zydronium/manage.get.gov
1
0
Fork 0
mirror of https://github.com/cisagov/manage.get.gov.git synced 2025-08-03 16:32:15 +02:00
Code Issues Projects Releases Packages Wiki Activity
manage.get.gov/docs/compliance/dist/system-security-plans/ato/ac-17.1.md
Logan McDonald 8d493d2e44
Document things cloud.gov CRM fully supports (#122) 
* document things cloud.gov crm fully supports

* run make assemble
2022-10-13 10:36:44 -04:00

1.1 KiB
Raw Blame History

implementation-status control-origination
c-implemented
c-inherited-cloud-gov

ac-17.1 - [catalog] Monitoring and Control

Control Statement

Employ automated mechanisms to monitor and control remote access methods.

Control guidance

Monitoring and control of remote access methods allows organizations to detect attacks and help ensure compliance with remote access policies by auditing the connection activities of remote users on a variety of system components, including servers, notebook computers, workstations, smart phones, and tablets. Audit logging for remote access is enforced by AU-2 . Audit events are defined in AU-2a.

Control assessment-objective

automated mechanisms are employed to monitor remote access methods; automated mechanisms are employed to control remote access methods.

What is the solution and how is it implemented?

cloud.gov logs all remote access to applications and application instances, and makes those events available for audit.