NIST 800-53 REV 5 • CONFIGURATION MANAGEMENT

CM-6(1)Automated Management, Application, and Verification

Manage, apply, and verify configuration settings for {{ insert: param, cm-06.01_odp.01 }} using {{ insert: param, cm-6.1_prm_2 }}.

CMMC Practice Mapping

No direct CMMC mapping

NIST 800-171 Mapping

No direct NIST 800-171 mapping

Related Controls

Supplemental Guidance

Automated tools (e.g., hardening tools, baseline configuration tools) can improve the accuracy, consistency, and availability of configuration settings information. Automation can also provide data aggregation and data correlation capabilities, alerting mechanisms, and dashboards to support risk-based decision-making within the organization.

Practitioner Notes

This enhancement requires automated tools to manage, apply, and verify your configuration settings — manual spot-checking is not sufficient.

Example 1: Use SCAP Compliance Checker (SCC) to automatically scan systems against STIG benchmarks and generate compliance reports showing which settings pass or fail.

Example 2: Deploy Intune configuration profiles to automatically apply and enforce security settings on all enrolled Windows devices, with compliance reporting in the admin center.

More Configuration Management Controls

CM-1 Policy and Procedures CM-2 Baseline Configuration CM-2(1) Reviews and Updates CM-2(2) Automation Support for Accuracy and Currency