CTO 07-15 Rev 1 requires administrator accounts use either CAC authentication or use complex passwords to ensure strong access control is enforced. This is best enforced by requiring the server support AD authentication.
Review the admin accounts settings on the mobile management server to verify CTO 07-15 Rev 1 required authentication is enabled for admin accounts. The check procedure will depend on the mobile management server product used.
Mark as a finding if site admin accounts do not meet the requirements.
Fix Text (F-29731r2_fix)
Configure required authentication on system administration accounts for mobile management servers.