Documentation identifying Tanium console users, their respective User Groups, Computer Groups, and Roles must be maintained.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-253818 | TANS-CN-000005 | SV-253818r842482_rule | Medium |
| Description |
|---|
| System access should be reviewed periodically to verify that all Tanium users are assigned the appropriate functional role, with the least privileged access possible to perform assigned tasks being the recommended best practice to avoid unauthorized access. |
| STIG | Date |
|---|---|
| Tanium 7.x Security Technical Implementation Guide | 2022-08-24 |
Details
| Check Text ( C-57270r842480_chk ) |
|---|
| Consult with the Tanium system administrator to review the documented list of Tanium users. The users' User Groups, Roles, Computer Groups, and correlated LDAP security groups must be documented. If the documentation does not exist or is missing any Tanium users and their respective User Groups, Roles, Computer Groups, and correlated LDAP security groups, this is a finding. |
| Fix Text (F-57221r842481_fix) |
|---|
| Prepare and maintain documentation identifying the Tanium console users and their respective User Groups, Roles, Computer Groups, and associated LDAP security groups. |