Google Android 13 must be configured to disable trust agents.

An XCCDF Rule

Description

<VulnDiscussion>Trust agents allow a user to unlock a mobile device without entering a passcode when the mobile device is, for example, connected to a user-selected Bluetooth device or in a user-selected location. This technology would allow unauthorized users to have access to DOD sensitive data if compromised. By not permitting the use of nonpassword authentication mechanisms, users are forced to use passcodes that meet DOD passcode requirements. SFR ID: FMT_SMF_EXT.1.1 #22, FIA_UAU.5.1</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-258484r930570_rule
Severity: Medium
References: CCI-000767
Updated: 17 days ago

Configure the Google Android 13 device to disable trust agents at the same location where the DOD password is implemented (device or work profile).
 
On the EMM console:

1. Open "Lock screen restrictions".
2. Select "Personal Profile".3. Toggle "Disable trust agents" to "ON".
4. Open "Lock screen restrictions".
5. Select "Work Profile".
6. Toggle "Disable trust agents" to "ON".

Google Android 13 must be configured to disable trust agents.

Description

Remediation - Manual Procedure