NIST 800-53 REV 5 • CONFIGURATION MANAGEMENT

CM-2(3)Retention of Previous Configurations

Retain {{ insert: param, cm-02.03_odp }} of previous versions of baseline configurations of the system to support rollback.

CMMC Practice Mapping

No direct CMMC mapping

NIST 800-171 Mapping

No direct NIST 800-171 mapping

Related Controls

No related controls listed

Supplemental Guidance

Retaining previous versions of baseline configurations to support rollback include hardware, software, firmware, configuration files, configuration records, and associated documentation.

Practitioner Notes

This enhancement requires you to keep previous versions of your baseline configurations so you can roll back if a change causes problems.

Example 1: Store all versions of your GPO configurations in a version-controlled repository like Git so you can compare changes and revert to previous settings if needed.

Example 2: Before applying STIG updates, export and archive the current Intune configuration profiles so you have a restore point if the new settings cause issues.

More Configuration Management Controls

CM-1 Policy and Procedures CM-2 Baseline Configuration CM-2(1) Reviews and Updates CM-2(2) Automation Support for Accuracy and Currency