Implementing CIS benchmark for macOS devices via Intune

Hi,

We are trying to implement the CIS controls for macOS devices in our organization. All devices will be company provided and provisioned via Automated Device Enrollment program using Apple Business Manager.

Problem here is, most of the settings are not available via Intune. MS Support says those settings can be pushed via 'Shell scripts'.

I would like to know if any of you have implemented this and to get some help on this.

Thanks

Intune

mobile device management (mdm)

martinvandiemen
Oct 02, 2023
You could use Jamf Compliance Editor to start with and make some changes to the scripts to make it work with Intune: https://trusted.jamf.com/docs/establishing-compliance-baselines

4 Replies

Jack
Copper Contributor
Aug 11, 2023
selva1709 Did you ever find an answer? I'd also be curious.
- selva1709
  Copper Contributor
  Oct 11, 2023
  Nope. We decided to leave all the settings that wasn't readily available in Intune config profiles.
- martinvandiemen
  Copper Contributor
  Oct 02, 2023
  You could use Jamf Compliance Editor to start with and make some changes to the scripts to make it work with Intune: https://trusted.jamf.com/docs/establishing-compliance-baselines
  - selva1709
    Copper Contributor
    Oct 11, 2023
    Thank you! Appreciate the help.

Forum Discussion

Implementing CIS benchmark for macOS devices via Intune

4 Replies

Resources