Navigate

CCI-001894

CCI-001894 Definition

The organization defines the subset of privileged users who will be authorized access to the management of audit functionality.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed defines and documents the subset of privileged users to be authorized access to the management of audit functionality. DoD has determined the subset of privileged users is not appropriate to define at the Enterprise level.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documented subset of privileged users to be authorized access to the management of audit functionality, to ensure the organization being inspected/assessed defines and documents the subset of privileged users to be authorized access to the management of audit functionality. DoD has determined the subset of privileged users is not appropriate to define at the Enterprise level.

Compelling Evidence

1.) List of privileged users who will be authorized access to the management of audit functionality

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-001894.

Control	Description
AU-9 (4)	The organization authorizes access to management of audit functionality to only [Assignment: organization-defined subset of privileged users].