STIGhubSTIGhub
STIGsSearchCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 3 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Samsung Android OS 13 with Knox 3.x COBO Security Technical Implementation Guide

V-255107

CAT II (Medium)

Samsung Android must be enrolled as a COBO device.

Rule ID

SV-255107r959010_rule

STIG

Samsung Android OS 13 with Knox 3.x COBO Security Technical Implementation Guide

Version

V2R3

CCIs

CCI-000366

Discussion

The device is the designated application group for the COBO use case. SFR ID: FMT_MOF_EXT.1.2 #47

Check Content

Review the configuration to determine if the Samsung Android devices are enrolled in a DOD-approved use case.

This validation procedure is performed on both the management tool Administration Console and the Samsung Android device. 

On the management tool, verify that the default enrollment is set as "Fully managed".

On the Samsung Android device: 
1. Open Settings >> Security and privacy >> Other security settings >> Device admin apps.
2. Verify that the management tool Agent is listed.

If on the management tool the default enrollment is not set as "Fully managed", or the management tool Agent is not listed, this is a finding.

Fix Text

Enroll the Samsung Android devices in a DOD-approved use case.

On the management tool, configure the default enrollment as "Fully managed".

Refer to the management tool documentation to determine how to configure the device enrollment.