MobileIron - DISA Google Android 14 BYOAD v1r2

Audit Details

Name: MobileIron - DISA Google Android 14 BYOAD v1r2

Updated: 3/6/2026

Authority: DISA STIG

Plugin: MDM

Revision: 1.0

Estimated Item Count: 23

File Details

Filename: DISA_STIG_Google_Android_14_BYOAD_v1r2-MobileIron.audit

Size: 54.5 kB

MD5: adc1f8c8de58913f20d680593e47239e

SHA256: 4c30f4f6aee9bddbf1d2f38b3fd3ec68bf5523bf6727620e3a7636c762d2bd3c

Audit Items

Description	Categories
GOOG-14-701100 - Google Android 14 must prohibit DOD VPN profiles in the Personal Profile.	CONFIGURATION MANAGEMENT
GOOG-14-706000 - Google Android 14 must be configured to enforce a minimum password length of six characters and not allow passwords that include more than four repeating or sequential characters.	IDENTIFICATION AND AUTHENTICATION
GOOG-14-706300 - Google Android 14 must be configured to lock the display after 15 minutes (or less) of inactivity - or less of inactivity.	ACCESS CONTROL
GOOG-14-706400 - Google Android 14 must be configured to not allow more than 10 consecutive failed authentication attempts.	ACCESS CONTROL
GOOG-14-706500 - Google Android 14 must be configured to enforce an application installation policy by specifying one or more authorized application repositories.	CONFIGURATION MANAGEMENT
GOOG-14-706600 - Google Android 14 must be configured to enforce an application installation policy by specifying an application allowlist that restricts applications by the following characteristics: [selection: list of digital signatures, cryptographic hash values, names, application version].	CONFIGURATION MANAGEMENT
GOOG-14-706700 - Google Android 14 allowlist must be configured to not include applications with the following characteristics (work profile only):	CONFIGURATION MANAGEMENT
GOOG-14-706800 - Google Android 14 must be configured to not display the following (work profile) notifications when the device is locked: [selection:	ACCESS CONTROL
GOOG-14-707200 - Google Android 14 must be configured to disable trust agents - NOTE: This requirement is not applicable (NA) for specific biometric authentication factors included in the product's Common Criteria evaluation.	IDENTIFICATION AND AUTHENTICATION
GOOG-14-707700 - Google Android 14 must be configured to display the DOD advisory warning message at startup or each time the user unlocks the Work Profile.	ACCESS CONTROL
GOOG-14-708600 - Google Android 14 must be configured to not allow backup of all work profile applications to remote systems.	SYSTEM AND COMMUNICATIONS PROTECTION
GOOG-14-708900 - Google Android 14 must be configured to disable exceptions to the access control policy that prevent [selection: application processes, groups of application processes] from accessing [selection: all, private] data stored by other [selection: application processes, groups of application processes].	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GOOG-14-709800 - Google Android 14 users must complete required training.	CONFIGURATION MANAGEMENT
GOOG-14-710000 - Google Android 14 must have the DOD root and intermediate PKI certificates installed (work profile only) - work profile only.	CONFIGURATION MANAGEMENT
GOOG-14-710100 - The Google Android 14 work profile must be configured to prevent users from adding personal email accounts to the work email app.	CONFIGURATION MANAGEMENT
GOOG-14-710200 - The Google Android 14 work profile must be configured to enforce the system application disable list (work profile only) - work profile only.	CONFIGURATION MANAGEMENT
GOOG-14-710300 - Google Android 14 must be provisioned as a BYOAD device (Android work profile for employee-owned devices [BYOD]) - Android work profile for employee-owned devices [BYOD].	CONFIGURATION MANAGEMENT
GOOG-14-710400 - The Google Android 14 work profile must be configured to disable automatic completion of workspace internet browser text input.	CONFIGURATION MANAGEMENT
GOOG-14-710500 - The Google Android 14 work profile must be configured to disable the autofill services.	CONFIGURATION MANAGEMENT
GOOG-14-710800 - Android 14 devices must have the latest available Google Android 14 operating system installed.	CONFIGURATION MANAGEMENT
GOOG-14-710900 - Android 14 devices must be configured to disable the use of third-party keyboards (work profile only) - work profile only.	CONFIGURATION MANAGEMENT
GOOG-14-712300 - The Google Android 14 must allow only the administrator (EMM) to install/remove DOD root and intermediate PKI certificates (work profile) - EMM to install/remove DOD root and intermediate PKI certificates.	CONFIGURATION MANAGEMENT
GOOG-14-713400 - Google Android 14 BYOAD devices must have a Mobile Threat Detection (MTD) app installed.	CONFIGURATION MANAGEMENT

Detections

Analytics

MobileIron - DISA Google Android 14 BYOAD v1r2

Audit Details

File Details

Audit Items