UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The operating system must notify the user of organization defined security-related changes to the users account that occur during the organization defined time period.


Overview

Finding ID Version Rule ID IA Controls Severity
V-33246 SRG-OS-000235-NA SV-43664r1_rule Medium
Description
Some organizations may define certain security events as events requiring user notification. An organization may define an event such as a password change to a user's account occurring outside of normal business hours as a security related event that requires the user be notified. In those instances where organizations define such events, the operating system must notify the affected user or users. Rationale for non-applicability: Resource constraints on mobile devices preclude implementation of all IA functions. The applicability of this control may be reconsidered at a future date if subsequent generations of mobile devices are better able to support this control and the applications and data typically on the device justify its implementation.
STIG Date
Mobile Operating System Security Requirements Guide 2013-07-03

Details

Check Text ( C-41542r1_chk )
This requirement is NA for the Mobile OS SRG.
Fix Text (F-37176r1_fix)
The requirement is NA. No fix is required.