STIGQter: STIG Summary: Google Android 10.x Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Jan 2020:

Google Android 10 must be configured to enable audit logging.

DISA Rule

SV-108061r1_rule

Vulnerability Number

V-98957

Group Title

PP-MDF-302370

Rule Version

GOOG-10-005505

Severity

CAT II

CCI(s)

CCI-000366 - The organization implements the security configuration settings.
CCI-000370 - The organization employs automated mechanisms to centrally manage configuration settings for organization-defined information system components.
CCI-001851 - The information system off-loads audit records per organization-defined frequency onto a different system or media than the system being audited.

Weight

Fix Recommendation

Configure the Google Android 10 to enable audit logging.

On the MDM console:

1. Open the User restrictions.
2. Open user settings.
3. Select "Enable security logging".
4. Select "Enable network logging".

Check Contents

Review documentation on the Google Android device and inspect the configuration on the Google Android device to enable audit logging.

This validation procedure is performed on only on the MDM Administration Console.

On the MDM console, do the following:

1. Open the User restrictions.
2. Open user settings.
3. Select "Enable security logging".
4. Select "Enable network logging".

If the MDM console device policy is not set to enable audit logging, this is a finding.

Vulnerability Number

V-98957

Documentable

False

Rule Version

GOOG-10-005505

Severity Override Guidance

Check Content Reference

Target Key

3581

Google Android 10 must be configured to enable audit logging.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments