macOS Transition - Restrictions

Owned by Matt Wilson
Last updated: May 09, 2023
2 min read

On this page is a list of the restrictions that are in place as part of the new security baseline on macOS for Faculty/Staff machines.

AirDrop MUST be disabled to prevent file transfers to or from unauthorized devices. AirDrop allows users to share and receive files from other nearby Apple devices.

AppleID and iCloud are not supported to be directly logged into on campus owned macOS computers. They are not approved for storage of campus resources that do not fall under Category 1 in https://fredonia-edu.atlassian.net/wiki/spaces/AN/pages/1137442951 , or backing up of Desktop/Documents on campus owned devices.

Most functions of iCloud can be utilized through https://www.icloud.com

Handoff allows you to continue working on a document or project when the user switches from one Apple device to another. Disabling Handoff prevents data transfers to unauthorized devices. This also requires the device being logged into AppleID, which is not supported by the campus.

The default behavior of macOS is to allow users to share a password over Airdrop between other macOS and iOS devices. This feature MUST be disabled to prevent passwords from being shared.

Bluetooth Sharing allows users to wirelessly transmit files between the macOS and Bluetooth-enabled devices, including personally owned cellphones and tablets. A malicious user might introduce viruses or malware onto the system or extract sensitive files via Bluetooth Sharing. When Bluetooth Sharing is disabled, this risk is mitigated.