STIGQter: STIG Summary: Google Android 11 COPE Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 11 Sept 2020:

Google Android 11 must be configured to enable audit logging.

DISA Rule

SV-228624r505871_rule

Vulnerability Number

V-228624

Group Title

PP-MDF-302370

Rule Version

GOOG-11-005505

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.
• CCI-000370 - The organization employs automated mechanisms to centrally manage configuration settings for organization-defined information system components.
• CCI-001851 - The information system off-loads audit records per organization-defined frequency onto a different system or media than the system being audited.

Weight

10

Fix Recommendation

Configure the Google Android 11 device to enable audit logging.

On the EMM console:
1. Open "Device owner management" section.
2. Toggle "Enable security logging" to On.

Check Contents

Review documentation on the Google Android device and inspect the configuration on the Google Android device to enable audit logging.

This validation procedure is performed on only on the EMM Administration Console.

On the EMM console, do the following:
1. Open "Device owner management" section.
2. Verify that "Enable security logging" is toggled to On.

If the EMM console device policy is not set to enable audit logging, this is a finding.

Vulnerability Number

V-228624

Documentable

False

Rule Version

GOOG-11-005505

Severity Override Guidance

Review documentation on the Google Android device and inspect the configuration on the Google Android device to enable audit logging.

This validation procedure is performed on only on the EMM Administration Console.

On the EMM console, do the following:
1. Open "Device owner management" section.
2. Verify that "Enable security logging" is toggled to On.

If the EMM console device policy is not set to enable audit logging, this is a finding.

Check Content Reference

M

Target Key

4229

Comments