Elgato_dark/fleet
1
0
Fork 0
mirror of https://github.com/fleetdm/fleet synced 2026-05-24 09:28:54 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 60

Update standard-query-library.yml (#26346)

Browse source 
closes:
https://github.com/fleetdm/fleet/issues/24415#issuecomment-2657863048

- Updated policy to the suggestion from @jmwatts in the linked bug
report.
- Added caveat note.

@ddribeiro, please can you confirm that the suggested policy edit is
good to go?

Co-authored-by: Eric <eashaw@sailsjs.com>
This commit is contained in:
Mike Thomas 2025-02-18 07:33:41 +09:00 committed by GitHub
parent df3954ba44
commit b23d331227
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
docs/01-Using-Fleet/standard-query-library/standard-query-library.yml
View file

@ -754,8 +754,8 @@ apiVersion: v1
kind: policy
spec:
name: Automatic login disabled (macOS)
query: SELECT 1 FROM managed_policies WHERE domain = 'com.apple.loginwindow' AND name = 'com.apple.login.mcx.DisableAutoLoginClient' AND value = 1 LIMIT 1;
description: "Checks that a mobile device management (MDM) solution configures the Mac to prevent login in without a password."
query: SELECT 1 FROM managed_policies WHERE domain = 'com.apple.loginwindow' AND name = 'DisableFDEAutoLogin' AND value = 1 LIMIT 1;
description: "Checks that a mobile device management (MDM) solution configures the Mac to prevent login in without a password. Note: This policy will not report a value if FileVault is disabled."
resolution: "Contact your IT administrator to ensure your Mac is receiving a profile that disables automatic login."
tags: MDM required, compliance, hardening, built-in, critical
platform: darwin