Ntiva Security Standards - Software Updates
Software Update
macOS Software Updates are a key part of any security posture. Apple only provides critical security patches to the last three versions of macOS in production (for example, macOS 26, 15, and 14). This support cadence is often referred to as "n-2".
It is recommended that all devices apply point updates and security updates automatically, while major macOS upgrades to new versions be performed as soon as business-critical productivity and security tools are confirmed compatible with the new versions.
Controls
- Automatically install app updates: false
This control refers to App Store apps - in certain enterprise environments, automatic updates may not be feasible. This setting allows the toggle for automatic app updates to remain interactive. If you would like to enforce this setting to "true" in your environment, contact Ntiva. - Automatically install macOS updates
- Automatically check for updates
- Allow background downloads for updates
- Automatically install XProtect, MRT, and Gatekeeper updates
- Automatically install critical updates
Notes
Ntiva defaults to deferring the availability of new major macOS upgrades (macOS Sequoia to macOS Tahoe, for example) for at least 30 days, allowing sufficient time for internal testing and third-party developers to update their apps and services for compatibility. Ntiva also auto-updates any App Store apps deployed by Addigy - the settings in this payload are only for App Store apps installed by end users.
Comments
0 comments
Article is closed for comments.