The UEM Agent must perform the following functions: -enroll in management -configure whether users can unenroll from management -configure periodicity of reachability events.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-234246 | SRG-APP-000516-UEM-100010 | SV-234246r617392_rule | Medium |
| Description |
|---|
| Access control of mobile devices to DoD sensitive information or access to DoD networks must be controlled so that DoD data will not be compromised. The primary method of access control of mobile devices is via enrollment of authorized mobile devices on the UEM server. Therefore, the UEM server must have the capability to enforce a policy for this control. Satisfies: FMT_SMF_EXT.4.2 |
| STIG | Date |
|---|---|
| Unified Endpoint Management Agent Security Requirements Guide | 2020-12-14 |
Details
| Check Text ( C-37431r617392_chk ) |
|---|
| Verify the UEM Agent performs the following functions: -Enroll in management -Configure whether users can unenroll from management -Configure periodicity of reachability events. If the UEM Agent does not perform the following functions: -Enroll in management -Configure whether users can unenroll from management -Configure periodicity of reachability event this is a finding. |
| Fix Text (F-37396r612045_fix) |
|---|
| Configure the UEM Agent to perform the following functions: -Enroll in management -Configure whether users can unenroll from management -Configure periodicity of reachability events. |