STIGhubSTIGhub
STIGsSearchCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 3 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to BlackBerry UEM Security Technical Implementation Guide

V-224371

CAT III (Low)

The BlackBerry UEM server must [selection: invoke platform-provided functionality, implement functionality] to generate an audit record of the following auditable events: c. [selection: Commands issued to the MDM Agent].

Rule ID

SV-224371r604136_rule

STIG

BlackBerry UEM Security Technical Implementation Guide

Version

V2R1

CCIs

CCI-000366

Discussion

Audit logs enable monitoring of security-relevant events and subsequent forensics when breaches occur. For audit logs to be useful, administrators must have the ability to view them. SFR ID: FAU_GEN.1.1(1)

Check Content

Review the audit record which can be found in the UEM console in Settings >> Infrastructure >> Audit settings >> Security event audit settings section.

Verify both "Command" events are listed and "setting" is set to "All" for the "Command delivered" event.
If both "Command" events are not listed and "setting" is not set to "All" for the "Command delivered" event, this is a finding.

Fix Text

On the BlackBerry UEM, do the following:
1. On the menu bar, click Settings >> Infrastructure >> Audit settings.
2. In the right pane, click the edit icon.
3. To add security events to audit, click + . Select the events and click Add.
4. Select each "Command" event (Command delivered, Command sent).
5. In the Setting column, select "all" for the "Command delivered" event. 
6. Click Save.
Note: For audit record fields for server audits, include: Commands sent to the device.