STIGQter STIGQter: STIG Summary: McAfee Application Control 8.x Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

The configuration of features under McAfee Application Control Options policies Enforce feature control must be documented in the organizations written policy.

DISA Rule

SV-213323r506897_rule

Vulnerability Number

V-213323

Group Title

SRG-APP-000386

Rule Version

MCAC-PO-000108

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Follow the formal change and acceptance process to document any features needing to be enabled.

Check Contents

Consult with the ISSO/ISSM to obtain a copy of the organization's documented policy for application whitelisting.

Review the written policy for how the Solidcore client interface is used by the organization.

Verify the written policy identifies whether additional features are enabled or not under "Enforce feature control" of the McAfee Application Control Options ePO policy.

If the written policy does not identify whether additional features are enabled or not under "Enforce feature control" of the McAfee Application Control Options ePO policy, this is a finding.

Vulnerability Number

V-213323

Documentable

False

Rule Version

MCAC-PO-000108

Severity Override Guidance

Consult with the ISSO/ISSM to obtain a copy of the organization's documented policy for application whitelisting.

Review the written policy for how the Solidcore client interface is used by the organization.

Verify the written policy identifies whether additional features are enabled or not under "Enforce feature control" of the McAfee Application Control Options ePO policy.

If the written policy does not identify whether additional features are enabled or not under "Enforce feature control" of the McAfee Application Control Options ePO policy, this is a finding.

Check Content Reference

M

Target Key

3982

Comments