STIGhubSTIGhub
STIGsSearchCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 3 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to BlackBerry UEM Security Technical Implementation Guide

V-224387

CAT II (Medium)

The BlackBerry UEM server Blackberry Web Services must not be authorized access from external sources unnecessarily.

Rule ID

SV-224387r604136_rule

STIG

BlackBerry UEM Security Technical Implementation Guide

Version

V2R1

CCIs

CCI-000382

Discussion

By limiting access to the subset of Administrator UI functions to internal administrators, the risk of an attacker developing a custom application to administer UEM potentially changing pre-configuration items in UEM is reduced SFR ID: FMT_SMF.1.1(2) b / CM-7 b Satisfies: SRG-APP-000142

Check Content

Verify BlackBerry UEM server Blackberry Web Services has not been configured to allow access from external sources unnecessarily.

1. Log in to the UEM Server console.
2. On the left bar, access Settings >> General Settings >> Blackberry Web Services access.
3. Verify the status has not changed from disabled unless the ISSM has approved access. 

If BlackBerry UEM server Blackberry Web Services has not disabled access from external sources unnecessarily without ISSM approval, this is a finding.

Fix Text

Configure BlackBerry UEM server Blackberry Web Services to block access by unnecessary to external sources (default configuration).

1. Access the UEM Server console.
2. On the left bar, access Settings >> General Settings >> Blackberry Web Services access.
3. If the status is not set to "disabled", change the status to "disabled" unless access has been approved by the ISSM.