STIGQter: STIG Summary: BlackBerry Enterprise Mobility Server 2.x Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Jul 2020:

If the BlackBerry Docs service is installed on the BlackBerry Enterprise Mobility Server (BEMS), it must be configured to enable audit logs.

DISA Rule

SV-93753r1_rule

Vulnerability Number

V-79047

Group Title

SRG-APP-000516-AS-000237

Rule Version

BEMS-00-014700

Severity

CAT II

CCI(s)

• CCI-000067 - The information system monitors remote access methods.

Weight

10

Fix Recommendation

Enable audit logging for the BlackBerry Docs service as follows:

1. In the BEMS Dashboard, under "BlackBerry Services Configuration", click "Docs".
2. Click "Audit".
3. On the "Audit Settings" tab, select the "Enable Audit Logs" check box.
4. Click "Save".

Check Contents

This requirement is not applicable if the BlackBerry Docs service is not enabled on BEMS.

Verify audit logging is enabled for the BlackBerry Docs service as follows:

1. In the BEMS Dashboard, under "BlackBerry Services Configuration", click "Docs".
2. Click "Audit".
3. On the "Audit Settings" tab, verify "Enable Audit Logs" is selected.

If audit logging is not enabled for the BlackBerry Docs service, this is a finding.

Vulnerability Number

V-79047

Documentable

False

Rule Version

BEMS-00-014700

Severity Override Guidance

This requirement is not applicable if the BlackBerry Docs service is not enabled on BEMS.

Verify audit logging is enabled for the BlackBerry Docs service as follows:

1. In the BEMS Dashboard, under "BlackBerry Services Configuration", click "Docs".
2. Click "Audit".
3. On the "Audit Settings" tab, verify "Enable Audit Logs" is selected.

If audit logging is not enabled for the BlackBerry Docs service, this is a finding.

Check Content Reference

M

Target Key

3259

Comments