The Samsung SDS EMM must be configured with a periodicity for reachable events of six hours or less for the following commands to the agent: - query connectivity status; - query the current version of the MD firmware/software; - query the current version of installed mobile applications; - read audit logs kept by the MD.

An XCCDF Rule

Description

<VulnDiscussion>Key security-related status attributes must be queried frequently so the Samsung SDS EMM can report status of devices under management to the administrator and management. The frequency of these queries must be configured to an acceptable timeframe. Six hours or less is considered acceptable for normal operations. SFR ID: FMT_SMF.1.1(2) c.3</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-225645r588007_rule
Severity: Medium
References: CCI-002696
Updated: about 1 year ago

Configure the MDM agent periodicity of reachable events to six hours or less.

On the MDM console, do the following:
1. Log in to the Samsung SDS EMM Server Admin Console using a web browser.
2. Go to Settings >> Server >> Configuration.
3. For Android: Ensure that row 27 "Inventory Collection Period for Android (hr)" shows a value of "6" or less.4. For iOS: Ensure that row 28 "Inventory Collection Period for iOS (hr)" shows a value of "6" or less.
5. Click on the check-mark box in the top left of the "Configuration" screen to "Apply Changes".
6. Click "OK" on the "Notify" save completed window.

Description

Remediation - Manual Procedure