STIGQter: STIG Summary: Google Android 10.x Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Jan 2020:

Google Android 10 Work Profile must be configured to disable the autofill services.

DISA Rule

SV-108081r1_rule

Vulnerability Number

V-98977

Group Title

PP-MDF-991000

Rule Version

GOOG-10-010000

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure Google Android 10 Workspace to disable the autofill services.

On the MDM console, in the Android work profile restrictions, select "disallow autofill".

Check Contents

Review the Google Android 10 Workspace configuration settings to confirm that autofill services are disabled.

This procedure is performed only on the MDM Administration console.

On the MDM console, for the Workspace, in the "Android user restrictions" group, under the work profile, verify that "disallow autofill" is selected.

If on the MDM console "disallow autofill" is selected, this is a finding.

Vulnerability Number

V-98977

Documentable

False

Rule Version

GOOG-10-010000

Severity Override Guidance

Review the Google Android 10 Workspace configuration settings to confirm that autofill services are disabled.

This procedure is performed only on the MDM Administration console.

On the MDM console, for the Workspace, in the "Android user restrictions" group, under the work profile, verify that "disallow autofill" is selected.

If on the MDM console "disallow autofill" is selected, this is a finding.

Check Content Reference

M

Target Key

3581

Comments