|Finding ID||Version||Rule ID||IA Controls||Severity|
|DoD data could be compromised if transmitted data is not secured with a compliant VPN.|
|Apple iOS6 Security Technical Implementation Guide||2014-10-07|
|Check Text ( C-35554r4_chk )|
| This check is not applicable if the installed VPN client is not used for remote access to DoD networks. Note: Use of a VPN to access DoD email on a mobile device is not required. |
Interview the IAO and/or site wireless device administrator and inspect a sample (3-4) of site devices. Review VPN client specification sheets and verify the VPN client support CAC authentication. Mark as a finding if the VPN does not support CAC authentication or the client is not configured to require CAC authentication.
|Fix Text (F-37265r4_fix)|
|Install a VPN client that supports CAC authentication and configure the client to require CAC authentication.|