- Big Sur - Access Control for Mobile Devices
- Big Sur - Allow Smartcard Authentication
- Big Sur - Apply Gatekeeper Settings to Block Applications from Unidentified Developers
- Big Sur - Audit Record Reduction and Report Generation - processing
- Big Sur - Audit Record Reduction and Report Generation - reduction
- Big Sur - Automatically Remove or Disable Emergency Accounts within 72 Hours
- Big Sur - Automatically Remove or Disable Temporary or Emergency User Accounts within 72 Hours
- Big Sur - Automatically Remove or Disable Temporary User Accounts within 72 Hours
- Big Sur - Configure Apple System Log Files Owned by Root and Group to Wheel
- Big Sur - Configure Apple System Log Files To Mode 640 or Less Permissive
- Big Sur - Configure Audit Capacity Warning
- Big Sur - Configure Audit Failure Notification
- Big Sur - Configure Audit Log Files Group to Wheel
- Big Sur - Configure Audit Log Files to be Owned by Root
- Big Sur - Configure Audit Log Files to Mode 440 or Less Permissive
- Big Sur - Configure Audit Log Files to Not Contain Access Control Lists
- Big Sur - Configure Audit Log Folder to Not Contain Access Control Lists
- Big Sur - Configure Audit Log Folders Group to Wheel
- Big Sur - Configure Audit Log Folders to be Owned by Root
- Big Sur - Configure Audit Log Folders to Mode 700 or Less Permissive
- Big Sur - Configure Audit Retention to a Minimum of Seven Days
- Big Sur - Configure Automated Flaw Remediation
- Big Sur - Configure Gatekeeper to Disallow End User Override
- Big Sur - Configure Login Window to Prompt for Username and Password
- Big Sur - Configure macOS to Use an Authorized Time Server
- Big Sur - Configure SSH ServerAliveInterval option set to 900 or less
- Big Sur - Configure Sudoers to Authenticate Users on a Per -tty Basis
- Big Sur - Configure System Log Files Owned by Root and Group to Wheel
- Big Sur - Configure System Log Files to Mode 640 or Less Permissive
- Big Sur - Configure System to Audit All Administrative Action Events
