An error occurred:

Check: SSDS-00-000550

Samsung SDS EMM STIG: SSDS-00-000550 (in versions v1 r3 through v1 r1)

Title

The Samsung SDS EMM must be configured with a periodicity for reachable events of six hours or less for the following commands to the agent: - query connectivity status; - query the current version of the MD firmware/software; - query the current version of installed mobile applications; - read audit logs kept by the MD. (Cat II impact)

Discussion

Key security-related status attributes must be queried frequently so the Samsung SDS EMM can report status of devices under management to the administrator and management. The frequency of these queries must be configured to an acceptable timeframe. Six hours or less is considered acceptable for normal operations. SFR ID: FMT_SMF.1.1(2) c.3

Check Content

Review the MDM agent configuration settings to determine if the agent is configured with a periodicity of reachable events set to six hours or less. This validation procedure is performed on the Samsung SDS EMM Server Admin Console. 1. Log in to the Samsung SDS EMM Server Admin Console using a web browser. 2. Go to Setting >> Server >> Configuration. 3. For Android: On row 27 verify "Inventory Collection Period for Android (hr)" is set to "6" or less. 4. For iOS: On row 28 verify "Inventory Collection Period for iOS (hr)" is set to "6" or less. If the periodicity of reachable events is not set to "6" hours or less, this is a finding.

Fix Text

Configure the MDM agent periodicity of reachable events to six hours or less. On the MDM console, do the following: 1. Log in to the Samsung SDS EMM Server Admin Console using a web browser. 2. Go to Settings >> Server >> Configuration. 3. For Android: Ensure that row 27 "Inventory Collection Period for Android (hr)" shows a value of "6" or less. 4. For iOS: Ensure that row 28 "Inventory Collection Period for iOS (hr)" shows a value of "6" or less. 5. Click on the check-mark box in the top left of the "Configuration" screen to "Apply Changes". 6. Click "OK" on the "Notify" save completed window.

Additional Identifiers

Rule ID: SV-225645r588007_rule

Vulnerability ID: V-225645

Group Title: PP-MDM-411057

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-002696

The information system verifies correct operation of organization-defined security functions.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
SI-6

Security Function Verification