STIGQter STIGQter: STIG Summary: McAfee Application Control 8.x Security Technical Implementation Guide Version: 1 Release: 5 Benchmark Date: 26 Jul 2019: The Solidcore client Command Line Interface (CLI) must be in lockdown mode.

DISA Rule

SV-88885r2_rule

Vulnerability Number

V-74211

Group Title

SRG-APP-000383

Rule Version

MCAC-TE-000101

Severity

CAT I

CCI(s)

Weight

10

Fix Recommendation

From the ePO server console System Tree, select the "Systems" tab.

Select "This Group and All Subgroups".
Select the asset.
Select "Actions".
Select "Agent".
Click "Actions".
Select "New Client Task Assignment" to open the Client Task Assignment Builder page.

Select the "Solidcore 8.x product", "SC: Change Local CLI Access" task type, then click "Create New Task" to open the Client Task Catalog page.

Change "CLI status" to "Restrict".

Click "Save".

Check Contents

Determine CLI status.

Access the system being reviewed. From an operating system command line, execute the following command:

sadmin status <enter>

If the status for CLI is "Allowed" or "Recovered", this is a finding.

Vulnerability Number

V-74211

Documentable

False

Rule Version

MCAC-TE-000101

Severity Override Guidance

Determine CLI status.

Access the system being reviewed. From an operating system command line, execute the following command:

sadmin status <enter>

If the status for CLI is "Allowed" or "Recovered", this is a finding.

Check Content Reference

M

Target Key

3143

Comments