STIGhubSTIGhub
STIGsSearchCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 3 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Samsung Android 16 COPE Security Technical Implementation Guide

V-276739

CAT II (Medium)

Samsung Android must be enrolled as a COPE device.

Rule ID

SV-276739r1139739_rule

STIG

Samsung Android 16 COPE Security Technical Implementation Guide

Version

V1R2

CCIs

CCI-000366

Discussion

The Work profile is the designated application group for the COPE use case. SFR ID: FMT_MOF_EXT.1.2 #47

Check Content

Review the configuration to determine if the Samsung Android devices are enrolled in a DOD-approved use case.

This validation procedure is performed on both the management tool Administration Console and the Samsung Android device. 

On the management tool, verify the default enrollment is set to "Work profile for company-owned devices".

On the Samsung Android device: 
1. Open Settings >> Security and privacy >> More security settings >> Device admin apps.
2. Verify the management tool Agent is listed.
3. Go to the app drawer.
4. Verify a "Personal" and "Work" tab are present.

If on the management tool the default enrollment is not set as "Work profile for company-owned devices", or on the Samsung Android device the "Personal" and "Work" tabs are not present or the management tool Agent is not listed, this is a finding.

Fix Text

Enroll the Samsung Android devices in a DOD-approved use case.

On the management tool, configure the default enrollment as "Work profile for company-owned devices".

Refer to the management tool documentation to determine how to configure the device enrollment.