STIGQter STIGQter: STIG Summary: Apple OS X 10.14 (Mojave) Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Jan 2020: The macOS system must issue or obtain public key certificates under an appropriate certificate policy from an approved service provider.

DISA Rule

SV-105095r1_rule

Vulnerability Number

V-95957

Group Title

SRG-OS-000066-GPOS-00034

Rule Version

AOSX-14-003001

Severity

CAT I

CCI(s)

Weight

10

Fix Recommendation

Obtain the approved DOD certificates from the appropriate authority. Use Keychain Access from "/Applications/Utilities" to add certificates to the System Keychain.

Check Contents

To view a list of installed certificates, run the following command:

/usr/bin/sudo /usr/bin/security dump-keychain | /usr/bin/grep labl | awk -F\" '{ print $4 }'

If this list does not contain approved certificates, this is a finding.

Vulnerability Number

V-95957

Documentable

False

Rule Version

AOSX-14-003001

Severity Override Guidance

To view a list of installed certificates, run the following command:

/usr/bin/sudo /usr/bin/security dump-keychain | /usr/bin/grep labl | awk -F\" '{ print $4 }'

If this list does not contain approved certificates, this is a finding.

Check Content Reference

M

Target Key

3429

Comments