BlackBerry devices must be protected by authenticated login procedures to unlock the device. IT Policy rule Reset to Factory Defaults on Wipe (Security policy group) must be set as required.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-19243 | WIR1400-11 | SV-21154r5_rule | ECSC-1 | High |
| Description |
|---|
| Authenticated device unlock is a key security control for the BlackBerry system to restrict access to DoD data by unauthorized individuals. |
| STIG | Date |
|---|---|
| BlackBerry Enterprise Server (version 5.x), Part 3 Security Technical Implementation Guide | 2015-07-02 |
Details
| Check Text ( C-23266r6_chk ) |
|---|
| Detailed Policy Requirements: See Check WIR1400-01 (V0003545) for detailed policy requirements. *****For this check, Set IT Policy rule "Reset to Factory Defaults on Wipe" (Security policy group) to "Yes". Check Procedures: This is a BES IT Policy check. Recommend all checks related to BES IT policies be reviewed using the procedure in Check WIR1400-01 (V0003545). *****Verify IT Policy rule "Reset to Factory Defaults on Wipe" (Security policy group) is set as required. If not set as required, this is a finding. |
| Fix Text (F-23386r4_fix) |
|---|
| Configure the IT Policy rule as specified in the "Checks" block. |