From 42fdb2d03214287af5f60a287342218774828432 Mon Sep 17 00:00:00 2001
From: jkaufman-mitre <jkaufman@mitre.org>
Date: Tue, 9 Jan 2024 09:09:53 -0500
Subject: [PATCH] Swapped Implementation Step #2 in COMMONCONTROLS.11.4v0.1 and
 COMMONCONTROLS.11.5v0.1 per issue 143

---
 ...trols Minimum Viable Secure Configuration Baseline v0.1.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/baselines/Common Controls Minimum Viable Secure Configuration Baseline v0.1.md b/baselines/Common Controls Minimum Viable Secure Configuration Baseline v0.1.md
index 98218f34..eef62831 100644
--- a/baselines/Common Controls Minimum Viable Secure Configuration Baseline v0.1.md	
+++ b/baselines/Common Controls Minimum Viable Secure Configuration Baseline v0.1.md	
@@ -962,12 +962,12 @@ Agencies SHALL NOT allow users to access unconfigured third-party apps.
 
 #### GWS.COMMONCONTROLS.11.4v0.1 Instructions
 1.  Select **Settings.**
-2.  Select **Unconfigured third-party apps** and select **Don't allow users to access any third-party apps**
+2.  Select **Internal apps** and uncheck the box next to **Trust internal apps.**
 3.  Select **SAVE.**
 
 #### GWS.COMMONCONTROLS.11.5v0.1 Instructions
 1.  Select **Settings.**
-2.  Select **Internal apps** and uncheck the box next to **Trust internal apps.**
+2.  Select **Unconfigured third-party apps** and select **Don't allow users to access any third-party apps**
 3.  Select **SAVE.**
 
 It should be noted that admins will have to manually approve each trusted app. The implementation steps for this activity are outlined in Google's [documentation on controlling which third-party & internal apps access GWS data](https://support.google.com/a/answer/7281227) (also listed under Resources).