Overview:
The information system automatically audits account creation, modification, enabling, disabling, and removal actions, and notifies [Assignment: organization-defined personnel or roles].
Related controls: AU-2, AU-12
Action Items:
1) Enable logging and monitoring of account management activities
Related Documents:
1) Logging and Monitoring Policy
2) Identity and Access Management Policy
Additional Guidance:
Moderate FedRAMP-Defined Assignment / Selection Parameters
none
Moderate Additional FedRAMP Requirements and Guidance
none
Article ID: 14
Created: September 25, 2022
Last Updated: September 26, 2022
Author: Matthew Burdick
Online URL: http://www.compliancewiki.org/article/fedramp-automated-audit-actions-ac-2-4-14.html