Check: AIOS-15-009800
Apple iOS/iPadOS 15 STIG:
AIOS-15-009800
(in versions v1 r4 through v1 r1)
Title
Apple iOS/iPadOS 15 must be configured to disable multiuser modes. (Cat II impact)
Discussion
Multiuser mode allows multiple users to share a mobile device by providing a degree of separation between user data. To date, no mobile device with multiuser mode features meets DoD requirements for access control, data separation, and nonrepudiation for user accounts. In addition, the MDFPP does not include design requirements for multiuser account services. Disabling multiuser mode mitigates the risk of not meeting DoD multiuser account security policies. SFR ID: FMT_SMF_EXT.1.1 #47a
Check Content
Verify multiuser mode is disabled in the MDM console for iPadOS devices. If multiuser mode is not disabled in the MDM console for iPadOS devices, this is a finding.
Fix Text
Disable multiuser mode in the MDM console for iPadOS devices.
Additional Identifiers
Rule ID: SV-250943r853256_rule
Vulnerability ID: V-250943
Group Title: PP-MDF-323290
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-000366 |
The organization implements the security configuration settings. |
| CCI-002110 |
The organization defines the information system account types that support the organizational missions/business functions. |