[BESAdmin-Announcements] BigFix Compliance: Updated DISA STIG Checklist for MacOS 15, published 2026-02-17

Announcements for BES Administrators besadmin-announcements at bigmail.bigfix.com
Wed Feb 18 07:50:32 PST 2026 

*Product:*
BigFix Compliance

*Title:*
Updated DISA STIG Checklist for MacOS 15 to support a more recent version
of the benchmark

*Security Benchmark:*
Apple macOS 15 (Sequoia) Security Benchmark, V1R6

*Published Sites:*
DISA STIG Checklist for MacOS 15, site version 4
(The site version is provided for air-gap customers.)

*Details:*

   - Total New Fixlets: 0
   - Total Removed Fixlets: 1
   - Total Updated Fixlets: 9
   - Total Fixlets in Site: 158


*Updated Fixlets:*
V-268428 The macOS system must limit consecutive failed login attempts to
three.
V-268431 The macOS system must display the Standard Mandatory DOD Notice
and Consent Banner at the login window.
V-268440 The macOS system must set account lockout time to 15 minutes.
V-268451 The macOS system must configure sudo to log events.
V-268508 The macOS system must apply gatekeeper settings to block
applications from unidentified developers.
V-268511 The macOS system must enable gatekeeper.
V-268517 The macOS system must disable Media Sharing.
V-268518 The macOS system must disable Bluetooth Sharing.
V-268538 The macOS system must require that passwords contain a minimum of
one special character.

*Removed Fixlets:*
V-268520 The macOS system must disable CD/DVD Sharing.

·       Both analysis and remediation checks are included.

·       Some of the checks allow you to use the parameterized setting to
enable customization for compliance evaluation. Note that parameterization
and remediation actions require the creation of a custom site.

*Note:* Additionally, the site version has been upgraded. As a result, you
may observe that all checks appear out of sync.

*Actions to take:*

●       To subscribe to the above site, you can use the License Overview
Dashboard to enable and gather the site. Note that you must be entitled to
the BigFix Compliance product, and you must be using BigFix version 10 and
later.

●       If you use custom sites, update your custom sites accordingly to
use the latest content. You can synchronize your content by using the
Synchronize Custom Checks wizard. For more information, see
https://help.hcl-software.com/bigfix/11.0/compliance/Compliance/SCM_Users_Guide/c_using_synchronize_custom_checks_wiz.html

*More information:*
To know more about the BigFix Compliance SCM checklists, please see the
following resources:

●       BigFix Forum:
https://forum.bigfix.com/c/release-announcements/compliance

●       BigFix Compliance SCM Checklists:
https://bigfix-wiki.hcltechsw.com/wikis/home?lang=en-us#!/wiki/BigFix%20Wiki/page/SCM%20Checklists

We hope you find this latest release of SCM content useful and effective.
Thank you!
*– The BigFix Compliance team*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20260218/85ddfdcc/attachment.html>

More information about the Besadmin-announcements mailing list