Jamf Nation Community

Surprisingly I couldn't find what I'm asking for in there !!

What are you trying to do? How to set those settings? Do you have the CIS Benchmark downloaded? It has a check and fix in the document, not to mention the way to set those are in the macOS Security Compliance Project. 

download the zip based on your macOS (Monterey/Ventura), extract and find the pdf in CIS macOS Benchmark folder 

@boberito @YanW  i'm trying to find a remediation for the points I mentioned, some of them they are not there at all ! 

- Alert when the log capacity is over 75%

- Alert user & admin about audit logging failures

- Shut down the system if audit logging stopped

And for others i'm getting error when deploying the fix mentioned in the PDF.

If you look at the GitHub project. They are there. All of those would be under rules -> audit

Those 3 things are also not part of the CIS macOS Benchmark for Monterey (1.1.0 or 2.0) or even Ventura. So that's why you won't find them in the CIS PDF. They are in the project however.  

Here's an old video on how to use the project - https://www.youtube.com/watch?v=mpEBEelSWlI&t=3s

To add on to what others have suggested, JAMF is working on their own NIST project called JAMF Compliance Editor. Reach out to your JAMF Rep for more info. JAMF had a Open Hours call about this very topic on 11.7 and is planning another call on 12.7 but that is still a tentative date.

Establishing Compliance Baselines (jamf.com)

MacOS Compliance Open Hours - Jamf Nation Community - 276931

Thanks @YanW @boberito @AJPinto  .. truly appreciated.