The UEM server must be configured to only allow enrolled devices that are compliant with UEM policies and assigned to a user in the application access group to download applications.

An XCCDF Rule

Details
Profiles

Description

If the application install policy is not enforced, malicious applications and vulnerable applications can be installed on managed mobile devices, which could compromise DOD data. Satisfies:FMT_MOF.1.1(3) Reference:PP-MDM-423206

ID: SV-234521r985771_rule
Version: SRG-APP-000378-UEM-000249
Severity: Medium
References: CCI-003980
Updated: about 2 months ago

Remediation Templates

Configure the UEM server to allow only enrolled devices that are compliant with UEM policies and assigned to a user in the application access group to download applications.

The UEM server must be configured to only allow enrolled devices that are compliant with UEM policies and assigned to a user in the application access group to download applications.

Description

Remediation Templates

A Manual Procedure