STIGQter: STIG Summary: MobileIron Core v10.x MDM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 15 Feb 2019:

The MobileIron Core v10 server must be configured with a periodicity for reachable events of six hours or less for the following commands to the agent: - query connectivity status; - query the current version of the MD firmware/software; - query the current version of the hardware model of the device; - query the current version of installed mobile applications; - read audit logs kept by the MD.

DISA Rule

SV-101917r1_rule

Vulnerability Number

V-91815

Group Title

PP-MDM-311057

Rule Version

MICR-10-000570

Severity

CAT II

CCI(s)

• CCI-002696 - The information system verifies correct operation of organization-defined security functions.

Weight

10

Fix Recommendation

Configure the MDM server with a periodicity for reachable events of "six hours or less" for the following commands to the agent:
- query connectivity status;
- query the current version of the MD firmware/software;
- query the current version of the hardware model of the device;
- query the current version of installed mobile applications;
-read audit logs kept by the MD.

Configure the "sync interval" for a device.
To configure the frequency for starting the synchronization process between a device and MobileIron Core:
1. In the Admin Portal, go to Policies & Config >> Policies.
2. Select the default sync policy.
3. Set "Sync Interval" to the number of minutes between synchronizations to be "360 minutes or less".
4. Click "Save".

Check Contents

Review the MDM server configuration settings.

Verify the server is configured with a periodicity for reachable events of "six hours or less" for the following commands to the agent:
- query connectivity status;
- query the current version of the MD firmware/software;
- query the current version of the hardware model of the device;
- query the current version of installed mobile applications;
- read audit logs kept by the MD.

Verify the sync interval for a device:
1. In the Admin Portal, go to Policies & Config >> Policies.
2. Select the default sync policy.
3. Verify that the Sync Interval is set to "360 minutes or less".

If the "Sync interval" is not set up to "360 minutes or less", this is a finding.

Vulnerability Number

V-91815

Documentable

False

Rule Version

MICR-10-000570

Severity Override Guidance

Review the MDM server configuration settings.

Verify the server is configured with a periodicity for reachable events of "six hours or less" for the following commands to the agent:
- query connectivity status;
- query the current version of the MD firmware/software;
- query the current version of the hardware model of the device;
- query the current version of installed mobile applications;
- read audit logs kept by the MD.

Verify the sync interval for a device:
1. In the Admin Portal, go to Policies & Config >> Policies.
2. Select the default sync policy.
3. Verify that the Sync Interval is set to "360 minutes or less".

If the "Sync interval" is not set up to "360 minutes or less", this is a finding.

Check Content Reference

M

Target Key

3433

Comments