The MDM server must provide audit record generation capability for the auditable events defined at the organizational level for defined information system components.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36317 | SRG-APP-089-MDM-267-SRV | SV-47721r1_rule | Low |
| Description |
|---|
| The list of audited events is the set of events for which audits are to be generated. This set of events is typically a subset of the list of all events for which the system is capable of generating audit records (i.e., auditable events) for example, timestamps, source and destination addresses, user/process identifiers, event descriptions, success/fail indications, file names involved, and access control or flow control rules invoked. |
| STIG | Date |
|---|---|
| Mobile Device Manager Security Requirements Guide | 2013-01-24 |
Details
| Check Text ( C-44558r1_chk ) |
|---|
| Review MDM server documentation and configuration settings to determine whether the MDM server audit feature provides audit record generation capability for the auditable events defined at the organizational level for the organization defined information system components. If the MDM server does not provide audit record generation capability for the auditable events defined at the organizational level for the organization defined information system components, this is a finding. |
| Fix Text (F-40848r1_fix) |
|---|
| Configure the MDM server to provide audit record generation capability for the auditable events defined at the organizational level for the organization defined information system components. |