Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-258334 | AIOS-17-009800 | SV-258334r927685_rule | Medium |
Description |
---|
Multiuser mode allows multiple users to share a mobile device by providing a degree of separation between user data. To date, no mobile device with multiuser mode features meets DOD requirements for access control, data separation, and nonrepudiation for user accounts. In addition, the MDFPP does not include design requirements for multiuser account services. Disabling multiuser mode mitigates the risk of not meeting DOD multiuser account security policies. SFR ID: FMT_SMF_EXT.1.1 #47a |
STIG | Date |
---|---|
Apple iOS/iPadOS 17 Security Technical Implementation Guide | 2023-10-10 |
Check Text ( C-62075r927683_chk ) |
---|
Verify multiuser mode (shared iPad) is disabled in the MDM console for iPadOS devices. This requirement is not applicable for iOS devices. If multiuser mode is not disabled in the MDM console for iPadOS devices, this is a finding. |
Fix Text (F-61999r927684_fix) |
---|
Disable multiuser mode (shared iPad) in the MDM console for iPadOS devices. |