-
Notifications
You must be signed in to change notification settings - Fork 22
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
b906241
commit 2011249
Showing
4 changed files
with
16,897 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,3 @@ | ||
| # Disclaimer | ||
|
|
||
| Certain commercial equipment, instruments, or materials are identified in this repository in order to specify the development procedure adequately. Such identification is not intended to imply recommendation or endorsement by the National Institute of Standards and Technology, nor is it intended to imply that the materials or equipment identified are necessarily the best available for the purpose. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,11 @@ | ||
| # License | ||
|
|
||
| This data was developed by employees of the National Institute of Standards and Technology (NIST), an agency of the Federal Government. Pursuant to title 15 United States Code Section 105, works of NIST employees are not subject to copyright protection in the United States and are considered to be in the public domain. | ||
|
|
||
| The data is provided by NIST as a public service and is expressly provided “AS IS.” NIST MAKES NO WARRANTY OF ANY KIND, EXPRESS, IMPLIED OR STATUTORY, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT AND DATA ACCURACY. NIST does not warrant or make any representations regarding the use of the data or the results thereof, including but not limited to the correctness, accuracy, reliability or usefulness of the data. NIST SHALL NOT BE LIABLE AND YOU HEREBY RELEASE NIST FROM LIABILITY FOR ANY INDIRECT, CONSEQUENTIAL, SPECIAL, OR INCIDENTAL DAMAGES (INCLUDING DAMAGES FOR LOSS OF BUSINESS PROFITS, BUSINESS INTERRUPTION, LOSS OF BUSINESS INFORMATION, AND THE LIKE), WHETHER ARISING IN TORT, CONTRACT, OR OTHERWISE, ARISING FROM OR RELATING TO THE DATA (OR THE USE OF OR INABILITY TO USE THIS DATA), EVEN IF NIST HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. | ||
|
|
||
| To the extent that NIST may hold copyright in countries other than the United States, you are hereby granted the non-exclusive irrevocable and unconditional right to print, publish, prepare derivative works and distribute the NIST data, in any medium, or authorize others to do so on your behalf, on a royalty-free basis throughout the World. | ||
|
|
||
| You may improve, modify, and create derivative works of the data or any portion of the data, and you may copy and distribute such modifications or works. Modified works should carry a notice stating that you changed the data and should note the date and nature of any such change. Please explicitly acknowledge the National Institute of Standards and Technology as the source of the data. | ||
|
|
||
| Permission to use this data is contingent upon your acceptance of the terms of this agreement and upon your providing appropriate acknowledgments of NIST’s creation of the data. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,30 @@ | ||
| ## FAQ | ||
| **What version of OS X is supported by this script?** | ||
| Only OS X 10.10 (Yosemite) is supported. | ||
|
|
||
| **How do I enable SSH on a host system after applying a configuration profile?** | ||
| The configuration uses multiple methods to prevent SSH access. Using an administrative account, do the following on the host system to re-enable remote login: | ||
|
|
||
| 1. Open System Preferences -> Sharing. Enable "Remote Login", and add the desired users to the "Allowed Access for" box. | ||
| 2. In System Preferences -> Security & Privacy, open the "Firewall" tab. Open "Firewall Options" and uncheck "Block all incoming connections". This will allow SSH through the Application Firewall. | ||
| 3. Open Terminal and run the command `sudo vi /etc/sshd_config` to edit the config file. Comment out or delete the `Deny Users *` line at the bottom. This line should be `#DenyUsers *` if it is commented out. Save and close the file. | ||
| 4. Again in Terminal, run the command `sudo vi /etc/pf.anchors/sam_pf_anchors` to edit pf firewall rules. Comment out the line `block in proto { tcp udp } to any port 22` so it becomes `#block in proto { tcp udp } to any port 22`. Save and close the file. | ||
| 5. Restart the system. | ||
|
|
||
| **How do I resync the keychain login password with the user login password?** | ||
| A Keychain sync issue can occur after an account password expires and is reset, and can be fixed with one of the following: | ||
|
|
||
| 1st Solution: | ||
|
|
||
| 1. In the Keychain Access program, make sure the login keychain is selected, and click the lock at the top left. | ||
| 2. Unlock the keychain, and enter the updated password. | ||
| 3. A window should appear asking to enter the current password and to create a new password/verify new password. | ||
| 4. Enter the old password in the first field, and your updated password in the new password/verify password fields. | ||
|
|
||
|
|
||
| 2nd Solution: | ||
|
|
||
| 1. Open Keychain Access, and go to “Preferences". | ||
| 2. Under the "First Aid" tab, check off "Synchronize login keychain password with account” | ||
| 3. Close the Preferences and open “Keychain First Aid” under the Keychain Access menu. | ||
| 4. Click the “Repair” option on the right, and enter your updated password. |
Oops, something went wrong.