- Catalina - Access Control for Mobile Devices
- Catalina - Allow Smartcard Authentication
- Catalina - Apply Gatekeeper Settings to Block Applications from Unidentified Developers
- Catalina - Configure Audit Failure Notification
- Catalina - Configure Audit Log Files Group to Wheel
- Catalina - Configure Audit Log Files to be Owned by Root
- Catalina - Configure Audit Log Files to Mode 440 or Less Permissive
- Catalina - Configure Audit Log Files to Not Contain Access Control Lists
- Catalina - Configure Audit Log Folder to Not Contain Access Control Lists
- Catalina - Configure Audit Log Folders Group to Wheel
- Catalina - Configure Audit Log Folders to be Owned by Root
- Catalina - Configure Audit Log Folders to Mode 700 or Less Permissive
- Catalina - Configure Audit Retention to a Minimum of Seven Days
- Catalina - Configure Gatekeeper to Disallow End User Override
- Catalina - Configure Login Window to Prompt for Username and Password
- Catalina - Configure Sudoers to Authenticate Users on a Per -tty Basis
- Catalina - Configure System to Audit All Administrative Action Events
- Catalina - Configure System to Audit All Authorization and Authentication Events
- Catalina - Configure System to Audit All Deletions of Object Attributes
- Catalina - Configure System to Audit All Failed Change of Object Attributes
- Catalina - Configure System to Audit All Failed Program Execution on the System
- Catalina - Configure System to Audit All Failed Read Actions on the System
- Catalina - Configure System to Audit All Failed Write Actions on the System
- Catalina - Configure System to Audit All Log In and Log Out Events
- Catalina - Configure System to Shut Down Upon Audit Failure
- Catalina - Configure the System for Nonlocal Maintenance
- Catalina - Configure the System to Implement Approved Cryptography to Protect Information
- Catalina - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users
- Catalina - Disable Ad Tracking
- Catalina - Disable AirDrop
