AIOS-13-000800 - If a third-party VPN client is installed on the iOS/iPadOS device, it must not be configured with a DoD VPN profile.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Access to the DoD network must be limited for unmanaged apps which are considered untrusted.

SFR ID: FMT_SMF_EXT.1.1 #3

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.

Solution

If a third-party unmanaged VPN app is installed on the iOS 12 device, do not configure the VPN app with a DoD network VPN profile.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_iOS_iPadOS_13_V1R1_STIG.zip

Item Details

Category: ACCESS CONTROL, CONFIGURATION MANAGEMENT

References: 800-53|AC-19, 800-53|CM-7, CAT|III, CCI|CCI-000068, CSCv6|9.1, Rule-ID|SV-106531r1_rule, STIG-ID|AIOS-13-000800, Vuln-ID|V-97427

Plugin: MDM

Control ID: e2f332a628c20ba31636ec38b170df50083a945b6732c45e399a7fa65d47e6d6