Jamf Pro Reporting Capabilities for Apple's macOS Security Features
This article explains how to report on the following macOS security features using Jamf Pro:
-
Activation Lock
-
Firewall
-
Gatekeeper
-
Recovery Lock
-
System Integrity Protection
-
XProtect Definitions Version
Security Feature | Requirements | Description | Reporting Capabilities |
---|---|---|---|
Activation Lock |
|
Activation Lock ensures that only those authorized to lock a compatible computer with macOS 10.15 or later can do so. Activation Lock is automatically enabled when a user turns on the Find My feature. For more information on Activation Lock, see Activation Lock for iPhone, iPad, and iPod touch from Apple's support website. You can leverage additional Activation Lock functionality using Jamf Pro. For more information, see the Leveraging Apple’s Activation Lock Feature with Jamf Pro article. Note: Activation Lock for computers applies to compatible computers with macOS 10.15 or later. For more information on compatibility, see Activation Lock for Mac from Apple's support website.
|
The following reporting capabilities are available for Activation Lock:
|
Firewall |
|
Firewall allows you to view whether or not the macOS application firewall is enabled on compatible computers with macOS 10.12 or later. In macOS Firewall options are found in Note:
The Firewall feature replaces the following scripted command used prior to macOS 12 to report the firewall status:
|
The following reporting capabilities are available for Firewall:
|
Gatekeeper |
|
Gatekeeper is a security technology from Apple that helps to protect computers from apps that could adversely affect them. In macOS, Gatekeeper options are found in Allow applications downloaded from:. tab under the headerFor computers with macOS 10.7.5 or later, you can install a macOS configuration profile with a Security & Privacy payload that restricts which Gatekeeper preferences are enabled on a computer (Mac App Store, Mac App Store and identified developers, or Anywhere). For more information on Gatekeeper, see Safely open apps on your Mac from Apple's support website. |
The following reporting capabilities are available for Gatekeeper:
|
Recovery Lock |
|
Recovery Lock prevents access to macOS Recovery without a password providing additional security for the computers in your environment. For more information about Recovery Lock, see Use macOS Recovery on a Mac with Apple silicon in Apple's macOS User Guide. |
The following reporting capabilities are available for Recovery Lock:
|
System Integrity Protection |
|
System Integrity Protection (SIP) is a security technology from Apple that restricts the root user account and limits actions that the root user can perform on protected parts of the Mac operating system. For more information on System Integrity Protection, see About System Integrity Protection on your Mac from Apple's support website. System Integrity Protection can only be configured by a root user on a computer. For more information, see Configuring System Integrity Protection from the Apple Developer website. |
The following reporting capabilities are available for System Integrity Protection:
|
XProtect Definitions Version |
|
XProtect is Apple's built-in anti-malware functionality enabled by default on computers. Malware definition updates arrive through Apple's normal software update process. To view this setting in macOS, navigate to Install system data files and security updates checkbox is selected. . Ensure the |
The following reporting capabilities are available for XProtect:
|