9/11/2023 0 Comments Ac 3 mobileOrganizations may choose to define access privileges or other attributes by account, by type of account, or a combination of both. Users requiring administrative privileges on information system accounts receive additional scrutiny by appropriate organizational personnel (e.g., system owner, mission/business owner, or chief information security officer) responsible for approving such accounts and privileged access. The identification of authorized users of the information system and the specification of access privileges reflects the requirements in other security controls in the security plan. Some of the account management requirements listed above can be implemented by organizational information systems. Information system account types include, for example, individual, shared, group, system, guest/anonymous, emergency, developer/manufacturer/vendor, temporary, and service. Establishes a process for reissuing shared/group account credentials (if deployed) when individuals are removed from the group.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |