The macOS system must disable Airplay Receiver.

STIG ID: APPL-14-002080  |  SRG: SRG-OS-000095-GPOS-00049 |  Severity: medium |  CCI: CCI-000381,CCI-001443 |  Vulnerability Id: V-259516 | 

Vulnerability Discussion

Airplay Receiver allows users to send content from another Apple device to be displayed on the screen as it is being played from another device.

Support for Airplay Receiver is nonessential and must be disabled.

The information system must be configured to provide only essential capabilities.

Satisfies: SRG-OS-000095-GPOS-00049,SRG-OS-000300-GPOS-00118

Check

Verify the macOS system is configured to disable Airplay Receiver with the following command:

/usr/bin/osascript -l JavaScript << EOS
$.NSUserDefaults.alloc.initWithSuiteName('com.apple.applicationaccess')\
.objectForKey('allowAirPlayIncomingRequests').js
EOS

If the result is not "false", this is a finding.

Fix

Configure the macOS system to disable Airplay Receiver by installing the "com.apple.applicationaccess" configuration profile.
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.