The MDM server, upon successful logon, must display to the administrator the date and time of the last logon (access).

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-36013	SRG-APP-075-MDM-008-SRV	SV-47402r1_rule		Low

Description
MDM server users need to be very vigilant in maintaining situational awareness of activity that occurs regarding their accounts. Providing them with information regarding the date and time of their last successful login allows them to determine if any unauthorized activity has occurred, gives them an opportunity to notify appropriate security personnel if necessary, and ensure other systems have not been affected. If administrators are not aware of potential attacks against a system, they cannot perform due diligence to ensure access is not granted to unauthorized users.

Description

MDM server users need to be very vigilant in maintaining situational awareness of activity that occurs regarding their accounts. Providing them with information regarding the date and time of their last successful login allows them to determine if any unauthorized activity has occurred, gives them an opportunity to notify appropriate security personnel if necessary, and ensure other systems have not been affected. If administrators are not aware of potential attacks against a system, they cannot perform due diligence to ensure access is not granted to unauthorized users.

STIG	Date
Mobile Device Manager Security Requirements Guide	2013-01-24

Details

Check Text ( C-44252r1_chk )
Review the MDM server configuration to determine whether the administrator is informed of the date and time of the last logon. If the administrator is not informed of this information, this is a finding.

Fix Text (F-40543r1_fix)
Configure the MDM server to display, upon logon, to the administrator the date and time of the last logon.