STIGQter STIGQter: STIG Summary: Samsung SDS EMM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 11 Sep 2020:

The Samsung SDS EMM must be configured with a periodicity for reachable events of six hours or less for the following commands to the agent: - query connectivity status; - query the current version of the MD firmware/software; - query the current version of installed mobile applications; - read audit logs kept by the MD.

DISA Rule

SV-225645r547722_rule

Vulnerability Number

V-225645

Group Title

PP-MDM-411057

Rule Version

SSDS-00-000550

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the MDM agent periodicity of reachable events to six hours or less.

On the MDM console, do the following:
1. Log in to the Samsung SDS EMM Server Admin Console using a web browser.
2. Go to Settings >> Server >> Configuration.
3. For Android: Ensure that row 27 "Inventory Collection Period for Android (hr)" shows a value of "6" or less.
4. For iOS: Ensure that row 28 "Inventory Collection Period for iOS (hr)" shows a value of "6" or less.
5. Click on the check-mark box in the top left of the "Configuration" screen to "Apply Changes".
6. Click "OK" on the "Notify" save completed window.

Check Contents

Review the MDM agent configuration settings to determine if the agent is configured with a periodicity of reachable events set to six hours or less.

This validation procedure is performed on the Samsung SDS EMM Server Admin Console.
1. Log in to the Samsung SDS EMM Server Admin Console using a web browser.
2. Go to Setting >> Server >> Configuration.
3. For Android: On row 27 verify "Inventory Collection Period for Android (hr)" is set to "6" or less.
4. For iOS: On row 28 verify "Inventory Collection Period for iOS (hr)" is set to "6" or less.

If the periodicity of reachable events is not set to "6" hours or less, this is a finding.

Vulnerability Number

V-225645

Documentable

False

Rule Version

SSDS-00-000550

Severity Override Guidance

Review the MDM agent configuration settings to determine if the agent is configured with a periodicity of reachable events set to six hours or less.

This validation procedure is performed on the Samsung SDS EMM Server Admin Console.
1. Log in to the Samsung SDS EMM Server Admin Console using a web browser.
2. Go to Setting >> Server >> Configuration.
3. For Android: On row 27 verify "Inventory Collection Period for Android (hr)" is set to "6" or less.
4. For iOS: On row 28 verify "Inventory Collection Period for iOS (hr)" is set to "6" or less.

If the periodicity of reachable events is not set to "6" hours or less, this is a finding.

Check Content Reference

M

Target Key

4216

Comments