Detections
Analytics
AIOS-26-018200 - Apple iOS/iPadOS 26 must implement the management setting: disable the Bluetooth radio.
Information
Authorizing Official (AO) approval is required before the Apple device Bluetooth radio can be enabled. All AO approvals should be documented and based on critical mission need. Use of Bluetooth may lead to the exposure of sensitive DOD information in some operational environments.SFR ID: FMT_SMF.1.1 #47
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
If the AO has not approved the use of the Apple device Bluetooth radio, install a configuration profile to disable Bluetooth use. This is a supervised-only control.There are two steps to this procedure:
1. MDM sends a device command to site managed Apple devices to disable Bluetooth.
2. Include the key 'allowBluetoothModification' set to 'false' in the configuration profile installed on site managed Apple devices.
See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_iOS-iPadOS_26_V1R2_STIG.zip
Item Details
Audit Name: AirWatch - DISA Apple iOS/iPadOS 26 v1r2
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-278852r1151255_rule, STIG-ID|AIOS-26-018200, Vuln-ID|V-278852
Plugin: MDM
Control ID: 095f37fb5bcbe7426d524cf1f5871975c6db7fa040bd8e284ff8b6f70d2aa00b