SA-6 — Software Usage Restrictions

This control (withdrawn and incorporated into CM-10 and SI-7) addresses software usage restrictions — ensuring your organization only uses properly licensed software and does not use software in ways that violate licensing agreements or create security risks.

Example 1: Maintain a software license inventory that tracks every software product, the number of licenses owned, the number deployed, and the license terms. Use a software asset management tool to automatically detect unlicensed installations and flag them for remediation.

Example 2: In Microsoft Intune, use the Discovered Apps feature to see all software installed across your managed endpoints. Compare this against your approved software list and license inventory. Block or remove any unapproved or unlicensed software through Intune compliance policies.