Navigate

CCI-001897

CCI-001897 Definition

Defines the subset of privileged users or roles who will be authorized read-only access to audit information.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed defines and documents the subset of privileged users who will be authorized read-only access to audit information. DoD has determined that the subset of privileged users is not appropriate to define at the Enterprise level.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the subset of privileged users who will be authorized read-only access to audit information, to ensure the organization being inspected/assessed defines and documents subset of privileged users who will be authorized read-only access to audit information. DoD has determined that the subset of privileged users is not appropriate to define at the Enterprise level.

Compelling Evidence

1.) List of privileged users who will be authorized access to the management of audit functionality

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-001897.

Control	Description
AU-9(6)	The organization authorizes read-only access to audit information to [organization-defined subset of privileged users].