An error occurred:

Check: BBDS-00-000285

Policy SRG: BBDS-00-000285 (in version v1 r1)

Title

BlackBerry Web Desktop Manager must be configured to disable a user's capability to perform self-service tasks. (Cat II impact)

Discussion

The overall security posture of the BlackBerry system is dependent on strict configuration management controls, including ensuring only authorized BlackBerry devices are being used and authorized devices are provisioned as required. When these configurations are not set as required, users may have the capability to activate unauthorized BlackBerry devices.

Check Content

Verify the BlackBerry Administration Service (BAS) has been configured to disable users from performing administrative tasks on the BlackBerry Device Service server. Log into the BlackBerry Administration Service as an administrator with Security Administrator role. In the BlackBerry Administration Service in the Organization administration menu, expand Organization. - Click My organization. - Click BlackBerry Web Desktop Manager Information. - On the Allowed user operations, verify "Allow users to perform self service tasks" is set to No. This is a finding if not set as required.

Fix Text

Configure the BlackBerry Administration Service to disable a user from performing self-service tasks via BlackBerry Web Desktop Manager.

Additional Identifiers

Rule ID:

Vulnerability ID: BBDS-00-000285

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000386

The organization employs automated mechanisms to prevent program execution on the information system in accordance with the organization-defined specifications.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
No controls are assigned to this check