The MDM server device integrity validation component must identify the affected mobile device, severity of the finding, and provide a recommended mitigation.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36189 | SRG-APP-262-MDM-180-MDIS | SV-47593r1_rule | High |
| Description |
|---|
| One of the most significant indicators of an IA attack is modification of operating system files, device drivers, or security enforcement mechanisms. An integrity verification capability or tool detects unauthorized modifications to files or permissions and either prevents further operation or reports its findings so an appropriate response can occur. |
| STIG | Date |
|---|---|
| Mobile Device Manager Security Requirements Guide | 2013-01-24 |
Details
| Check Text ( C-44429r1_chk ) |
|---|
| Review the MDM server configuration to ensure the MDM server device integrity validation component identifies the affected mobile device, severity of the finding, and provide a recommended mitigation. If this function is not configured, this is a finding. |
| Fix Text (F-40719r1_fix) |
|---|
| Configure the MDM server device integrity validation component to identify the affected mobile device, severity of the finding, and provide a recommended mitigation. |