The MDM server must provide a logout functionality to allow the user to manually terminate the session.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36057 | SRG-APP-221-MDM-053-SRV | SV-47447r1_rule | Medium |
| Description |
|---|
| Manually terminating an application session allows users to immediately depart the physical vicinity of the system they are logged into without the risk of subsequent system users reactivating or continuing their application session. Users who log into the MDM server application must have the ability to manually terminate their application session. |
| STIG | Date |
|---|---|
| Mobile Device Manager Security Requirements Guide | 2013-01-24 |
Details
| Check Text ( C-44296r1_chk ) |
|---|
| Review the MDM server configuration to ensure sessions can be manually terminated. If a session cannot be manually terminated, this is a finding. |
| Fix Text (F-40587r1_fix) |
|---|
| Configure the MDM server to provide a logout functionality to allow the user to manually terminate the session. |