BlackBerry Enterprise Mobility Server 3.x Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
If the BlackBerry Docs service is installed on the BlackBerry Enterprise Mobility Server (BEMS), it must be configured to use Windows Authentication for the database connection.
<VulnDiscussion>To ensure accountability and prevent unauthorized access, organizational users must be identified and authenticated. Organiza...Rule Medium Severity -
SRG-APP-000516-AS-000237
<GroupDescription></GroupDescription>Group -
If the BlackBerry Docs service is installed on the BlackBerry Enterprise Mobility Server (BEMS), it must be configured to use NTLM authentication.
<VulnDiscussion>To ensure accountability and prevent unauthorized access, organizational users must be identified and authenticated. Organiza...Rule Medium Severity -
SRG-APP-000516-AS-000237
<GroupDescription></GroupDescription>Group -
If the BlackBerry Docs service is installed on the BlackBerry Enterprise Mobility Server (BEMS), it must be configured to use SSL for LDAP lookup to connect to the Office Web App Server (e.g., SharePoint).
<VulnDiscussion>Preventing the disclosure of transmitted information requires that applications take measures to employ some form of cryptogr...Rule High Severity -
SRG-APP-000516-AS-000237
<GroupDescription></GroupDescription>Group -
If the BlackBerry Docs service is installed on the BlackBerry Enterprise Mobility Server (BEMS), it must be configured to enable audit logs.
<VulnDiscussion>Logging must be used to track system activity, assist in diagnosing system issues, and provide evidence needed for forensic i...Rule Medium Severity -
SRG-APP-000179-AS-000129
<GroupDescription></GroupDescription>Group -
The BlackBerry Enterprise Mobility Server (BEMS) server must be configured to enable FIPS mode.
<VulnDiscussion>Encryption is only as good as the encryption modules utilized. Unapproved cryptographic module algorithms cannot be verified ...Rule Medium Severity -
SRG-APP-000516-AS-000237
<GroupDescription></GroupDescription>Group -
If the BlackBerry Connect service is installed on the BlackBerry Enterprise Mobility Server (BEMS), it must be configured to enable the Web Proxy.
<VulnDiscussion>The web proxy provides a secure gateway for the BlackBerry Connect service so that BEMS can securely connect to the internet....Rule Medium Severity -
SRG-APP-000516-AS-000237
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.