Page Comparison

AirDrop MUST be disabled to prevent file transfers to or from unauthorized devices. AirDrop allows users to share and receive files from other nearby Apple devices.

AppleID and iCloud are not supported to be directly logged into on campus owned macOS computers. They are not approved for storage of campus resources, documents, or backing up of Desktop/Documents on campus owned devices.

Handoff allows you to continue working on a document or project when the user switches from one Apple device to another. Disabling Handoff prevents data transfers to unauthorized devices. This also requires the device being logged into AppleID, which is not supported by the campus.

macOS allows users to save passwords and use the Password Autofill feature in Safari and compatible apps. To protect against malicious users gaining access to the system, this feature MUST be disabled to prevent users from being prompted to save passwords in applications.

The default behavior of macOS is to allow users to share a password over Airdrop between other macOS and iOS devices. This feature MUST be disabled to prevent passwords from being shared.

Bluetooth Sharing allows users to wirelessly transmit files between the macOS and Bluetooth-enabled devices, including personally owned cellphones and tablets. A malicious user might introduce viruses or malware onto the system or extract sensitive files via Bluetooth Sharing. When Bluetooth Sharing is disabled, this risk is mitigated.

The information system MUST be configured to provide only essential capabilities. Disabling Location Services helps prevent the unauthorized connection of devices, unauthorized transfer of information, and unauthorized tunneling.