Skip to content
Log In

I - Mission Critical Public

Rules and Groups employed by this XCCDF Profile

  • PP-MDM-431004

    Group
    Show

  • The Samsung SDS EMM platform must be protected by a DoD-approved firewall.

    Most information systems are capable of providing a wide variety of functions and services. Some of the functions and services provided by default may not be necessary to support essential organiza...
    Rule Medium Severity
    Show

  • PP-MDM-431005

    Group
    Show

  • The firewall protecting the Samsung SDS EMM platform must be configured to restrict all network traffic to and from all addresses with the exception of ports, protocols, and IP address ranges required to support Samsung SDS EMM and platform functions.

    Most information systems are capable of providing a wide variety of functions and services. Some of the functions and services, provided by default, may not be necessary to support essential organi...
    Rule Medium Severity
    Show

  • PP-MDM-431006

    Group
    Show

  • The firewall protecting the Samsung SDS EMM platform must be configured so that only DoD-approved ports, protocols, and services are enabled. See the DoD Ports, Protocols, Services Management [PPSM] Category Assurance Levels [CAL] list for DoD-approved ports, protocols, and services.

    All ports, protocols, and services used on DoD networks must be approved and registered via the DoD PPSM process. This is to ensure that a risk assessment has been completed before a new port, prot...
    Rule Medium Severity
    Show

  • PP-MDM-431010

    Group
    Show

  • The Samsung SDS EMM must limit the number of concurrent sessions to one session for all accounts and/or account types.

    Application management includes the ability to control the number of users and user sessions that utilize an application. Limiting the number of allowed users and sessions per user is helpful in li...
    Rule Medium Severity
    Show

  • PP-MDM-991000

    Group
    Show

  • The Samsung SDS EMM must automatically disable accounts after a 35 day period of account inactivity (local accounts).

    Attackers that are able to exploit an inactive account can potentially obtain and maintain undetected access to an application. Owners of inactive accounts will not notice if unauthorized access to...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules