800-53|CM-11(1)

ALERTS FOR UNAUTHORIZED INSTALLATIONS

The information system alerts [Assignment: organization-defined personnel or roles] when the unauthorized installation of software is detected.

Reference: NIST 800-53 - Security and Privacy Controls for Federal Information Systems and Organizations

Related: CA-7,SI-4

Category: CONFIGURATION MANAGEMENT

Parent Title: USER-INSTALLED SOFTWARE

Family: CONFIGURATION MANAGEMENT

Name	Plugin	Audit Name
1.136 WN16-CC-000470	Windows	CIS Microsoft Windows Server 2016 STIG v4.0.0 DC CAT II
1.136 WN16-CC-000470	Windows	CIS Microsoft Windows Server 2016 STIG v4.0.0 MS CAT II
1.137 WN19-CC-000440	Windows	CIS Microsoft Windows Server 2019 STIG v4.0.0 MS CAT II
1.137 WN19-CC-000440	Windows	CIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT II
1.137 WN22-CC-000440	Windows	CIS Microsoft Windows Server 2022 STIG v3.0.0 DC CAT II
1.137 WN22-CC-000440	Windows	CIS Microsoft Windows Server 2022 STIG v3.0.0 MS CAT II
1.166 WN10-CC-000320	Windows	CIS Microsoft Windows 10 STIG v1.0.0 CAT II
18.9.85.3 Ensure 'Prevent Internet Explorer security prompt for Windows Installer scripts' is set to 'Disabled'	Windows	CIS Windows 7 Workstation Level 2 v3.2.0
18.9.85.3 Ensure 'Prevent Internet Explorer security prompt for Windows Installer scripts' is set to 'Disabled'	Windows	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0
DKER-EE-003460 - The Docker Enterprise log aggregation/SIEM systems must be configured to send an alert the ISSO/ISSM when unauthorized software is installed.	Unix	DISA STIG Docker Enterprise 2.x Linux/Unix v2r2