STIGQter STIGQter: STIG Summary: BlackBerry UEM Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:

The firewall protecting the BlackBerry UEM server platform must be configured to restrict all network traffic to and from all addresses with the exception of ports, protocols, and IP address ranges required to support BlackBerry UEM server and platform functions.

DISA Rule

SV-224383r604136_rule

Vulnerability Number

V-224383

Group Title

PP-MDM-431005

Rule Version

BUEM-00-200020

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the firewall on the BlackBerry UEM server to only permit ports, protocols, and IP address ranges necessary for operation.

Check Contents

Ask the BlackBerry UEM administrator for a list of ports, protocols, and IP address ranges necessary to support BlackBerry UEM server and platform functionality. A list can usually be found in the STIG Supplemental document or BlackBerry UEM product documentation.

Compare the list against the configuration of the firewall and identify discrepancies.

If the host-based firewall is not configured to support only those ports, protocols, and IP address ranges necessary for operation, this is a finding.

Vulnerability Number

V-224383

Documentable

False

Rule Version

BUEM-00-200020

Severity Override Guidance

Ask the BlackBerry UEM administrator for a list of ports, protocols, and IP address ranges necessary to support BlackBerry UEM server and platform functionality. A list can usually be found in the STIG Supplemental document or BlackBerry UEM product documentation.

Compare the list against the configuration of the firewall and identify discrepancies.

If the host-based firewall is not configured to support only those ports, protocols, and IP address ranges necessary for operation, this is a finding.

Check Content Reference

M

Target Key

4134

Comments