TickYouOff
Back
🔒

Chrome STIG Prep

Medium 15 items · 1 hour
testuser's avatar
testuser Published 4 months ago

A practical prep checklist for IT staff and admins to gather resources and test Google Chrome STIG content before deployment. Use this to download official artifacts, verify integrity, import policies, and run a lab scan.

Source: https://ncp.nist.gov/checklist/483

Progress
0 / 15
  1. Download SCAP 1.3 content (Google Chrome STIG) — Grab the official SCAP 1.3 package for automated scanning.
  2. Download Standalone XCCDF (Google Chrome STIG) — Get the XCCDF benchmark for manual or scanner import.
  3. Download Intune policy pack for Chrome — Retrieve the Intune policy definitions provided by DISA.
  4. Download Group Policy Objects (GPOs) for Chrome — Download the GPO templates and configured policy files.
  5. Download SCC / automated content for compliance tools — Grab SCC content for your automated compliance platform.
  6. Verify SHA checksums for all downloaded files — Confirm integrity using provided SHA values.
  7. Review the Google Chrome STIG document — Read requirements, SRG relationships, and applicability notes.
  8. Import GPOs into a test domain — Load GPO files into a lab AD environment for validation.
  9. Apply GPO to a pilot OU — Target a small pilot OU to validate effects before wide rollout.
  10. Verify GPO settings applied on pilot machines — Check registry/policy settings on sample endpoints.
  11. Import Intune policies into a test tenant — Load and review Intune policy packs for assigned groups.
  12. Import SCAP/XCCDF into your compliance scanner — Prepare the scanner to run Chrome STIG checks (XCCDF/SCAP).
  13. Run a lab scan using SCAP/XCCDF and review findings — Identify and note deviations before production rollout.
  14. Document a baseline configuration and rollback plan — Record current settings and a clear rollback procedure.
  15. Subscribe to DISA/STIG updates and note POC email — Track future updates; keep DISA contact email for comments.
Sign in to save
📝 My Notes