STIGQter STIGQter: STIG Summary: Samsung Android (with Knox 2.x) STIG Version: 1 Release: 4 Benchmark Date: 22 Apr 2016: The Samsung Knox for Android platform must be configured to implement the management setting: disable Insecure VPN Connections.

DISA Rule

SV-70319r1_rule

Vulnerability Number

V-56065

Group Title

PP-MDF-991000

Rule Version

KNOX-35-020400

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the operating system to authenticate devices before establishing remote connections.

On the MDM Console, select the "Disable Insecure VPN Connections" check box in the "Android Restrictions" rule.

Check Contents

This validation procedure is performed on the MDM Administrative Console.

Check whether the appropriate setting is configured on the MDM Administration Console:
1. Ask the MDM administrator to display the "Disable Insecure VPN Connections" check box in the "Android Restrictions" rule.
2. Verify the check box is selected.

If the "Disable Insecure VPN Connections" check box is not selected, this is a finding.

Vulnerability Number

V-56065

Documentable

False

Rule Version

KNOX-35-020400

Severity Override Guidance

This validation procedure is performed on the MDM Administrative Console.

Check whether the appropriate setting is configured on the MDM Administration Console:
1. Ask the MDM administrator to display the "Disable Insecure VPN Connections" check box in the "Android Restrictions" rule.
2. Verify the check box is selected.

If the "Disable Insecure VPN Connections" check box is not selected, this is a finding.

Check Content Reference

M

Target Key

2699

Comments