Navigate

AU-6(7)

AU-6(7): Permitted Actions

Specify the permitted actions for each [one or more of "system process"/"role"/"user"] associated with the review, analysis, and reporting of audit record information.

Supplemental

Organizations specify permitted actions for system processes, roles, and users associated with the review, analysis, and reporting of audit records through system account management activities. Specifying permitted actions on audit record information is a way to enforce the principle of least privilege. Permitted actions are enforced by the system and include read, write, execute, append, and delete.

CIA Levels
Confidentiality	unknown
Integrity	unknown
Availability	unknown

Overlays
CDS - Access, CDS - Multilevel, CDS - Transfer, Int-A, Int-B, Int-C

CSF Categories
None

Related Controls

The controls below (if any) were marked by NIST as being related to AU-6(7).

Control	Description
No controls

Enhancements

The controls below (if any) add on to the requirements of AU-6(7).

Control	Description
No controls

Related CCIs

The CCIs below are tied to AU-6(7).

CCI	Definition
CCI-001868	Specify the permitted actions for each information system process, role, and/or user associated with the review and analysis of audit information.
CCI-001869	Specify the permitted actions for each information system process, role, and/or user associated with the reporting of audit information.