NIST 800-53 Rev 5
424 controls available
Privileged Commands and Access
Access Control
Control Statement
Authorize the execution of privileged commands and access to security-relevant information via remote access only in a format that provides assessable evidence and for the following needs: {{ insert: param, ac-17.4_prm_1 }} ; and Document the rationale for remote access in the security plan for the system.
Discussion
Remote access to systems represents a significant potential vulnerability that can be exploited by adversaries. As such, restricting the execution of privileged commands and access to security-relevant information via remote access reduces the exposure of the organization and the susceptibility to threats by adversaries to the remote access capability.
- Framework
- NIST SP 800-53 Rev 5
- Family
- Access Control
- Baselines
- moderate, high
Related Frameworks
7 paths across 2 frameworks
Related Frameworks
NIST 800-1711 mapping
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI6 mappings
- DISA · 2025-01-23 · disa_cci_list · equivalent
- DISA · 2025-01-23 · disa_cci_list · equivalent
- DISA · 2025-01-23 · disa_cci_list · equivalent
- DISA · 2025-01-23 · disa_cci_list · equivalent
- DISA · 2025-01-23 · disa_cci_list · equivalent
- DISA · 2025-01-23 · disa_cci_list · equivalent
Related STIGs
156 STIGs reach this control through 25 CCIs. Expand a row to see the responsible NICE and O*NET roles.