Navigate

CCI-001561

CCI-001561 Definition

The organization defines managed access control points for remote access to the information system.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed defines and documents managed access control points for remote access to the information system.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documented managed access points to ensure the organization being inspected/assessed defines managed access control points for remote access to the information system.

Compelling Evidence

1.) Signed and dated documentation (ex. network flow chart, network diagram, hardware inventory sheet and/or other document that will list all remote access points) that defines managed access control points for remote access to the information system.

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-001561.

Control	Description
AC-17 (3)	The information system routes all remote accesses through [Assignment: organization-defined number] managed network access control points.