release: 4 Benchmark Date: 23 Apr 2021:

The macOS system must have the security assessment policy subsystem enabled.

DISA Rule

SV-225198r610901_rule

Vulnerability Number

V-225198

Group Title

SRG-OS-000366-GPOS-00153

Rule Version

AOSX-15-002064

Severity

CAT I

CCI(s)

Weight

10

Fix Recommendation

To enable the Security assessment policy subsystem, run the following command:

/usr/bin/sudo /usr/sbin/spctl --master-enable

Check Contents

To check the status of the Security assessment policy subsystem, run the following command:

/usr/bin/sudo /usr/sbin/spctl --status | /usr/bin/grep enabled

If "assessments enabled" is not returned, this is a finding.

Vulnerability Number

V-225198

Documentable

False

Rule Version

AOSX-15-002064

Severity Override Guidance

To check the status of the Security assessment policy subsystem, run the following command:

/usr/bin/sudo /usr/sbin/spctl --status | /usr/bin/grep enabled

If "assessments enabled" is not returned, this is a finding.

Check Content Reference

M

Target Key

4212

Comments