The MaaS360 MDM server must be configured to enable all required audit events (if function is not automatically implemented during MDM/MAS server install): a. Failure to push a new application on a managed mobile device.

An XCCDF Rule

Description

<VulnDiscussion>Failure to generate these audit records makes it more difficult to identify or investigate attempted or successful compromises, potentially causing incidents to last longer than necessary. SFR ID: FMT_SMF.1.1(3) c, FAU_GEN.1.1(2)</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-96889r1_rule
Severity: Low
References: CCI-000129 CCI-000169 CCI-000366
Updated: about 1 year ago

Configure the MaaS360 server to enable all required audit events: Failure to push a new application on a managed mobile device.

On the MaaS360 Console, complete the following steps:
1. Navigate to Security >> Policies and select the mobile operating system (iOS, etc.) the MDM policy alerts apply to. 
2. Open the identified policy and go to device settings >> application compliance.
3. Set "Configure required applications" to "yes" and list all new applications.4. Repeat for other MOS as required (for example, iOS, Android, etc.).

The MaaS360 MDM server must be configured to enable all required audit events (if function is not automatically implemented during MDM/MAS server install): a. Failure to push a new application on a managed mobile device.

Description

Remediation - Manual Procedure