The LG Android 5.0 platform must disable Android Smart Lock.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-58847 | LGA5-20-002900 | SV-73277r1_rule | Medium |
| Description |
|---|
| Android Smart Lock provides the capability for the user to unlock the device using non-approved methods, including having a "trusted" device nearby, trusted face viewing the screen, or by swiping the device with a specific pattern. Alternate device authentication methods to using the device unlock password have not been approved for use in the DoD. SFR ID: FMT_MOF.1.1(2) #13 |
| STIG | Date |
|---|---|
| LG Android 5.x Interim Security Configuration Guide | 2015-09-22 |
Details
| Check Text ( C-59693r3_chk ) |
|---|
| This validation procedure is performed on both the MDM Administration Console and the LG Android device. Check whether the appropriate setting is configured on the MDM Administration Console: 1. Ask the MDM administrator to display the "Allow Smart Lock" setting in the MDM console . 2. Verify "Allow Smart Lock" is disabled. On the LG Android device : 1. Unlock the device. 2. Open the device settings. 3. Navigate to the Smart Lock setting: Settings > Lock Screen > click "Smart Lock" 4. Verify Smart Lock is disabled and the following message is displayed: (Disabled by administrator) If the Smart Lock setting is not disabled, or if the user is able to enable Smart Lock, this is a finding. |
| Fix Text (F-64231r2_fix) |
|---|
| Configure the mobile device to disable the Smart Lock setting. On the MDM Administration Console, disable the "Allow Smart Lock" setting. |