Skip to main content

πŸ’Ό CM-11 User-installed Software (L)(M)(H)

  • Contextual name: πŸ’Ό CM-11 User-installed Software (L)(M)(H)
  • ID: /frameworks/fedramp-high-security-controls/cm/11
  • Located in: πŸ’Ό Configuration Management

Description​

a. Establish [Assignment: organization-defined policies] governing the installation of software by users;

b. Enforce software installation policies through the following methods: [Assignment: organization-defined methods]; and

c. Monitor policy compliance [FedRAMP Assignment: Continuously (via CM-7 (5))].

Similar​

  • Sections
    • /frameworks/nist-sp-800-53-r5/cm/11
  • Internal
    • ID: dec-c-cf200683

Similar Sections (Take Policies From)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό NIST SP 800-53 Revision 5 β†’ πŸ’Ό CM-11 User-installed Software3

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό FedRAMP Low Security Controls β†’ πŸ’Ό CM-11 User-installed Software (L)(M)(H)4
πŸ’Ό FedRAMP Moderate Security Controls β†’ πŸ’Ό CM-11 User-installed Software (L)(M)(H)4

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags

Policies (4)​

PolicyLogic CountFlags
πŸ“ AWS RDS Instance Auto Minor Version Upgrade is not enabled 🟠🟒1🟠 x1, 🟒 x6
πŸ“ Azure App Service does not run the latest Java version 🟒🟒 x3
πŸ“ Azure App Service does not run the latest PHP version 🟒🟒 x3
πŸ“ Azure App Service does not run the latest Python version 🟒🟒 x3

Internal Rules​

RulePoliciesFlags
βœ‰οΈ dec-x-879aa9961
βœ‰οΈ dec-x-215302da1
βœ‰οΈ dec-x-a20e54a01
βœ‰οΈ dec-x-f82b98491