macos security compliance through jamf

Question

Hello Jamf Nation,

I am trying to implement the nist macos security compliance project into our organization devices, https://github.com/usnistgov/macos_security .

I have read through the wiki and it keeps saying in each page that:

We recommend working off of one of the OS branches, rather than the main branch

I am wondering how can i generate the script and configuration profiles and put them in jamf while we have different mac os versions, i.e. ventura, monterey, sonama.

I hope i am expressing my self clear. Please any guidance on that?

Thank you,

Hugonaut · Accepted Answer

@jalhathanaya

Jamf has worked with the NIST git & created this tool - https://trusted.jamf.com/docs/establishing-compliance-baselines

You can download the tool, select the compliance level regarding cis/nist/etc & then upload the scripts, configs, etc, directly to your jamf pro server from the jamf compliance editor application.

Tonyyoung · Answer

@jalhathanaya

Jamf has worked with the NIST git & created this tool - https://trusted.jamf.com/docs/establishing-compliance-baselines

You can download the tool, select the compliance level regarding cis/nist/etc & then upload the scripts, configs, etc, directly to your jamf pro server from the jamf compliance editor application.

Seconding @Hugonaut here.
The Jamf Compliance Editor tool is your best friend in this situation. You can build your projects per OS, and the application can upload everything to Jamf on your behalf. It's a great time saver.

Reply

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded