From Apple iOS 11 Security Technical Implementation Guide
Part of PP-MDF-301060
Associated with: CCI-000068
Access to the DoD network must be limited for unmanaged apps because they are considered untrusted.
Review the list of unmanaged apps installed on the iOS device and determine if any third-party VPN clients are installed. If yes, verify the VPN app is not configured with a DoD network (work) VPN profile. This validation procedure is performed on the iOS device only. On the iOS device, do the following: 1. Under Settings, VPN look for to see if any "Personal VPN" exists. 2. If yes, open each VPN app in turn. Review the list of VPN profiles configured on the VPN client. 3. Verify there are no DoD network VPN profiles configured on the VPN client. If any third-party unmanaged VPN apps are installed (personal VPN) and has a DoD network VPN profile configured on the client, this is a finding. Note: This setting cannot be managed by the MDM administrator and is a User Based Enforcement (UBE) requirement.
If a third-party unmanaged VPN app is installed on the iOS 11 device, do not configure the VPN app with a DoD network VPN profile.
Lavender hyperlinks in small type off to the right (of CSS
class id, if you view the page source) point to
globally unique URIs for each document and item. Copy the
link location and paste anywhere you need to talk
unambiguously about these things.
You can obtain data about documents and items in other
formats. Simply provide an HTTP header Accept:
text/turtle or
Accept: application/rdf+xml.
Powered by sagemincer