The MDM server must record an event in the server audit log if a success acknowledgement is not received from the MDM server agent after a device security policy has been pushed to a managed mobile device.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-36171	SRG-APP-061-MDM-167-MDM	SV-47575r1_rule		Medium

Description
When the MDM server transfers policies, there is the chance an error or problem with the data transfer may occur. The MDM server needs to track failures and any problems encountered when performing data transfers, so problems can be identified and remediated. Since policies are the enforcement mechanism that so many of the mobile device operating system security controls depend upon, this tracking is critical to remediate the situation quickly.

Description

When the MDM server transfers policies, there is the chance an error or problem with the data transfer may occur. The MDM server needs to track failures and any problems encountered when performing data transfers, so problems can be identified and remediated. Since policies are the enforcement mechanism that so many of the mobile device operating system security controls depend upon, this tracking is critical to remediate the situation quickly.

STIG	Date
Mobile Device Manager Security Requirements Guide	2013-01-24

Details

Check Text ( C-44411r1_chk )
Review the MDM server configuration to ensure the MDM server records an event in the server audit log if a success acknowledgement is not received from the MDM server agent after a device security policy has been pushed to a managed mobile device. If this function is not configured, this is a finding.

Fix Text (F-40701r2_fix)
Configure the MDM server to record an event in the server audit log if a success acknowledgement is not received from the MDM server agent after a device security policy has been pushed to a managed mobile device.