STIGQter: STIG Summary: IBM MaaS360 with Watson v10.x MDM Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 26 Apr 2019:

Authentication of MaaS360 MDM platform accounts must be configured so they are implemented via an enterprise directory service.

DISA Rule

SV-96885r1_rule

Vulnerability Number

V-82171

Group Title

PP-MDM-314003

Rule Version

M360-10-007800

Severity

CAT II

CCI(s)

• CCI-000015 - The organization employs automated mechanisms to support the information system account management functions.

Weight

10

Fix Recommendation

Install Cloud Extender and configure it to connect to the Enterprise directory service for all portal connections.

Check Contents

Perform the following steps to verify the MaaS360 portal is configured to use an Enterprise directory service for portal access:

Verify the MaaS360 is configured to use the Cloud Extender that connects to the Enterprise authentication service:
1. Log in to the portal.
2. Navigate to "Users" on the menu bar.
3. Select "Directory".
4. Confirm that for every administrator listed, "User Source" has "User Directory (AD)" listed.

If any listed administrator does not have "User Source" as "User Directory (AD)", this is a finding.

Vulnerability Number

V-82171

Documentable

False

Rule Version

M360-10-007800

Severity Override Guidance

Perform the following steps to verify the MaaS360 portal is configured to use an Enterprise directory service for portal access:

Verify the MaaS360 is configured to use the Cloud Extender that connects to the Enterprise authentication service:
1. Log in to the portal.
2. Navigate to "Users" on the menu bar.
3. Select "Directory".
4. Confirm that for every administrator listed, "User Source" has "User Directory (AD)" listed.

If any listed administrator does not have "User Source" as "User Directory (AD)", this is a finding.

Check Content Reference

M

Target Key

3403

Comments