STIGQter: STIG Summary: Tanium 7.0 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 July 2018:

File integrity monitoring of critical executables that Tanium uses must be configured.

DISA Rule

SV-93411r1_rule

Vulnerability Number

V-78705

Group Title

SRG-APP-000377

Rule Version

TANS-SV-000030

Severity

CAT II

CCI(s)

• CCI-001811 - The information system alerts organization-defined personnel or roles when the unauthorized installation of software is detected.

Weight

10

Fix Recommendation

Implement a file integrity monitoring system to monitor the Tanium critical executable files.

Check Contents

If the site is using Tanium Integrity Monitor, Tanium Integrity Monitor should be used to monitor the file integrity of Tanium critical files.

If Tanium Integrity Monitor is not installed, a third-party file integrity monitoring tool must be used to monitor Tanium critical executables, defined files within the Tanium Server directory path.

If the file integrity of Tanium critical executables is not monitored, this is a finding.

Vulnerability Number

V-78705

Documentable

False

Rule Version

TANS-SV-000030

Severity Override Guidance

If the site is using Tanium Integrity Monitor, Tanium Integrity Monitor should be used to monitor the file integrity of Tanium critical files.

If Tanium Integrity Monitor is not installed, a third-party file integrity monitoring tool must be used to monitor Tanium critical executables, defined files within the Tanium Server directory path.

If the file integrity of Tanium critical executables is not monitored, this is a finding.

Check Content Reference

M

Target Key

3215

Comments