STIGQter: STIG Summary: Tanium 7.3 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:

Tanium endpoint files must be protected from file encryption actions.

DISA Rule

SV-234044r612749_rule

Vulnerability Number

V-234044

Group Title

SRG-APP-000516

Rule Version

TANS-CL-000012

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Implement excluding policies within the file-based encryption software solution to exclude the file level encryption of the Tanium client program files.

Check Contents

Consult with the Tanium System Administrator to determine the file-based encryption software used on the Tanium clients.

Review the settings for the file-based encryption software.

Validate exclusions exist which exclude the Tanium program files from being encrypted by the file-based encryption software.

If exclusions do not exist, this is a finding.

Vulnerability Number

V-234044

Documentable

False

Rule Version

TANS-CL-000012

Severity Override Guidance

Consult with the Tanium System Administrator to determine the file-based encryption software used on the Tanium clients.

Review the settings for the file-based encryption software.

Validate exclusions exist which exclude the Tanium program files from being encrypted by the file-based encryption software.

If exclusions do not exist, this is a finding.

Check Content Reference

M

Target Key

5259

Comments