AIOS-12-001000 - Apple iOS must be configured to enforce an application installation policy by specifying an authorized application repo.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Forcing all applications to be installed from authorized application repositories can prevent unauthorized and malicious applications from being installed and executed on mobile devices. Allowing such installations and executions could cause a compromise of DoD data accessible by these unauthorized/malicious applications.

SFR ID: FMT_SMF_EXT.1.1 #8a

Solution

Install a configuration profile to disable 'Allow Trusting New Enterprise App Authors'.

See Also

https://iasecontent.disa.mil/stigs/zip/U_Apple_iOS_12_V1R2_STIG.zip

Item Details

Category: ACCESS CONTROL, CONFIGURATION MANAGEMENT

References: 800-53|AC-19, 800-53|CM-7, CAT|II, CCI|CCI-000068, CSCv6|9.1, Rule-ID|SV-96479r1_rule, STIG-ID|AIOS-12-001000, Vuln-ID|V-81765

Plugin: MDM

Control ID: 7538bc3189eeb868bb973c1f1e3f6359eda175de3a1480045fafa3adb08b93f3