AIOS-12-011300 - Apple iOS must implement the management setting: Disable Allow Shared Albums.

Information

Storing data with a non-DoD cloud provider may leave the data vulnerable to breach. Disabling non-DoD cloud services mitigates this risk.

Note: If the AO has approved the use/storage of DoD data in one or more personal (unmanaged) apps, allowing unrestricted activity by the user in downloading and installing personal (unmanaged) apps on the iOS 11 device may not be warranted due to the risk of possible loss of or unauthorized access to DoD data.

SFR ID: FMT_SMF_EXT.1.1 #47

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Configure the Apple iOS configuration profile to disable 'Allow Shared Albums'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Apple_iOS_12_V2R1_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7a., CAT|II, CCI|CCI-000381, Rule-ID|SV-237263r642341_rule, STIG-ID|AIOS-12-011300, STIG-Legacy|SV-96535, STIG-Legacy|V-81821, Vuln-ID|V-237263

Plugin: MDM

Control ID: 8f09facc1d6d29c7e76c8f32bb0b2d6b33e130ac97c94c1653320e7d9f948d6f