Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
IT Policy rule “Password Required for Application Download” (Security policy group) must be set as required.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-19731 | WIR1450-16 | SV-21872r3_rule | ECSC-1 | Low |
| Description |
|---|
| Malware or unauthorized applications could be downloaded inadvertently by user if control not set. |
| STIG | Date |
|---|---|
| BlackBerry Enterprise Server (version 5.x), Part 3 Security Technical Implementation Guide | 2014-08-25 |
Details
| Check Text ( C-24168r3_chk ) |
|---|
| Detailed Policy Requirements: Users must be required to enter their BlackBerry password prior to the download of applications. *****For this check, set IT Policy rule “Password Required for Application Download” (Security policy group) to “Yes". Check Procedures: This is a BES IT Policy check. Recommend all checks related to BES IT policies be reviewed using the procedure in Check WIR1400-01 (V0003545). *****Verify IT Policy rule “Password Required for Application Download” (Security policy group) is set as required. Mark as a finding if not set as required. |
| Fix Text (F-23386r4_fix) |
|---|
| Configure the IT Policy rule as specified in the "Checks" block. |