Navigate

CCI-001123

CCI-001123 Definition

The information system routes all networked, privileged accesses through a dedicated, managed interface for purposes of access control and auditing.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed designs the information system to route all networked, privileged accesses through a dedicated, managed interface for purposes of access control and auditing.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines network topology diagrams, architecture documentation, or any other documentation identifying network data flow to ensure the organization being inspected/assessed routes all networked, privileged accesses through a dedicated, managed interface for purposes of access control and auditing.

Compelling Evidence

1.) Current network topology diagrams. 2.) Architecture documentation. 3.) Flow diagram.

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-001123.

Control	Description
SC-7 (15)	The information system routes all networked, privileged accesses through a dedicated, managed interface for purposes of access control and auditing.