STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← CM-7 (4) — Least Functionality

CCI-001767

Definition

Employ an allow-all, deny-by-exception policy to prohibit the execution of unauthorized software programs on the system.

Parent Control

CM-7 (4)Least FunctionalityConfiguration Management

Linked STIG Checks (0)

No STIG checks reference this CCI.