Navigate

AU-9 (4)

AU-9 (4): Access By Subset Of Privileged Users

The organization authorizes access to management of audit functionality to only [Assignment: organization-defined subset of privileged users].

Supplemental

Individuals with privileged access to an information system and who are also the subject of an audit by that system, may affect the reliability of audit information by inhibiting audit activities or modifying audit records. This control enhancement requires that privileged access be further defined between audit-related privileges and other privileges, thus limiting the users with audit-related privileges.

CIA Levels
Confidentiality	low
Integrity	low
Availability	unknown

Overlays
None

Related Controls

The controls below (if any) were marked by NIST as being related to AU-9 (4).

Control	Description
AC-5	The organization: AC-5a.: Separates [Assignment: organization-defined duties of individuals]; AC-5b.: Documents separation of duties of individuals; and AC-5c.: Defines information system access authorizations to support separation of duties.

Enhancements

The controls below (if any) add on to the requirements of AU-9 (4).

Control	Description
No controls

Related CCIs

The CCIs below are tied to AU-9 (4).

CCI	Definition
CCI-001351	The organization authorizes access to management of audit functionality to only an organization-defined subset of privileged users.
CCI-001894	The organization defines the subset of privileged users who will be authorized access to the management of audit functionality.