mirror of
https://github.com/usnistgov/macos_security.git
synced 2026-02-03 05:53:24 +00:00
47 lines
1.3 KiB
YAML
47 lines
1.3 KiB
YAML
id: os_prevent_priv_functions
|
|
title: "Configure the System to Block Non-Privileged Users from Executing Privileged Functions"
|
|
discussion: |
|
|
The information system _IS_ configured to block standard users from executing privileged functions.
|
|
|
|
Privileged functions include disabling, circumventing, or altering implemented security safeguards and countermeasures.
|
|
|
|
The inherent configuration of the macOS does not allow for non-privileged users to be able to execute functions requiring privilege.
|
|
|
|
link:https://developer.apple.com/library/archive/documentation/Security/Conceptual/AuthenticationAndAuthorizationGuide/Introduction/Introduction.html[]
|
|
check: |
|
|
The technology supports this requirement and cannot be configured to be out of compliance. The technology inherently meets this requirement.
|
|
fix: |
|
|
The technology inherently meets this requirement. No fix is required.
|
|
references:
|
|
cce:
|
|
- CCE-92857-2
|
|
cci:
|
|
- N/A
|
|
800-53r5:
|
|
- AC-6(10)
|
|
800-53r4:
|
|
- AC-6(10)
|
|
disa_stig:
|
|
- N/A
|
|
srg:
|
|
- N/A
|
|
800-171r2:
|
|
- 3.1.7
|
|
cmmc:
|
|
- AC.L2-3.1.7
|
|
macOS:
|
|
- "14.0"
|
|
tags:
|
|
- 800-53r5_moderate
|
|
- 800-53r5_high
|
|
- 800-53r4_moderate
|
|
- 800-53r4_high
|
|
- 800-171
|
|
- inherent
|
|
- cnssi-1253_moderate
|
|
- cnssi-1253_low
|
|
- cnssi-1253_high
|
|
- cmmc_lvl2
|
|
mobileconfig: false
|
|
mobileconfig_info:
|