Sections File Layout

Section files define the major sections of your security guide. Each section file provides a name and description used to organize rules in generated documentation.

mSCP 2.0 (Beta)

mSCP 2.0 is currently in Beta

mSCP 2.0 is under active development and should not be used in production. Please report any issues to the project. For production deployments, refer to mSCP 1.0.

Section files are located in config/default/sections/. Custom sections go in config/custom/sections/.

mSCP 1.0

Always Use the Correct Branch

Each macOS version has its own branch (sequoia, sonoma, ventura, etc.). Never use the main branch — it won’t work for generating content.

Section files are located in sections/. Custom sections go in custom/sections/.

---

Section File Structure

Field	Description
name	Display name of the section in the guide
description	Description shown in the guide for context

---

Example Section File

name: "iCloud"
description: |
  This section contains the configuration and enforcement of iCloud and the Apple ID service settings.

  NOTE: The check/fix commands outlined in this section _MUST_ be run by a user with elevated privileges.

---

Available Sections

mSCP 2.0 (Beta)

mSCP 2.0 is currently in Beta

mSCP 2.0 is under active development and should not be used in production. Please report any issues to the project. For production deployments, refer to mSCP 1.0.

Section	Description
auditing.yaml	OpenBSM audit configuration
authentication.yaml	Authentication and smartcard settings
excluded.yaml	Excluded rules
icloud.yaml	iCloud and Apple ID settings
inherent.yaml	Inherent macOS security features
manual.yaml	Manual verification rules
notapplicable.yaml	Rules not applicable to this platform
operatingsystem.yaml	General operating system settings
passwordpolicy.yaml	Password policy settings
permanent.yaml	Permanently enabled security features
srg.yaml	Security Requirements Guide mappings
supplemental.yaml	Additional supporting information
systemsettings.yaml	System Settings configuration

mSCP 1.0

Always Use the Correct Branch

Each macOS version has its own branch (sequoia, sonoma, ventura, etc.). Never use the main branch — it won’t work for generating content.

Section	Description
auditing.yaml	OpenBSM audit configuration
authentication.yaml	Authentication and smartcard settings
icloud.yaml	iCloud and Apple ID settings
inherent.yaml	Inherent macOS security features
macos.yaml	General macOS settings
not_applicable.yaml	Rules not applicable to this platform
passwordpolicy.yaml	Password policy settings
permanent.yaml	Permanently enabled security features
srg.yaml	Security Requirements Guide mappings
supplemental.yaml	Additional supporting information
systemsettings.yaml	System Settings configuration

Tip

Section filenames correspond to rule category directories. For example, rules in rules/auth/ appear under the authentication section.

---

Next Steps

• Rule File Layout — Understand rule YAML structure
• Directory Layout — Repository structure overview