Skip to content

seb1k/intune-macos-password-policy

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
 
 
 
 

Repository files navigation

Intune macOS Password Policy Template

A ready-to-use Apple configuration profile (.mobileconfig) to deploy a password policy on macOS devices managed by Microsoft Intune.

This profile is intended to help administrators meet common security recommendations such as Microsoft Secure Score, CIS benchmarks, and internal security policies.

Validated policies

The template validates the following macOS secure score settings:

  • Set account lockout threshold to 5 or lower in macOS
  • Set minimum password length to 15 or more characters in macOS
  • Set 'Maximum password age' to '90 or fewer days, but not 0' in macOS
  • Set 'Enforce password history' to '24 or more password(s)' in macOS

Requirements

  • Microsoft Intune
  • macOS devices enrolled in Intune
  • Administrator permissions to create Configuration Profiles

Add template : go to Intune > Devices > macOS | Configuration

Link : macOS | Configuration

  • Create new Policy
image
  • Custom Template
image

Basics

  • Name : Recommanded security rules (password policy template)

Configuration Settings

  • Custom configuration profile name : com.apple.mobiledevice.passwordpolicy.mobileconfig
  • Configuration profile file : Upload the com.apple.mobiledevice.passwordpolicy file from this repository.

Assignments

  • All devices

Review + create

image

Testing

It is recommended to:

  • Test on a small pilot group first.
  • Verify deployment in Intune.
  • Confirm the password policy is applied on macOS.
  • Ensure users are informed if a password change is required.

Notes

This template is based on Apple’s macOS passcode configuration profile documentation: https://developer.apple.com/documentation/devicemanagement/passcode

Microsoft Documentation

Disclaimer

This project is provided as-is without warranty.

Always validate configuration profiles in a test environment before deploying them to production devices.

About

Apple macOS password policy configuration profile for Microsoft Intune.

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

 
 
 

Contributors