The MaaS360 server must be configured to enable all required audit events (if function is not automatically implemented during MDM/MAS server install): b. Failure to update an existing application on a managed mobile device.
An XCCDF Rule
Description
<VulnDiscussion>Failure to generate these audit records makes it more difficult to identify or investigate attempted or successful compromises, potentially causing incidents to last longer than necessary. SFR ID: FMT_SMF.1.1(3) c, FAU_GEN.1.1(2)</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-96895r1_rule
- Severity
- Low
- References
- Updated
Remediation - Manual Procedure
Configure the MaaS360 server to enable all required audit events: Failure to update an existing application on a managed mobile device.
On the MaaS360 Console, complete the following steps:
1. Navigate to Devices >> Groups.
2. Select "Add", "Device Groups", and create a new search with the conditions noted below.
3. Select "edit" for one of the identified groups and set the two conditions: