STIGQter STIGQter: STIG Summary: Tanium 6.5 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 28 Oct 2016: Tanium endpoint files must be protected from antivirus actions.

DISA Rule

SV-81475r1_rule

Vulnerability Number

V-66985

Group Title

SRG-APP-000516

Rule Version

TANS-CL-000008

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Implement exclusion policies within the antivirus software solution to exclude the scanning of Tanium program files.

Check Contents

Consult with the Tanium System Administrator to determine the antivirus used on the Tanium clients.

Review the settings of the antivirus software.

Validate exclusions exist which exclude the Tanium program files from being scanned by antivirus.

If exclusions do not exist, this is a finding.

Vulnerability Number

V-66985

Documentable

False

Rule Version

TANS-CL-000008

Severity Override Guidance

Consult with the Tanium System Administrator to determine the antivirus used on the Tanium clients.

Review the settings of the antivirus software.

Validate exclusions exist which exclude the Tanium program files from being scanned by antivirus.

If exclusions do not exist, this is a finding.

Check Content Reference

M

Target Key

2965

Comments