Documentation identifying Tanium console users and their respective Computer Group rights must be maintained.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-254885 | TANS-AP-000115 | SV-254885r960792_rule | CCI-000213 | medium |
| Description | ||||
| System access must be reviewed periodically to verify all Tanium users are assigned the appropriate computer groups, with the least privileged access possible to perform assigned tasks. Users who have been removed from the documentation should no longer be configured as a Tanium Console User. | ||||
| STIG | Date | |||
| Tanium 7.x Application on TanOS Security Technical Implementation Guide | 2025-02-11 | |||
Details
Check Text (C-254885r960792_chk)
Consult with the Tanium System Administrator to review the documented list of Tanium users and their respective, approved Computer Group rights.
If the documented list does not have the Tanium users and their respective approved Computer Group rights documented, this is a finding.
Fix Text (F-58442r867554_fix)
Prepare and maintain documentation identifying the Tanium console users and their respective Computer Group rights.