STIGQter: STIG Summary: IBM MaaS360 with Watson v10.x MDM Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 26 Apr 2019:

The MaaS360 MDM Agent must be configured to implement the management setting: periodicity of reachability events equals six hours or less.

DISA Rule

SV-96907r1_rule

Vulnerability Number

V-82193

Group Title

PP-MDM-301011

Rule Version

M360-10-301700

Severity

CAT II

CCI(s)

• CCI-000169 - The information system provides audit record generation capability for the auditable events defined in AU-2 a. at organization-defined information system components.

Weight

10

Fix Recommendation

The procedure for configuring the periodicity depends on the MOS type.

For Apple iOS devices, the site System Administrator should ask IBM to configure the SaaS to set the periodicity for agent checking to the server to six hours or less.

For Samsung Android devices:
1. In the portal, navigate to "Security".
2. Select "Policy".
3. Select the policy for Samsung Android devices.
4. Open the policy.
5. Select "Device Settings" and then "Device Management".
6. Set the "Data Heartbeat Frequency" to 360 minutes or less.

Check Contents

Verify the periodicity for agent checking to the server has been set to six hours or less.

For Apple iOS devices, confirm with IBM that the periodicity for agent checking to the server has been set to 6 hours or less.

For Samsung Android devices:
1. In the portal, navigate to "Security".
2. Select "Policy".
3. Select the policy for Samsung Android devices.
4. Open the policy.
5. Select "Device Settings" and then "Device Management".
6. Verify "Data Heartbeat Frequency" is set to 360 minutes or less.

If the periodicity for agent checking to the server has not been set to 6 hours or less, this is a finding.

Vulnerability Number

V-82193

Documentable

False

Rule Version

M360-10-301700

Severity Override Guidance

Verify the periodicity for agent checking to the server has been set to six hours or less.

For Apple iOS devices, confirm with IBM that the periodicity for agent checking to the server has been set to 6 hours or less.

For Samsung Android devices:
1. In the portal, navigate to "Security".
2. Select "Policy".
3. Select the policy for Samsung Android devices.
4. Open the policy.
5. Select "Device Settings" and then "Device Management".
6. Verify "Data Heartbeat Frequency" is set to 360 minutes or less.

If the periodicity for agent checking to the server has not been set to 6 hours or less, this is a finding.

Check Content Reference

M

Target Key

3403

Comments