Skip to Content

 Identification and Authentication (IA)

Identification and Authorization Non-Organizational Users IA-8

Fri, Sep 30, 2022 0 0 405 0/5 (0 Vote)

Overview:The information system uniquely identifies and authenticates non-organizational users (or processes acting on behalf of non-organizational users). Supplemental Guidance:Non-organizational users include information system users other than... Read More

Identifier Management IA-4

Fri, Sep 30, 2022 0 0 434 0/5 (0 Vote)

Overview:The organization manages information system identifiers by:a. Receiving authorization from [Assignment: organization-defined personnel or roles] to assign an individual, group, role, or device identifier;b. Selecting an identifier that... Read More

Identify User Status IA-4(4)

Fri, Sep 30, 2022 0 0 404 0/5 (0 Vote)

Overview:The organization manages individual identifiers by uniquely identifying each individual as [Assignment: organization-defined characteristic identifying individual status]. Supplemental Guidance:Characteristics identifying the status of... Read More

In-Person and Trusted Third-Party Registration IA-5(3)

Fri, Sep 30, 2022 0 0 368 0/5 (0 Vote)

Overview:The organization requires that the registration process to receive [Assignment: organization- defined types of and/or specific authenticators] be conducted [Selection: in person; by a trusted third party] before [Assignment: organization... Read More

Incident Response Testing IR-3

Fri, Sep 30, 2022 0 0 406 0/5 (0 Vote)

Overview:The organization tests the incident response capability for the information system [Assignment: organization-defined frequency] using [Assignment: organization-defined tests] to determine the incident response effectiveness and documents the... Read More

Local Access to Privileged Accounts IA-2(3)

Fri, Sep 30, 2022 0 0 402 0/5 (0 Vote)

Overview:The information system implements multifactor authentication for local access to privileged accounts. Supplemental Guidance: Related control: AC-6. Action Items:1) Implement MFA for local access to privileged accounts   Related Documents:1)... Read More

Network Access to Non-Privileged Accounts IA-2(2)

Fri, Sep 30, 2022 0 0 381 0/5 (0 Vote)

Overview:The information system implements multifactor authentication for network access to non- privileged accounts. Action Items:1) Implement MFA for network access to non-privileged accounts   Related Documents:1) Identity and Access Management... Read More

Network Access to Privileged Accounts IA-2(1)

Fri, Sep 30, 2022 0 0 415 0/5 (0 Vote)

Overview:The information system implements multifactor authentication for network access to privileged accounts. Supplemental Guidance: Related control: AC-6. Action Items:1) Implement MFA for network access to privileged accounts   Related... Read More

No Embedded Unencrypted Static Authenticators IA-5(7)

Fri, Sep 30, 2022 0 0 460 0/5 (0 Vote)

Overview:The organization ensures that unencrypted static authenticators are not embedded in applications or access scripts or stored on function keys. Supplemental Guidance:Organizations exercise caution in determining whether embedded or stored... Read More

Results 11 - 20 of 28