STIGViewer Trial workspace — loading your subscription…

NIST 800-171 v2

110 security requirements available

3.1.1Basic Requirement

Access Control

Security Requirement

Limit system access to authorized users, processes acting on behalf of authorized users, and devices (including other systems).

Discussion

Access control policies (e.g., identity- or role-based policies, control matrices, and cryptography) control access between active entities or subjects (i.e., users or processes acting on behalf of users) and passive entities or objects (e.g., devices, files, records, and domains) in systems. Access enforcement mechanisms can be employed at the application and service level to provide increased information security. Other systems include systems internal and external to the organization. This requirement focuses on account management for systems and applications. The definition of and enforcement of access authorizations, other than those determined by account type (e.g., privileged verses non-privileged) are addressed in requirement 3.1.2.

Framework
NIST SP 800-171 Rev 2
Family
Access Control
Requirement Type
basic

Related Frameworks

141 paths across 2 frameworks
NIST 800-533 mappings
AC-17
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
AC-2
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
AC-3
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI46 mappings
CCI-000008
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-000010
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-000011
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-000012
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-000063
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-000065
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-000213
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001547
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002110
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002111
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002112
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002113
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002114
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002115
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002116
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002117
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002118
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002119
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002120
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002121
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002122
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002123
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002124
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002125
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002126
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002127
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002128
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002129
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002310
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002311
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002312
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003612
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003613
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003614
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003615
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003616
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003617
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003618
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003619
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003620
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003621
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003622
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003623
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003624
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003625
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003626
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent

Related STIGs

292 STIGs reach this control through 183 CCIs via 800-53 controls AC-17, AC-2, AC-3. Expand a row to see the responsible NICE and O*NET roles.

Operating System — Desktop

5 STIGs

Operating System — Server

28 STIGs
Oracle Linux 8 Security Technical Implementation Guide
V2R82026-02-1330 of 375 findings match
Show 20 more STIGs in this category →
Oracle Linux 9 Security Technical Implementation Guide
V1R52026-02-1724 of 448 findings match
Amazon Linux 2023 Security Technical Implementation Guide
V1R32026-02-2722 of 187 findings match
IBM AIX 7.x Security Technical Implementation Guide
V3R22026-02-0616 of 283 findings match
Solaris 11 X86 Security Technical Implementation Guide
V3R52026-02-198 of 216 findings match
Anduril NixOS Security Technical Implementation Guide
V1R22025-08-196 of 103 findings match

Operating System — Mainframe

65 STIGs
IBM z/OS RACF Security Technical Implementation Guide
V9R82026-03-09105 of 222 findings match
IBM z/OS TSS Security Technical Implementation Guide
V9R82026-03-09102 of 230 findings match
IBM z/OS ACF2 Security Technical Implementation Guide
V9R82026-03-0997 of 225 findings match
Mainframe Product Security Requirements Guide
V3R42025-09-1020 of 194 findings match
CA IDMS Security Technical Implementation Guide
V2R12024-09-1311 of 74 findings match
Show 57 more STIGs in this category →

Operating System — Mobile

17 STIGs
Show 9 more STIGs in this category →

Network Device

67 STIGs
AAA Services Security Requirements Guide
V2R22024-12-0419 of 77 findings match
Cisco ISE NAC Security Technical Implementation Guide
V2R32025-12-1014 of 30 findings match
Riverbed NetIM OS Security Technical Implementation Guide
V1R12025-10-0212 of 154 findings match
Network Device Management Security Requirements Guide
V5R32025-02-1110 of 104 findings match
Network Device Management Security Requirements Guide
V5R42025-09-1010 of 105 findings match
Show 59 more STIGs in this category →
Application Layer Gateway Security Requirements Guide
V2R32025-09-158 of 160 findings match
Cisco ASA VPN Security Technical Implementation Guide
V2R22024-08-226 of 41 findings match
Cisco ISE NDM Security Technical Implementation Guide
V2R32025-12-116 of 53 findings match
Domain Name System (DNS) Security Requirements Guide
V4R22025-12-196 of 119 findings match
Cisco ASA NDM Security Technical Implementation Guide
V2R42025-12-085 of 47 findings match
SDN Controller Security Requirements Guide
22024-05-284 of 34 findings match
Cisco ACI NDM Security Technical Implementation Guide
V1R22025-12-113 of 26 findings match
F5 NGINX Security Technical Implementation Guide
V1R12026-01-072 of 32 findings match
RUCKUS ICX NDM Security Technical Implementation Guide
V1R12025-05-282 of 25 findings match
Firewall Security Requirements Guide
V3R32025-09-221 of 35 findings match

Database

18 STIGs
Database Security Requirements Guide
V4R52026-02-265 of 142 findings match
Show 10 more STIGs in this category →

Web / Application Server

22 STIGs
Application Server Security Requirements Guide
V4R42025-09-1010 of 137 findings match
Web Server Security Requirements Guide
V4R42025-09-109 of 126 findings match
Show 14 more STIGs in this category →

Virtualization / Container

39 STIGs
Virtual Machine Manager Security Requirements Guide
V2R32025-09-1028 of 198 findings match
Kubernetes Security Technical Implementation Guide
V2R62026-02-1224 of 92 findings match
Container Platform Security Requirements Guide
V2R42025-09-1023 of 188 findings match
Show 31 more STIGs in this category →

Cloud / Identity Service

3 STIGs

Endpoint Security Management

22 STIGs
Tanium 7.x Security Technical Implementation Guide
V2R32025-05-1422 of 98 findings match
Central Log Server Security Requirements Guide
V3R42026-02-1211 of 127 findings match
HYCU Protege Security Technical Implementation Guide
V1R22026-03-048 of 55 findings match
Show 14 more STIGs in this category →
BlackBerry UEM Security Technical Implementation Guide
V2R12020-12-042 of 16 findings match
ISEC7 Sphere Security Technical Implementation Guide
V3R12024-08-201 of 34 findings match

Productivity Application

5 STIGs

Uncategorized

1 STIG