Detections
Analytics
KNOX-07-914500 - The Samsung Android 7 with Knox must implement the management setting: Configure minimum Container password complexity.
Information
Authentication mechanisms other than a Password Authentication Factor often provide convenience to users, but many of these mechanisms have known vulnerabilities. Configuring a minimum password complexity mitigates the risk associated with a weak authentication factor.SFR ID: FMT_SMF_EXT.1.1 #47
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
Configure the Samsung Android 7 with Knox to enforce minimum Container password complexity.On the MDM console, set the "Minimum Password Complexity" value to "Alphanumeric" in the "Android Knox Container >> Container Password Restrictions" rule.
See Also
https://iasecontent.disa.mil/stigs/zip/U_Samsung_Android_OS_7_with_Knox_2-x_V1R1_STIG.zip
Item Details
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-91355r1_rule, STIG-ID|KNOX-07-914500, Vuln-ID|V-76659
Plugin: MDM
Control ID: 998eaf2a2e787ff2d0c36dc4ee1f0d9a0b95debe0594914eb8c426f575ee2af9