Skip to content

III - Administrative Classified

Rules and Groups employed by this XCCDF Profile

  • SRG-APP-000397

    <GroupDescription></GroupDescription>
    Group
  • The process by which the Solidcore client Command Line Interface (CLI) Access Password is made available to administrators when needed must be documented in the organizations written policy.

    &lt;VulnDiscussion&gt;The Solidcore client can be configured locally at the CLI, but only when accessed with the required password. Since the Trel...
    Rule Medium Severity
  • SRG-APP-000276

    <GroupDescription></GroupDescription>
    Group
  • The Trellix Application Control Options Advanced Threat Defense (ATD) settings, if being used, must be confined to the organizations enclave.

    &lt;VulnDiscussion&gt;Data will be leaving the endpoint to be analyzed by the ATD. Because data could feasibly be intercepted en route, risk of out...
    Rule Medium Severity
  • SRG-APP-000386

    <GroupDescription></GroupDescription>
    Group
  • The configuration of features under Trellix Application Control Options policies Enforce feature control must be documented in the organizations written policy.

    &lt;VulnDiscussion&gt;By default, the Trellix Application Control prevents installation of ActiveX controls on endpoints, enforces memory protectio...
    Rule Medium Severity
  • SRG-APP-000386

    <GroupDescription></GroupDescription>
    Group
  • The organizations written policy must include a process for how whitelisted applications are deemed to be allowed.

    &lt;VulnDiscussion&gt;Enabling application whitelisting without adequate design and organization-specific requirements will either result in an imp...
    Rule Medium Severity
  • SRG-APP-000386

    <GroupDescription></GroupDescription>
    Group
  • The organizations written policy must include procedures for how often the whitelist of allowed applications is reviewed.

    &lt;VulnDiscussion&gt;Enabling application whitelisting without adequate design and organization-specific requirements will either result in an imp...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules