AC.L2-3.4.2[c] — Configuration Management (Security Configuration Enforcement)Domain: Configuration Management (CM) | Practice: CM.L2-3.4.2 | Objective ID: 3.4.2[c] | Source: NIST SP 800-171 Rev. 2 / CMMC 2.0 Level 2 | Assessment Objective: Any deviations from established security configuration settings are tracked and approved. |
Security Configuration Enforcement tracking and approval control.