Trellix ENS 10.x Local Client STIG Version Comparison

There are 2 differences between versions v2 r1 (July 24, 2024) (the "left" version) and v2 r3 (Jan. 30, 2025) (the "right" version).

Check ENS-CO-000100 was changed between these two versions. Green, underlined text was added, red, struck-out text was removed.

The regular view of the left check and right check may be easier to read.

Title

(U) The Trellix ENS module enforcement status must be enabled.

Check Content

(U) Note: For standalone systems not connected to a network, this check can be marked Not Applicable. Note: For Classified networks, this requirement is Not Applicable. In the system tray, right-click the Trellix icon and select "Trellix Endpoint Security". In the Status window, if "Threat Prevention", "Firewall", or "Web Control" is not set to "Status: Enabled", this is a finding.

Discussion

(U) When the Trellix ENS module is not enforcing policies, the resulting set of policies configured and deployed to endpoints will not be applied. The endpoint system will not be protected.

Fix

(U) In the system tray, right-click the Trellix icon and select "Trellix Endpoint Security". In the Status window, select the product that is not set to "Status: Enabled" and check the box to enable that product.