STIG ID: APPL-14-002250 | SRG: SRG-OS-000095-GPOS-00049 | Severity: medium | CCI: | Vulnerability Id: V-259533
Remote Management must be disabled.
Configure the macOS system to disable Remote Management with the following commands:
/System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Resources/kickstart -deactivate -stop
Verify the macOS system is configured to disable Remote Management with the following command:
/usr/libexec/mdmclient QuerySecurityInfo | /usr/bin/grep -c "RemoteDesktopEnabled = 0"
If the result is not "1", this is a finding.