STIGQter STIGQter: STIG Summary: McAfee Application Control 8.x Security Technical Implementation Guide Version: 1 Release: 5 Benchmark Date: 26 Jul 2019: The configuration of features under McAfee Application Control Options policies Enforce feature control must be documented in the organizations written policy.

DISA Rule

SV-88877r1_rule

Vulnerability Number

V-74203

Group Title

SRG-APP-000386

Rule Version

MCAC-PO-000108

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Follow the formal change and acceptance process to document any features needing to be enabled.

Check Contents

Consult with the ISSO/ISSM to obtain a copy of the organization's documented policy for application whitelisting.

Review the written policy for how the Solidcore client interface is used by the organization.

Verify the written policy identifies whether additional features are enabled or not under "Enforce feature control" of the McAfee Application Control Options ePO policy.

If the written policy does not identify whether additional features are enabled or not under "Enforce feature control" of the McAfee Application Control Options ePO policy, this is a finding.

Vulnerability Number

V-74203

Documentable

False

Rule Version

MCAC-PO-000108

Severity Override Guidance

Consult with the ISSO/ISSM to obtain a copy of the organization's documented policy for application whitelisting.

Review the written policy for how the Solidcore client interface is used by the organization.

Verify the written policy identifies whether additional features are enabled or not under "Enforce feature control" of the McAfee Application Control Options ePO policy.

If the written policy does not identify whether additional features are enabled or not under "Enforce feature control" of the McAfee Application Control Options ePO policy, this is a finding.

Check Content Reference

M

Target Key

3143

Comments