STIGQter: STIG Summary: BlackBerry Enterprise Mobility Server 2.x Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Jul 2020:

The BlackBerry Enterprise Mobility Server (BEMS) must be configured to use Windows Authentication for the database connection.

DISA Rule

SV-93727r1_rule

Vulnerability Number

V-79021

Group Title

SRG-APP-000516-AS-000237

Rule Version

BEMS-00-013400

Severity

CAT II

CCI(s)

CCI-000764 - The information system uniquely identifies and authenticates organizational users (or processes acting on behalf of organizational users).

Weight

Fix Recommendation

Set up Windows Authentication for the database connection on the BEMS console. In the Database Information dialog box, perform the following actions:

1. In the "Host" field, type the instance name of your SQL Server.
2. In the "Database" name field, type the name for the BEMS-Core database.
3. In the "Port" field, type the port number that connects to the SQL Server.
4. Select "Windows Authentication".
5. Click "Next".

Check Contents

Verify BEMS is configured for Windows Authentication for the database connection as follows:

In the Database Information dialog box, verify "Windows Authentication" is selected.

If "Windows Authentication" is not selected for the BEMS database connection, this is a finding.

Vulnerability Number

V-79021

Documentable

False

Rule Version

BEMS-00-013400

Severity Override Guidance

Check Content Reference

Target Key

3259

The BlackBerry Enterprise Mobility Server (BEMS) must be configured to use Windows Authentication for the database connection.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments