The macOS system must be configured so that users do not have Apple IDs signed into iCloud.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-214906 | AOSX-13-001130 | SV-214906r609363_rule | Medium |
| Description |
|---|
| Users should not sign into iCloud, as this leads to the possibility that sensitive data could be saved to iCloud storage or that users could inadvertently introduce viruses or malware previously saved to iCloud from other systems. |
| STIG | Date |
|---|---|
| Apple OS X 10.13 Security Technical Implementation Guide | 2021-11-19 |
Details
| Check Text ( C-16106r397290_chk ) |
|---|
| To see if any user account has configured an Apple ID for iCloud usage, run the following command: /usr/bin/sudo find /Users/ -name 'MobileMeAccounts.plist' -exec /usr/bin/defaults read '{}' \; If the results show any accounts listed, this is a finding. |
| Fix Text (F-16104r397291_fix) |
|---|
| This must be resolved manually. With the affected user logged on, open System Preferences >> iCloud. Choose "Sign Out". |