The system must allow only applications downloaded from the App Store to run.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-51535 | OSX8-00-00710 | SV-65745r1_rule | Medium |
| Description |
|---|
| Gatekeeper settings must be configured correctly. |
| STIG | Date |
|---|---|
| Apple OS X 10.8 (Mountain Lion) Workstation STIG | 2015-02-10 |
Details
| Check Text ( C-53867r1_chk ) |
|---|
| To check to make sure only applications downloaded from the App Store are allowed to run, type the following code: system_profiler SPConfigurationProfileDataType | grep AllowIdentifiedDevelopers | awk '{ print $3 }' | sed 's/;//' If the returned value is not "0", this is a finding. |
| Fix Text (F-56339r1_fix) |
|---|
| This can be enforced using a configuration profile. |