Tanium Server files must be protected from file encryption actions.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-78725 | TANS-SV-000043 | SV-93431r1_rule | Medium |
| Description |
|---|
| Similar to any other host-based applications, the Tanium Server is subject to the restrictions other System-level software may place on an operating environment. Antivirus, Encryption, or other security and management stack software may disallow the Tanium Server from working as expected. https://docs.tanium.com/platform_install/platform_install/reference_host_system_security_exceptions.html. |
| STIG | Date |
|---|---|
| Tanium 7.0 Security Technical Implementation Guide | 2018-07-09 |
Details
| Check Text ( C-78295r1_chk ) |
|---|
| Consult with the Tanium System Administrator to determine the file-level encryption software used on the Tanium Server. Review the settings for the file-level encryption software. Validate exclusions exist that exclude the Tanium program files from being encrypted by the file-level encryption software. If exclusions do not exist, this is a finding. |
| Fix Text (F-85461r2_fix) |
|---|
| Implement excluding policies within the file-level encryption software solution to exclude encryption of the Tanium Server program files. |