The MDIS agent must not be capable of being disabled or controlled by the user or other mobile device application.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-32759 | WIR-WMS-MDIS-12 | SV-43105r1_rule | ECTP-1 | High |
| Description |
|---|
| The integrity of the device security baseline would be compromised if the MDIS agent could be disabled by the user or an application. |
| STIG | Date |
|---|---|
| Mobile Device Integrity Scanning (MDIS) Server Security Technical Implementation Guide (STIG) | 2013-05-08 |
Details
| Check Text ( C-41092r4_chk ) |
|---|
| Verify the MDIS agent is not capable of being disabled or controlled by the user or other mobile device application. Talk to the site system administrator and have them show this capability exists for the MDIS agent. Also, review MDIS product documentation. Mark as a finding if the MDIS agent does not have required features. |
| Fix Text (F-36641r4_fix) |
|---|
| Use an MDIS product that is not capable of being disabled or controlled by the user or other mobile device application. |