empayre/fleet
14
0
Fork 0
mirror of https://github.com/empayre/fleet.git synced 2024-11-06 08:55:24 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

CIS_MAC13_5.2.5 (#10251)

Browse Source
This commit is contained in:
Sharon Katz 2023-03-03 15:14:00 -05:00 committed by GitHub
parent 2295575fdb
commit cf18f1f79f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 57 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
ee/cis/macos-13/cis-policy-queries.yml
View File

@ -1906,6 +1906,26 @@ spec:
---
apiVersion: v1
kind: policy
spec:
name: CIS - Ensure Complex Password Must Contain Special Character Is Configured (MDM Required)
platforms: macOS
platform: darwin
description: |
Complex passwords contain one character from each of the following classes: English uppercase letters, English lowercase letters, Westernized Arabic numerals, and non- alphanumeric characters. Ensure that a special character is part of the password policy on the computer.
resolution: |
Ask your system administrator to deploy an MDM profile that ensures Complex Password Must Contain Special Characters
query: |
SELECT 1 FROM managed_policies WHERE
domain = 'com.apple.mobiledevice.passwordpolicy' AND
name = 'minComplexChars' AND
value >= 1
LIMIT 1;
purpose: Informational
tags: compliance, CIS, CIS_Level2, CIS-macos-13-5.2.5
contributors: sharon-fdm
---
apiVersion: v1
kind: policy
spec:
name: CIS - Ensure Password Age Is Configured (Fleetd Required)
platforms: macOS

37
ee/cis/macos-13/test/profiles/5.2.5.mobileconfig Normal file
View File

@ -0,0 +1,37 @@
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>PayloadContent</key>
<array>
<dict>
<key>PayloadDisplayName</key>
<string>test</string>
<key>PayloadType</key>
<string>com.apple.mobiledevice.passwordpolicy</string>
<key>PayloadIdentifier</key>
<string>com.fleetdm.cis-5.2.5.check</string>
<key>PayloadUUID</key>
<string>46BD11BD-116C-4E95-9575-6EDFDE0F110F</string>
<key>minComplexChars</key>
<integer>1</integer>
</dict>
</array>
<key>PayloadDescription</key>
<string>test</string>
<key>PayloadDisplayName</key>
<string>Require Special characters in password</string>
<key>PayloadIdentifier</key>
<string>com.fleetdm.cis-5.2.5</string>
<key>PayloadRemovalDisallowed</key>
<false/>
<key>PayloadScope</key>
<string>System</string>
<key>PayloadType</key>
<string>Configuration</string>
<key>PayloadUUID</key>
<string>C8CEE953-50F3-48E6-B462-FA98D931A906</string>
<key>PayloadVersion</key>
<integer>1</integer>
</dict>
</plist>