Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-97341 | GOOG-09-005505 | SV-106445r1_rule | Medium |
Description |
---|
Audit logs enable monitoring of security-relevant events and subsequent forensics when breaches occur. To be useful, Administrators must have the ability to view the audit logs. SFR ID: FMT_SMF_EXT.1.1 #32 |
STIG | Date |
---|---|
Google Android 9.x Security Technical Implementation Guide | 2019-08-28 |
Check Text ( C-96177r1_chk ) |
---|
Review documentation on the Google Android device and inspect the configuration on the Google Android device to enable audit logging. This validation procedure is performed on only on the MDM Administration Console. On the MDM console, do the following: 1. Open the restrictions settings. 2. Open user settings. 3. Select "Enable security logging". 4. Select "Enable network logging". If the MDM console device policy is not set to enable audit logging, this is a finding. |
Fix Text (F-103021r1_fix) |
---|
Configure the Google Android Pie to enable audit logging. On the MDM console: 1. Open the restrictions settings. 2. Open user settings. 3. Select "Enable security logging". 4. Select "Enable network logging". |