STIGQter STIGQter: STIG Summary: Samsung Android OS 8 with Knox 3.x COPE Use Case Security Technical Implementation Guide Version: 1 Release: 4 Benchmark Date: 25 Oct 2019: Samsung Android 8 with Knox must be configured to disable multi-user modes.

DISA Rule

SV-95049r1_rule

Vulnerability Number

V-80345

Group Title

PP-MDF-301280

Rule Version

KNOX-08-013000

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Note: This requirement is only applicable for tablet devices.

Configure the Samsung Android 8 with Knox to disable multi-user modes.

On the MDM console, deselect the "Allow multi-user mode" setting in the "Android MultiUser" rule.

Check Contents

Note: This requirement is only applicable for tablet devices.

Review documentation on Samsung Android 8 with Knox and inspect the configuration on Samsung Android 8 with Knox to disable multi-user modes.

This validation procedure is performed on the Samsung Android 8 with Knox device.

On the MDM console, do the following:
1. Ask the MDM Administrator to display the "Allow multi-user mode" check box in the "Android Restrictions" rule.
2. Verify the check box is not selected.

On the Samsung Android 8 with Knox device, do the following:
1. Open the device settings.
2. Attempt to add a user in the "User" setting.
3. Verify that the "User" setting is not available.

If the MDM console "Allow multi-user mode" check box is selected or on the Samsung Android 8 with Knox device, the user is able to add a user, this is a finding.

Vulnerability Number

V-80345

Documentable

False

Rule Version

KNOX-08-013000

Severity Override Guidance

Note: This requirement is only applicable for tablet devices.

Review documentation on Samsung Android 8 with Knox and inspect the configuration on Samsung Android 8 with Knox to disable multi-user modes.

This validation procedure is performed on the Samsung Android 8 with Knox device.

On the MDM console, do the following:
1. Ask the MDM Administrator to display the "Allow multi-user mode" check box in the "Android Restrictions" rule.
2. Verify the check box is not selected.

On the Samsung Android 8 with Knox device, do the following:
1. Open the device settings.
2. Attempt to add a user in the "User" setting.
3. Verify that the "User" setting is not available.

If the MDM console "Allow multi-user mode" check box is selected or on the Samsung Android 8 with Knox device, the user is able to add a user, this is a finding.

Check Content Reference

M

Target Key

3367

Comments