Google Android 13 must be provisioned as a fully managed device and configured to create a work profile.

Severity	Group ID	Group Title	Version	Rule ID	Date	STIG Version
medium	V-254790	PP-MDF-990000	GOOG-13-010300	SV-254790r959010_rule	2024-12-04	2

Description
The Android Enterprise work profile is the designated application group for the COPE use case. SFR ID: FMT_SMF_EXT.1.1 #47

ℹ️ Check
Review that managed Google Android 13 is configured as Corporate Owned Work Managed. This procedure is performed on both the EMM Administrator console and the managed Google Android 13 device. On the EMM console, configure the default enrollment as Corporate Owned and select "Use for Work & Personal". On the managed Google Android 13 device: 1. Go to the application drawer. 2. Ensure a Personal tab and a Work tab are present. If on the EMM console the account the default enrollment is set to Corporate Owned Work Managed or on the managed Android 13 device the user does not have a Work tab, this is a finding.

ℹ️ Check

Review that managed Google Android 13 is configured as Corporate Owned Work Managed. This procedure is performed on both the EMM Administrator console and the managed Google Android 13 device. On the EMM console, configure the default enrollment as Corporate Owned and select "Use for Work & Personal". On the managed Google Android 13 device: 1. Go to the application drawer. 2. Ensure a Personal tab and a Work tab are present. If on the EMM console the account the default enrollment is set to Corporate Owned Work Managed or on the managed Android 13 device the user does not have a Work tab, this is a finding.

✔️ Fix
Configure the Google Android 13 device as corporate owned with a work profile. On the EMM console, configure the default enrollment as Corporate Owned, and select "Use for Work & Personal". Refer to the EMM documentation to determine how to configure the device.