Detections
Analytics
GOOG-15-002800 - Google Android 15 must be configured to enable audit logging.
Information
Audit logs enable monitoring of security-relevant events and subsequent forensics when breaches occur. To be useful, administrators must have the ability to view the audit logs.SFRID: FMT_SMF.1.1 #32
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
Configure the Google Android 15 device to enable audit logging.On the EMM console:
COBO and COPE:
1. Open 'Device owner management' section.
2. Toggle 'Enable security logging' to 'ON'.
See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Google_Android_15_Y25M10_STIG.zip
Item Details
Audit Name: AirWatch - DISA Google Android 15 COBO STIG v1r3
Category: AUDIT AND ACCOUNTABILITY
References: 800-53|AU-6(4), CAT|II, CCI|CCI-000154, Rule-ID|SV-267430r1031475_rule, STIG-ID|GOOG-15-002800, Vuln-ID|V-267430
Plugin: MDM
Control ID: 1f17f0bed87c0f1b2cdb179a4a13b6066a7420af44f0d58ff7153517c775eddf