The operating system must prohibit the use or connection of unauthorized hardware components.

STIG ID: SRG-OS-000690-GPOS-00140  |  SRG: SRG-OS-000690 |  Severity: medium |  CCI: CCI-003959 |  Vulnerability Id: V-263651 | 

Vulnerability Discussion

Hardware components provide the foundation for organizational systems and the platform for the execution of authorized software programs. Managing the inventory of hardware components and controlling which hardware components are permitted to be installed or connected to organizational systems is essential to provide adequate security.

Check

Verify the operating system is configured to prohibit the use or connection of unauthorized hardware components.

If the operating system is not configured to prohibit the use or connection of unauthorized hardware components, this is a finding.

Fix

Configure the operating system to prohibit the use or connection of unauthorized hardware components.