manage.get.gov/docs/compliance/dist/system-security-plans/ato/ac-6.5.md
Logan McDonald 1d3dfdb8d5
Add compliance documentation to source control (#116)
* add initial setup of compliance-trestle
2022-09-14 08:46:43 -04:00

1.3 KiB

implementation-status control-origination
c-not-implemented
c-inherited-cloud-gov
c-inherited-cisa
c-common-control
c-system-specific-control

ac-6.5 - [catalog] Privileged Accounts

Control Statement

Restrict privileged accounts on the system to personnel or roles.

Control guidance

Privileged accounts, including super user accounts, are typically described as system administrator for various types of commercial off-the-shelf operating systems. Restricting privileged accounts to specific personnel or roles prevents day-to-day users from accessing privileged information or privileged functions. Organizations may differentiate in the application of restricting privileged accounts between allowed privileges for local accounts and for domain accounts provided that they retain the ability to control system configurations for key parameters and as otherwise necessary to sufficiently mitigate risk.

Control assessment-objective

privileged accounts on the system are restricted to personnel or roles.


What is the solution and how is it implemented?

Add control implementation description here for control ac-6.5