UCF STIG Viewer Logo

Active Directory Access must be securely configured to encrypt all packets.


Overview

Finding ID Version Rule ID IA Controls Severity
V-51263 OSX8-00-01050 SV-65473r1_rule Medium
Description
Active Directory Access must be securely configured to encrypt all packets.
STIG Date
Apple OS X 10.8 (Mountain Lion) Workstation STIG 2015-02-10

Details

Check Text ( C-53611r1_chk )
To view the configuration for Active Directory, run the following command:

sudo dsconfigad -show

If the Packet encryption option is not set to "Required", this is a finding.

If the system is not using the built-in Active Directory plug-ins, this requirement is NA.
Fix Text (F-56063r1_fix)
To set the Active Directory configuration to require encryption of packets, run the following command:

sudo dsconfigad -packetencrypt require