Navigate

AC-18(4)

AC-18(4): Restrict Configurations by Users

Identify and explicitly authorize users allowed to independently configure wireless networking capabilities.

Supplemental

Organizational authorizations to allow selected users to configure wireless networking capabilities are enforced, in part, by the access enforcement mechanisms employed within organizational systems.

CIA Levels
Confidentiality	low
Integrity	low
Availability	unknown

Overlays
Classified, DAF Baseline, Int-A, Int-B, Int-C

CSF Categories
None

Related Controls

The controls below (if any) were marked by NIST as being related to AC-18(4).

Control	Description
SC-7	a: Monitor and control communications at the external managed interfaces to the system and at key internal managed interfaces within the system; b: Implement subnetworks for publicly accessible system components that are [one of "physically"/"logically"] separated from internal organizational networks; and c: Connect to external networks or systems only through managed interfaces consisting of boundary protection devices arranged in accordance with an organizational security and privacy architecture.
SC-15	a: Prohibit remote activation of collaborative computing devices and applications with the following exceptions: [exceptions where remote activation is to be allowed are defined;] ; and b: Provide an explicit indication of use to users physically present at the devices.

Control

Description

SC-7

a: Monitor and control communications at the external managed interfaces to the system and at key internal managed interfaces within the system;

b: Implement subnetworks for publicly accessible system components that are [one of "physically"/"logically"] separated from internal organizational networks; and

c: Connect to external networks or systems only through managed interfaces consisting of boundary protection devices arranged in accordance with an organizational security and privacy architecture.

SC-15

a: Prohibit remote activation of collaborative computing devices and applications with the following exceptions: [exceptions where remote activation is to be allowed are defined;] ; and

b: Provide an explicit indication of use to users physically present at the devices.

Enhancements

The controls below (if any) add on to the requirements of AC-18(4).

Control	Description
No controls

Related CCIs

The CCIs below are tied to AC-18(4).

CCI	Definition
CCI-002324	Identify and explicitly authorize users allowed to independently configure wireless networking capabilities.