STIGViewer Trial workspace — loading your subscription…

NIST 800-171 v2

110 security requirements available

3.13.3Derived Requirement

System and Communications Protection

Security Requirement

Separate user functionality from system management functionality.

Discussion

System management functionality includes functions necessary to administer databases, network components, workstations, or servers, and typically requires privileged user access. The separation of user functionality from system management functionality is physical or logical. Organizations can implement separation of system management functionality from user functionality by using different computers, different central processing units, different instances of operating systems, or different network addresses; virtualization techniques; or combinations of these or other methods, as appropriate. This type of separation includes web administrative interfaces that use separate authentication methods for users of any other system resources. Separation of system and user functionality may include isolating administrative interfaces on different domains and with additional access controls.

Framework
NIST SP 800-171 Rev 2
Family
System and Communications Protection
Requirement Type
derived

Related Frameworks

2 paths across 2 frameworks
NIST 800-531 mapping
SC-2
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-001082
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent

Related STIGs

60 STIGs reach this control through 3 CCIs via 800-53 control SC-2. Expand a row to see the responsible NICE and O*NET roles.

Operating System — Desktop

1 STIG

Operating System — Server

6 STIGs

Operating System — Mainframe

3 STIGs
Mainframe Product Security Requirements Guide
V3R42025-09-101 of 194 findings match

Network Device

1 STIG
SDN Controller Security Requirements Guide
22024-05-281 of 34 findings match

Database

14 STIGs
Database Security Requirements Guide
V4R52026-02-261 of 142 findings match
Show 6 more STIGs in this category →

Web / Application Server

16 STIGs
Web Server Security Requirements Guide
V4R42025-09-103 of 126 findings match
Show 8 more STIGs in this category →
Application Server Security Requirements Guide
V4R42025-09-101 of 137 findings match

Virtualization / Container

15 STIGs
Container Platform Security Requirements Guide
V2R42025-09-101 of 188 findings match
Kubernetes Security Technical Implementation Guide
V2R62026-02-121 of 92 findings match
Virtual Machine Manager Security Requirements Guide
V2R32025-09-101 of 198 findings match
Show 7 more STIGs in this category →

Endpoint Security Management

3 STIGs

Uncategorized

1 STIG