Identify Users and Authenticate Access to System Components

1

Processes and mechanisms for identifying users and authenticating access to system components are defined and understood.

2

User identification and related accounts for users and administrators are strictly managed throughout an account’s lifecycle.

3

Strong authentication for users and administrators is established and managed.

4

Multi-factor authentication (MFA) is implemented to secure access into the scope

5

Multi-factor authentication (MFA) systems are configured to prevent misuse.

6

Use of application and system accounts and associated authentication factors is strictly managed.

PreviousAccess Control MeasuresNextRestrict Access to System Components by Business Need to Know

Last updated