Details
Smartcard authentication _MUST_ be allowed.
The use of smartcard credentials facilitates standardization and reduces the risk of unauthorized access.
When enabled, the smartcard can be used for login, authorization, and screen saver unlocking.
Solution
This is implemented by a Configuration Profile.
mobileconfig profile info:
com.apple.security.smartcard:
allowSmartCard:
True
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Identification and Authentication.This control applies to the following type of system Unix.
References
- 800-53|IA-2(1)
- 800-53|IA-2(2)
- 800-53|IA-2(12)
- 800-53|IA-5(11)
- CCE|CCE-85277-2
Comments
Please sign in to leave a comment.