| Control Domain |
Control |
Name |
MetadataId |
Category |
Title |
Owner |
Requirements |
Description |
Info |
Policy# |
| FedRAMP_High_R4 |
IA-4(4) |
FedRAMP_High_R4_IA-4(4) |
FedRAMP High IA-4 (4) |
Identification And Authentication |
Identify User Status |
Shared |
n/a |
The organization manages individual identifiers by uniquely identifying each individual as
[Assignment: organization-defined characteristic identifying individual status].
Supplemental Guidance: Characteristics identifying the status of individuals include, for example, contractors and foreign nationals. Identifying the status of individuals by specific characteristics provides additional information about the people with whom organizational personnel are communicating. For example, it might be useful for a government employee to know that one of the individuals on an email message is a contractor. Related control: AT-2. |
link |
1 |
| FedRAMP_Moderate_R4 |
IA-4(4) |
FedRAMP_Moderate_R4_IA-4(4) |
FedRAMP Moderate IA-4 (4) |
Identification And Authentication |
Identify User Status |
Shared |
n/a |
The organization manages individual identifiers by uniquely identifying each individual as
[Assignment: organization-defined characteristic identifying individual status].
Supplemental Guidance: Characteristics identifying the status of individuals include, for example, contractors and foreign nationals. Identifying the status of individuals by specific characteristics provides additional information about the people with whom organizational personnel are communicating. For example, it might be useful for a government employee to know that one of the individuals on an email message is a contractor. Related control: AT-2. |
link |
1 |
| hipaa |
11109.01q1Organizational.57-01.q |
hipaa-11109.01q1Organizational.57-01.q |
11109.01q1Organizational.57-01.q |
11 Access Control |
11109.01q1Organizational.57-01.q 01.05 Operating System Access Control |
Shared |
n/a |
The organization ensures that redundant user IDs are not issued to other users and that all users are uniquely identified and authenticated for both local and remote access to information systems. |
|
7 |
| hipaa |
1167.01e2System.1-01.e |
hipaa-1167.01e2System.1-01.e |
1167.01e2System.1-01.e |
11 Access Control |
1167.01e2System.1-01.e 01.02 Authorized Access to Information Systems |
Shared |
n/a |
The organization maintains a documented list of authorized users of information assets. |
|
2 |
| NIST_SP_800-53_R4 |
IA-4(4) |
NIST_SP_800-53_R4_IA-4(4) |
NIST SP 800-53 Rev. 4 IA-4 (4) |
Identification And Authentication |
Identify User Status |
Shared |
n/a |
The organization manages individual identifiers by uniquely identifying each individual as
[Assignment: organization-defined characteristic identifying individual status].
Supplemental Guidance: Characteristics identifying the status of individuals include, for example, contractors and foreign nationals. Identifying the status of individuals by specific characteristics provides additional information about the people with whom organizational personnel are communicating. For example, it might be useful for a government employee to know that one of the individuals on an email message is a contractor. Related control: AT-2. |
link |
1 |
| NIST_SP_800-53_R5 |
IA-4(4) |
NIST_SP_800-53_R5_IA-4(4) |
NIST SP 800-53 Rev. 5 IA-4 (4) |
Identification and Authentication |
Identify User Status |
Shared |
n/a |
Manage individual identifiers by uniquely identifying each individual as [Assignment: organization-defined characteristic identifying individual status]. |
link |
1 |