Elgato_dark/fleet
1
0
Fork 0
mirror of https://github.com/fleetdm/fleet synced 2026-05-23 00:49:03 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 106

CIS_MAC13_5.2.3_5.2.4 (#10248)

Browse source
This commit is contained in:
Sharon Katz 2023-03-03 14:06:15 -05:00 committed by GitHub
parent deb5bea3ff
commit 1741c4ddd3
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 60 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

23
ee/cis/macos-13/cis-policy-queries.yml
View file

@ -1827,6 +1827,29 @@ spec:
---
apiVersion: v1
kind: policy
spec:
name: CIS - Ensure Complex Password Must Contain Alphabetic Characters AND Numeric Characters Is Configured (MDM Required)
platforms: macOS
platform: darwin
description: |
CIS - 5.2.3 - Complex passwords contain one character from each of the following classes: English uppercase letters, English lowercase letters, Westernized Arabic numerals, and non- alphanumeric characters.
Ensure that an Alphabetic character is part of the password policy on the computer.
CIS - 5.2.4 - Complex passwords contain one character from each of the following classes: English uppercase letters, English lowercase letters, Westernized Arabic numerals, and non- alphanumeric characters.
Ensure that a number or numeric value is part of the password policy on the computer.
resolution: |
Ask your system administrator to deploy an MDM profile that ensures Complex Password Must Contain Alphabetic Characters
query: |
SELECT 1 FROM managed_policies WHERE
domain = 'com.apple.mobiledevice.passwordpolicy' AND
name = 'requireAlphanumeric' AND
(value = 1 OR value = 'true')
LIMIT 1;
purpose: Informational
tags: compliance, CIS, CIS_Level2, CIS-macos-13-5.2.3, CIS-macos-13-5.2.4
contributors: sharon-fdm
---
apiVersion: v1
kind: policy
spec:
name: CIS - Ensure Password Age Is Configured (Fleetd Required)
platforms: macOS

37
ee/cis/macos-13/test/profiles/5.2.3-and-5.2.4.mobileconfig Normal file
View file

@ -0,0 +1,37 @@
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>PayloadContent</key>
<array>
<dict>
<key>PayloadDisplayName</key>
<string>test</string>
<key>PayloadType</key>
<string>com.apple.mobiledevice.passwordpolicy</string>
<key>PayloadIdentifier</key>
<string>com.fleetdm.cis-5.2.3-and-5.2.4.check</string>
<key>PayloadUUID</key>
<string>207388F7-0144-4518-9CCD-9E488EF9C5D7</string>
<key>requireAlphanumeric</key>
<true/>
</dict>
</array>
<key>PayloadDescription</key>
<string>test</string>
<key>PayloadDisplayName</key>
<string>Require AlphaNumeric characters in password</string>
<key>PayloadIdentifier</key>
<string>com.fleetdm.cis-5.2.3-and-5.2.4</string>
<key>PayloadRemovalDisallowed</key>
<false/>
<key>PayloadScope</key>
<string>System</string>
<key>PayloadType</key>
<string>Configuration</string>
<key>PayloadUUID</key>
<string>19BDCDC8-7E9E-48A6-9468-F87EE865F677</string>
<key>PayloadVersion</key>
<integer>1</integer>
</dict>
</plist>