Free DISA STIG and SRG Library | Vaulted

V-98957

Google Android 10 must be configured to enable audit logging.

Finding ID
GOOG-10-005505
Rule ID
SV-108061r1_rule
Severity
Cat II
CCE
(None)
Group Title
PP-MDF-302370
CCI
CCI-001851
Target Key
(None)
Documentable
No
Discussion

Audit logs enable monitoring of security-relevant events and subsequent forensics when breaches occur. To be useful, Administrators must have the ability to view the audit logs. SFR ID: FMT_SMF_EXT.1.1 #32

Fix Text

Configure the Google Android 10 to enable audit logging. On the MDM console: 1. Open the User restrictions. 2. Open user settings. 3. Select "Enable security logging". 4. Select "Enable network logging".

Check Content

Review documentation on the Google Android device and inspect the configuration on the Google Android device to enable audit logging. This validation procedure is performed on only on the MDM Administration Console. On the MDM console, do the following: 1. Open the User restrictions. 2. Open user settings. 3. Select "Enable security logging". 4. Select "Enable network logging". If the MDM console device policy is not set to enable audit logging, this is a finding.