The MDM server must monitor for unauthorized connections of mobile devices to the MDM server application.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-36021	SRG-APP-021-MDM-018-SRV	SV-47410r1_rule		Medium

Description
Mobile devices include portable storage media (e.g., USB memory sticks, external hard disk drives) and portable computing and communications devices with information storage capability (e.g., notebook/laptop computers, personal digital assistants, cellular telephones, digital cameras, audio recording devices). Unapproved or unrecognized devices connected to the network and being served by an MDM server as well can lead to malware possibly gaining control over the MDM server.

Description

Mobile devices include portable storage media (e.g., USB memory sticks, external hard disk drives) and portable computing and communications devices with information storage capability (e.g., notebook/laptop computers, personal digital assistants, cellular telephones, digital cameras, audio recording devices). Unapproved or unrecognized devices connected to the network and being served by an MDM server as well can lead to malware possibly gaining control over the MDM server.

STIG	Date
Mobile Device Manager Security Requirements Guide	2013-01-24

Details

Check Text ( C-44260r1_chk )
Review the MDM server configuration to determine whether the system is monitoring for unauthorized connections of mobile devices to the MDM server application. If the MDM server is not performing this monitoring function, this is a finding.

Fix Text (F-40551r1_fix)
Configure the MDM server to monitor for unauthorized connections of mobile devices to the MDM server application.