STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← CM-2 (4) — Unauthorized Software

CCI-000307

Definition

The organization employs an allow-all, deny-by-exception authorization policy to identify software allowed to execute on the information system.

Parent Control

CM-2 (4)Unauthorized SoftwareConfiguration Management

Linked STIG Checks (0)

No STIG checks reference this CCI.