UCF STIG Viewer Logo

BlackBerry 10 OS maximum number of consecutive unsuccessful unlock attempts must be configurable within a range from 5 to 10.


Finding ID Version Rule ID IA Controls Severity
V-40716 BB10-00-000350 SV-52716r1_rule Medium
The recommended setting for the maximum number of consecutive unsuccessful unlock attempts is 10. In some environments, a lower number may be needed to provide greater protection of sensitive information. Allowing for configuration enables the local command to enforce greater protection when it is deemed necessary. If the limit is not configurable, then it is permissible for a site to procure and deploy devices that enforce the limit specified by the organization, so long as that limit does not exceed 10.
BlackBerry 10 OS Security Technical Implementation Guide 2014-08-27


Check Text ( C-47044r1_chk )
From either the Work Space or Personal Space, navigate to "Settings -> BlackBerry Balance. Under "Work Password", ensure the maximum value in the "Password attempt limit" drop down box is not greater than 10 (or organization defined number). Otherwise, this is a finding.
Fix Text (F-45641r1_fix)
On BlackBerry Device Service, set "Maximum Password Attempts" IT Policy rule to 10 (or the organization defined value).