Navigate

CCI-001944

CCI-001944 Definition

The organization defines the information system services for which single sign-on capability will be provided.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed defines and documents any services (e.g., websites) for which a single sign-on capability is provided. DoD has determined the system services are not appropriate to define at the Enterprise level.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documented system services to ensure the organization being inspected/assessed defines any services (e.g., websites) for which a single sign-on capability is provided. DoD has determined the system services are not appropriate to define at the Enterprise level.

Compelling Evidence

1.) List of services for which a single sign-on capability is allowed

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-001944.

Control	Description
IA-2 (10)	The information system provides a single sign-on capability for [Assignment: organization-defined information system accounts and services].