The MDM server must provide designated alerts to another enterprise network management application using an IPSec, TLS, or SSL encrypted secure connection.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36288 | SRG-APP-102-MDM-250-SRV | SV-47692r1_rule | High |
| Description |
|---|
| Auditing and logging are key components of any security architecture. Centrally managing audit data provides for easier management of mobility events and is an effective facility for monitoring and the automatic generation of alert notification. The repository of audit data can facilitate troubleshooting when problems are encountered and can assist in performing root cause analysis. A repository of audit data can also be correlated in real time to identify suspicious behavior or be archived for review at a later time for research and analysis. |
| STIG | Date |
|---|---|
| Mobile Device Manager Security Requirements Guide | 2013-01-24 |
Details
| Check Text ( C-44528r3_chk ) |
|---|
| Verify the MDM server can provide designated alerts to another enterprise network management application using an IPSec, TLS, or SSL encrypted secure connection. The systems administrator of the device may demonstrate this capability using an audit management application or other means. If designated alerts cannot be transferred to another enterprise network management application using an IPSec, TLS, or SSL encrypted secure connection, this is a finding. |
| Fix Text (F-40818r2_fix) |
|---|
| Configure the MDM server to provide designated alerts to another enterprise network management application using an IPSec, TLS, or SSL encrypted secure connection. |