Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-48561 | BBDS-00-000200 | SV-61437r1_rule | Medium |
Description |
---|
The overall security posture of the BlackBerry system is dependent on strict configuration management controls, including ensuring only authorized BlackBerry devices are being used and authorized devices are provisioned as required. When these configurations are not set as required, users may have the capability to activate unauthorized BlackBerry devices. |
STIG | Date |
---|---|
BlackBerry Enterprise Service v10.2.x BlackBerry Device Service STIG | 2015-03-13 |
Check Text ( C-50889r1_chk ) |
---|
Verify the BlackBerry Administration Service (BAS) has been configured to permit users to activate new BlackBerry devices only. Otherwise, this is a finding. |
Fix Text (F-52169r1_fix) |
---|
BlackBerry Administration Service is configured to permit users to activate new BlackBerry devices only via BlackBerry Web Desktop Manager. Log into the BAS as an administrator with Security Administrator role. Under "Organization Administration", expand "Organization". - Click "My organization". - Click the "BlackBerry Web Desktop Manager Information" tab. - On the "Allowed user operations", verify "Allow user wireline activation:" is set to "Activate unused PIN only". |