πΌ SA-4(5) System, Component, and Service Configurations (H)
- Contextual name: πΌ SA-4(5) System, Component, and Service Configurations (H)
- ID:
/frameworks/fedramp-high-security-controls/sa/04/05 - Located in: πΌ SA-4 Acquisition Process (L)(M)(H)
Descriptionβ
Require the developer of the system, system component, or system service to:
(a) Deliver the system, component, or service with [FedRAMP Assignment: The service provider shall use the DoD STIGs to establish configuration settings; Center for Internet Security up to Level 2 (CIS Level 2) guidelines shall be used if STIGs are not available; Custom baselines shall be used if CIS is not available.] implemented; and
(b) Use the configurations as the default for any subsequent system, component, or service reinstallation or upgrade.
Similarβ
- Sections
/frameworks/nist-sp-800-53-r5/sa/04/05
- Internal
- ID:
dec-c-63fb999a
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST SP 800-53 Revision 5 β πΌ SA-4(5) Acquisition Process _ System, Component, and Service Configurations |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|