Apple iOS/iPadOS 18 must disable iPhone Mirroring on Mac.

STIG ID: AIOS-18-015800  |  SRG: PP-MDF-993300 |  Severity: medium |  CCI: CCI-000366 |  Vulnerability Id: V-272171

Vulnerability Discussion

iPhone Mirroring allows managed data on a DOD iPhone to be manipulated by an unmanaged Mac. In certain situations, this may lead to the exposure of sensitive DOD data like notifications, messages, photos, etc.
SFRID: FMT_MOF_EXT.1.2 #47

Check

This check procedure is performed on the device management tool and the iPhone.

Note: If an organization has multiple configuration profiles, the check procedure must be performed on the relevant configuration profiles applicable to the scope of the review.

In the iOS management tool, verify "Allow iPhone Mirroring (supervised only)" is unchecked.

On the iPhone:
1. Open the Settings app.
2. Tap "General".
3. Tap "Airplay and Continuity".
4. Tap "iPhone Mirroring".
4. Verify no Macs are listed, or the option is grayed out.

If "Allow iPhone Mirroring" is not disabled in the management tool or iPhone Mirroring is available for Macs on the iPhone, this is a finding.

Fix

Install a configuration profile to disable iPhone Mirroring on Mac. This is a supervised-only control.
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.