Apple iOS/iPadOS 14 STIG

Apple iOS/iPadOS 14 Security Technical Implementation Guide

ID Vuln ID Title Cat Status
AIOS-14-000700 V-228734 The mobile operating system must be configured to enforce an application installation policy by specifying one or more authorized application repositories, including [selection: DoD-approved commercial app repository, MDM server, mobile application store]. Cat II
AIOS-14-012700 V-228781 Apple iOS/iPadOS must disable [Allow network drive access in Files access]. Cat II
AIOS-14-010700 V-228768 Apple iOS/iPadOS must not allow managed apps to write contacts to unmanaged contacts accounts. Cat III
AIOS-14-011400 V-228775 Apple iOS/iPadOS must disable password sharing. Cat II
AIOS-14-003700 V-228741 Apple iOS/iPadOS must not allow backup to remote systems (iCloud). Cat II
AIOS-14-011900 V-228780 Apple iOS must implement the management setting: not allow a user to remove Apple iOS configuration profiles that enforce DoD security requirements. Cat II
AIOS-14-008900 V-228751 Apple iOS/iPadOS must implement the management setting: limit Ad Tracking. Cat III
AIOS-14-003600 V-228740 The mobile operating system must be configured to not allow backup of [all applications, configuration data] to locally connected systems. Cat II
AIOS-14-000300 V-228731 The mobile operating system must be configured to enable a screen-lock policy that will lock the display after a period of inactivity. Cat II
AIOS-14-003900 V-228743 Apple iOS/iPadOS must not allow backup to remote systems (iCloud Keychain). Cat II
AIOS-14-011600 V-228777 The Apple iOS/iPadOS must be supervised by the MDM. Cat II
AIOS-14-009600 V-228758 iPhone and iPad must have the latest available iOS/iPadOS operating system installed. Cat I
AIOS-14-011300 V-228774 Apple iOS/iPadOS must disable password proximity requests. Cat II
AIOS-14-010400 V-228766 A managed photo app must be used to take and store work-related photos. Cat II
AIOS-14-009300 V-228755 Apple iOS/iPadOS must implement the management setting: require the user to enter a password when connecting to an AirPlay-enabled device for the first time. Cat III

Print

Display this benchmark in a printer-friendly format for off-line reference. This display does not include any commands.
Print

Version Changes

If there are multiple versions of this benchmark, Xylok can display the differences between any changes in the checks.
Changes