FedRAMP Disconnect / Disable Access AC-17 (9)

Overview:
The organization provides the capability to expeditiously disconnect or disable remote access to the information system within [Assignment: organization-defined time period].

Supplemental Guidance:
This control enhancement requires organizations to have the capability to rapidly disconnect current users remotely accessing the information system and/or disable further remote access. The speed of disconnect or disablement varies based on the criticality of missions/business functions and the need to eliminate immediate or future remote access to organizational information systems.

Action Items:
1) Ensure a method to disconnect a remote connected user is in place

Related Documents:
1) Access Control Policy

2) Network Security Policy

3) Remote Access Policy

Additional Guidance:
Moderate FedRAMP-Defined Assignment / Selection Parameters
AC-17 (9) [fifteen (15) minutes]

Moderate Additional FedRAMP Requirements and Guidance
none