STIGQter: STIG Summary: Jamf Pro v10.x EMM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 03 Feb 2020:

The Jamf Pro EMM local accounts password must be configured with length of 15 characters.

DISA Rule

SV-108713r1_rule

Vulnerability Number

V-99609

Group Title

PP-MDM-991000

Rule Version

JAMF-10-100700

Severity

CAT II

CCI(s)

• CCI-000205 - The information system enforces minimum password length.

Weight

10

Fix Recommendation

To configure the length of the local accounts password, do the following:

1. Open the Jamf Pro EMM console.
2. Click "Settings".
3. Click "System Settings".
4. Click "Jamf Pro System User Accounts & Groups".
5. Click "Password Policy".
6. Click "Edit".
7. Set "Minimum Password Length" to "15".

Check Contents

To verify the length of the local accounts password, do the following:

1. Open the Jamf Pro EMM console.
2. Click "Settings".
3. Click "System Settings".
4. Click "Jamf Pro System User Accounts & Groups".
5. Click "Password Policy".
6. Verify "Minimum Password Length" is set to "15".

If the "Minimum Password Length" is not set to "15", this is a finding.

Vulnerability Number

V-99609

Documentable

False

Rule Version

JAMF-10-100700

Severity Override Guidance

To verify the length of the local accounts password, do the following:

1. Open the Jamf Pro EMM console.
2. Click "Settings".
3. Click "System Settings".
4. Click "Jamf Pro System User Accounts & Groups".
5. Click "Password Policy".
6. Verify "Minimum Password Length" is set to "15".

If the "Minimum Password Length" is not set to "15", this is a finding.

Check Content Reference

M

Target Key

3593

Comments