STIGQter: STIG Summary: Tanium 7.3 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:

File integrity monitoring of critical executables that Tanium uses must be configured.

DISA Rule

SV-234101r612749_rule

Vulnerability Number

V-234101

Group Title

SRG-APP-000377

Rule Version

TANS-SV-000030

Severity

CAT II

CCI(s)

• CCI-001811 - The information system alerts organization-defined personnel or roles when the unauthorized installation of software is detected.

Weight

10

Fix Recommendation

Implement a file integrity monitoring system to monitor the Tanium critical executable files.

Check Contents

If the site is using Tanium Integrity Monitor, Tanium Integrity Monitor should be used to monitor the file integrity of Tanium critical files.

If Tanium Integrity Monitor is not installed, a third-party file integrity-monitoring tool must be used to monitor Tanium critical executables, defined files within the Tanium Server directory path.

If the file integrity of Tanium critical executables is not monitored, this is a finding.

Vulnerability Number

V-234101

Documentable

False

Rule Version

TANS-SV-000030

Severity Override Guidance

If the site is using Tanium Integrity Monitor, Tanium Integrity Monitor should be used to monitor the file integrity of Tanium critical files.

If Tanium Integrity Monitor is not installed, a third-party file integrity-monitoring tool must be used to monitor Tanium critical executables, defined files within the Tanium Server directory path.

If the file integrity of Tanium critical executables is not monitored, this is a finding.

Check Content Reference

M

Target Key

5259

Comments