The MDM server must be configured so the connection between the MDM server and the mobile device is initiated based on an out-bound connection request from the MDM server only.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36049 | SRG-APP-250-MDM-045-SRV | SV-47438r1_rule | Low |
| Description |
|---|
| By configuring the MDM server to connect to the mobile device on an out-bound connection, the traffic is segregated which made it more difficult for an intruder to compromise the device management session. |
| STIG | Date |
|---|---|
| Mobile Device Manager Security Requirements Guide | 2013-01-24 |
Details
| Check Text ( C-44288r1_chk ) |
|---|
| Review the MDM server configuration to ensure the system is configured so the connection between the MDM server and the mobile device is initiated based on an out-bound connection request from the MDM server only. If the MDM server's configuration is otherwise set, this is a finding. |
| Fix Text (F-40579r1_fix) |
|---|
| Configure the system so the connection between the MDM server and the mobile device is initiated based on an out-bound connection request from the MDM server only. |