CylancePROTECT Mobile must be configured with the following compliance actions when sideloaded apps are detected: -Prompt for compliance: Immediate enforcement action. -Prevent the user from accessing work resources and apps on the device while it is out of compliance. -Prevent the user from accessing BlackBerry Dynamics apps while the device is out of compliance.

An XCCDF Rule

Description

When a compliance failure is detected, compliance actions must be implemented immediately to limit exposure of sensitive data and unauthorized access to the mobile device.

ID: SV-257263r918373_rule
Version: BBCP-00-012900
Severity: Medium
References: CCI-000366
Updated: 15 days ago

Remediation Templates

Configure the following compliance actions when sideloaded apps are detected:
-Prompt for compliance: Immediate enforcement action.
-Prevent the user from accessing work resources and apps on the device while it is out of compliance.
-Prevent the user from accessing BlackBerry Dynamics apps while the device is out of compliance.

1. Log on to the BlackBerry UEM console.2. In the management console on the menu bar, click Policies and profiles >> Compliance >> Compliance.
3. Create a new compliance profile or select and edit an existing compliance profile.
4. Select the iOS tab to configure sideload detection for that platform.
5. In the BlackBerry Protect section, select the "Sideloaded app is installed" check box.
6. Configure the behavior prompt settings: Prompt for compliance: "Immediate enforcement action".
7. In the "Enforcement action for device" drop-down list, select "Untrust".
8. In the "Enforcement action for BlackBerry Dynamics apps" drop-down list, select "Do not allow BlackBerry Dynamics apps to run".
9. Repeat steps 3–7 for configure compliance actions for Android.
10. Click "Save".
11. Assign the profile to users and groups.

Description

Remediation Templates

A Manual Procedure