STIGQter STIGQter: STIG Summary: Honeywell Android 9.x COBO Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 14 Jan 2021:

The Honeywell Mobility Edge Android Pie device must be configured to disable trust agents. NOTE: This requirement is not applicable (NA) for specific biometric authentication factors included in the product's Common Criteria evaluation.

DISA Rule

SV-235044r626530_rule

Vulnerability Number

V-235044

Group Title

PP-MDF-301150

Rule Version

HONW-09-002300

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure Honeywell Android Pie to disable trust agents.

On the MDM console:
1. Open Lock screen restrictions section.
2. Set "Disable trust agents" to on.

Check Contents

Review device configuration settings to confirm that trust agents are disabled.

This procedure is performed on both the MDM Administration console and the Honeywell Android Pie device.

On the MDM console:
1. Open Restrictions section.
2. Set "Disable trust agents" to on.

On the Honeywell Android Pie device:
1. Open Settings.
2. Tap "Security & location".
3. Tap "Advanced".
4. Tap "Trust agents".
5. Verify that all listed trust agents are disabled and cannot be enabled.

If on the MDM console "disable trust agents" is not selected, or on the Honeywell Android Pie device a trust agent can be enabled, this is a finding.

Vulnerability Number

V-235044

Documentable

False

Rule Version

HONW-09-002300

Severity Override Guidance

Review device configuration settings to confirm that trust agents are disabled.

This procedure is performed on both the MDM Administration console and the Honeywell Android Pie device.

On the MDM console:
1. Open Restrictions section.
2. Set "Disable trust agents" to on.

On the Honeywell Android Pie device:
1. Open Settings.
2. Tap "Security & location".
3. Tap "Advanced".
4. Tap "Trust agents".
5. Verify that all listed trust agents are disabled and cannot be enabled.

If on the MDM console "disable trust agents" is not selected, or on the Honeywell Android Pie device a trust agent can be enabled, this is a finding.

Check Content Reference

M

Target Key

5275

Comments