The BlackBerry UEM server must be configured to communicate the following commands to the MDM Agent: read audit logs kept by the MD.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-224372 | BUEM-00-000110 | SV-224372r604136_rule | CCI-000366 | medium |
| Description | ||||
| Audit logs enable monitoring of security-relevant events and subsequent forensics when breaches occur. For audit logs to be useful, administrators must have the ability to view them. SFR ID: FMT_SMF.1.1(1) #19 | ||||
| STIG | Date | |||
| BlackBerry UEM Security Technical Implementation Guide | 2020-12-04 | |||
Related Frameworks
4 paths across 3 frameworks
Related Frameworks
NIST 800-531 mapping
CM-6
1.00
- DISA · V2R1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
NIST 800-1712 mappings
3.4.1
1.00
- DISA · V2R1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
3.4.2
1.00
- DISA · V2R1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-000366
1.00
- DISA · V2R1 · disa_xccdf · related
Details
Check Text (C-224372r604136_chk)
Verify each Android device being managed by UEM has been configured to enable device auditing.
Verify the policy pushed by UEM to each Android device include "Enable auditing".
If auditing has not been enabled for each Android device being managed by UEM, this is a finding.
Fix Text (F-26037r539017_fix)
This requirement is only applicable on Android devices and is configured via each Android device STIG (enabling device Auditing).
Enable device auditing for each Android device being managed by UEM using procedures in the Android STIG.