The MDM server, when used for non-local maintenance sessions, must protect those sessions through the use of a strong authenticator tightly bound to the user.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36366 | SRG-APP-183-MDM-297-SRV | SV-47770r1_rule | Medium |
| Description |
|---|
| Non-local maintenance and diagnostic activities are those activities conducted by individuals communicating through a network, either an external network (e.g., the Internet) or an internal network. |
| STIG | Date |
|---|---|
| Mobile Device Manager Security Requirements Guide | 2013-01-24 |
Details
| Check Text ( C-44608r1_chk ) |
|---|
| Review the MDM server configuration to determine whether the system is configured to protect non-local maintenance sessions through the use of a strong authenticator tightly bound to the user. If the system is not configured to protect non-local maintenance sessions through the use of a strong authenticator tightly bound to the user, this is a finding. |
| Fix Text (F-40898r1_fix) |
|---|
| Configure the MDM server to protect non-local maintenance sessions through the use of a strong authenticator tightly bound to the user. |