STIGs RMF Controls Compare

STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago

Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.

← All Controls

CM-2 (4)

Configuration ManagementRev 5Withdrawn

Unauthorized Software

This control has been withdrawn and incorporated into: CM-7 (4)

CCI Identifiers (3)

CCI-000305The organization develops a list of software programs not authorized to execute on the information system.CCI-000306The organization maintains the list of software programs not authorized to execute on the information system.CCI-000307The organization employs an allow-all, deny-by-exception authorization policy to identify software allowed to execute on the information system.

Linked STIG Checks (7)

Across 1 STIGs. Click to expand.