💼 CM-11 User-installed Software (L)(M)(H)
- ID:
/frameworks/fedramp-high-security-controls/cm/11
Description
a. Establish [Assignment: organization-defined policies] governing the installation of software by users;
b. Enforce software installation policies through the following methods: [Assignment: organization-defined methods]; and
c. Monitor policy compliance [FedRAMP Assignment: Continuously (via CM-7 (5))].
Similar
- Sections
/frameworks/nist-sp-800-53-r5/cm/11
- Internal
- ID:
dec-c-cf200683
- ID:
Similar Sections (Take Policies From)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 NIST SP 800-53 Revision 5 → 💼 CM-11 User-installed Software | 3 | no data |
Similar Sections (Give Policies To)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 FedRAMP Low Security Controls → 💼 CM-11 User-installed Software (L)(M)(H) | 4 | no data | |||
| 💼 FedRAMP Moderate Security Controls → 💼 CM-11 User-installed Software (L)(M)(H) | 4 | no data |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|
Policies (4)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ AWS RDS Instance Auto Minor Version Upgrade is not enabled🟠🟢 | 1 | 🟠 x1, 🟢 x6 | no data |
| 🛡️ Azure App Service does not run the latest Java version🟢⚪ | 🟢 x2, ⚪ x1 | no data | |
| 🛡️ Azure App Service does not run the latest PHP version🟢⚪ | 🟢 x2, ⚪ x1 | no data | |
| 🛡️ Azure App Service does not run the latest Python version🟢⚪ | 🟢 x2, ⚪ x1 | no data |
Internal Rules
| Rule | Policies | Flags |
|---|---|---|
| ✉️ dec-x-879aa996 | 1 | |
| ✉️ dec-x-215302da | 1 | |
| ✉️ dec-x-a20e54a0 | 1 | |
| ✉️ dec-x-f82b9849 | 1 |