Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The MDM server must automatically audit administrator account termination.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36337 | SRG-APP-029-MDM-278-SRV | SV-47741r1_rule | Medium |
| Description |
|---|
| Accounts are utilized for identifying individual application users or for identifying the application processes themselves. When accounts are deleted, a myriad of side effects could occur. The MDM server must audit and notify, as required, to provide a forensic audit trail. |
| STIG | Date |
|---|---|
| Mobile Device Manager Security Requirements Guide | 2013-01-24 |
Details
| Check Text ( C-44579r1_chk ) |
|---|
| Review the MDM server configuration to determine whether the MDM server automatically audits administrator account termination. If the MDM server does not automatically audit administrator account termination, this is a finding. |
| Fix Text (F-40869r1_fix) |
|---|
| Configure the MDM server to automatically audit administrator account termination. |