The organization-specific Solidcore Client Policies must be created and applied to all endpoints.

An XCCDF Rule

Description

<VulnDiscussion>Trellix Application Control is deployed with default policies. To ensure the default policies are not used and that an organization knowingly configures their systems to their own configuration requirements, organization-specific policies will need to be created.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-213345r944866_rule
Severity: Medium
References: CCI-001774
Updated: 8 months ago

From the ePO server console System Tree, select the "Systems" tab.

Select "This Group and All Subgroups".
Select the asset.
Select "Actions".
Select "Agent".Select "Modify Policies on a Single System".

From the product pull-down list, select Solidcore 8.x: General.

From the "Actions" column, select "Edit Assignment" for the "Solidcore (Client)" Category.

Next to "Assigned policy:", click on the drop-down selection box and choose an organization-specific "Solidcore (Client)" policy.

Click "Save".

If no organization-specific Solidcore (Client) policy exists, click on "New Policy". Choose "Trellix Default" for "Create a policy based on this existing policy".

Type a unique Policy Name.

Click "OK".

The organization-specific Solidcore Client Policies must be created and applied to all endpoints.

Description

Remediation - Manual Procedure