The Motorola Android Pie must be configured to enable audit logging.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-230128	MOTO-09-005505	SV-230128r569707_rule		Medium

Description
Audit logs enable monitoring of security-relevant events and subsequent forensics when breaches occur. For the logs to be useful, Administrators must have the ability to view the audit logs. SFR ID: FMT_SMF_EXT.1.1 #32

STIG	Date
Motorola Android 9.x COBO Security Technical Implementation Guide	2020-10-16

Details

Check Text ( C-32443r538380_chk )
Review documentation on the Motorola Android device and inspect the configuration on the Motorola Android device to enable audit logging. This validation procedure is performed on only on the MDM Administration Console. On the MDM console: 1. Open the Restrictions settings. 2. Open User settings. 3. Select "Enable security logging". 4. Select "Enable network logging". If the MDM console device policy is not set to enable audit logging, this is a finding.

Check Text ( C-32443r538380_chk )

Review documentation on the Motorola Android device and inspect the configuration on the Motorola Android device to enable audit logging.

This validation procedure is performed on only on the MDM Administration Console.

On the MDM console:
1. Open the Restrictions settings.
2. Open User settings.
3. Select "Enable security logging".
4. Select "Enable network logging".

If the MDM console device policy is not set to enable audit logging, this is a finding.

Fix Text (F-32421r538381_fix)
Configure the Motorola Android Pie to enable audit logging. On the MDM console: 1. Open the Restrictions settings. 2. Open User settings. 3. Select "Enable security logging". 4. Select "Enable network logging".