STIGQter: STIG Summary: Tanium 7.3 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:

Documentation identifying Tanium console users, their respective functional roles, and computer groups must be maintained.

DISA Rule

SV-234051r612749_rule

Vulnerability Number

V-234051

Group Title

SRG-APP-000033

Rule Version

TANS-CN-000005

Severity

CAT II

CCI(s)

• CCI-000213 - The information system enforces approved authorizations for logical access to information and system resources in accordance with applicable access control policies.

Weight

10

Fix Recommendation

Prepare and maintain documentation identifying the Tanium console users and their respective User Roles and AD security groups.

Check Contents

Consult with the Tanium System Administrator to review the documented list of Tanium users. The users' functional roles, computer groups, and correlated Active Directory security groups must be documented.

If the site does not have the Tanium users and their respective functional roles, computer groups, and correlated Active Directory security groups documented, this is a finding.

Vulnerability Number

V-234051

Documentable

False

Rule Version

TANS-CN-000005

Severity Override Guidance

Consult with the Tanium System Administrator to review the documented list of Tanium users. The users' functional roles, computer groups, and correlated Active Directory security groups must be documented.

If the site does not have the Tanium users and their respective functional roles, computer groups, and correlated Active Directory security groups documented, this is a finding.

Check Content Reference

M

Target Key

5259

Comments