800-53|AC-2(1)

Title

AUTOMATED SYSTEM ACCOUNT MANAGEMENT

Description

The organization employs automated mechanisms to support the management of information system accounts.

Supplemental

The use of automated mechanisms can include, for example: using email or text messaging to automatically notify account managers when users are terminated or transferred; using the information system to monitor account usage; and using telephonic notification to report atypical system account usage.

Reference Item Details

Category: ACCESS CONTROL

Parent Title: ACCOUNT MANAGEMENT

Family: ACCESS CONTROL

Baseline Impact: MODERATE,HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.1 Enable 'aaa new-model'CiscoCIS Cisco IOS 17 L1 v1.0.0
1.1.1 Enable 'aaa new-model'CiscoCIS Cisco IOS 16 L1 v1.1.2
1.1.1 Enable 'aaa new-model'CiscoCIS Cisco IOS 15 L1 v4.1.1
1.1.1 Ensure 'Enforce password history' is set to '24 or more password(s)'WindowsCIS Microsoft Windows Server 2016 DC L1 v1.3.0
1.1.1 Ensure 'Enforce password history' is set to '24 or more password(s)'WindowsCIS Windows Server 2012 R2 DC L1 v2.5.0
1.1.1 Ensure 'Enforce password history' is set to '24 or more password(s)'WindowsCIS Microsoft Windows Server 2016 MS L1 v1.3.0
1.1.1 Ensure 'Enforce password history' is set to '24 or more password(s)'WindowsCIS Microsoft Windows Server 2019 STIG DC STIG v1.0.1
1.1.1 Ensure 'Enforce password history' is set to '24 or more password(s)'WindowsCIS Microsoft Windows Server 2019 STIG MS STIG v1.0.1
1.1.1 Ensure 'Enforce password history' is set to '24 or more password(s)'WindowsCIS Microsoft Windows Server 2016 STIG DC L1 v1.1.0
1.1.1 Ensure 'Enforce password history' is set to '24 or more password(s)'WindowsCIS Microsoft Windows Server 2016 STIG DC STIG v1.1.0
1.1.1 Ensure 'Enforce password history' is set to '24 or more password(s)'WindowsCIS Microsoft Windows Server 2016 STIG MS STIG v1.1.0
1.1.1 Ensure 'Enforce password history' is set to '24 or more password(s)'WindowsCIS Microsoft Windows Server 2019 STIG DC L1 v1.0.1
1.1.1 Ensure 'Enforce password history' is set to '24 or more password(s)'WindowsCIS Microsoft Windows Server 2016 STIG MS L1 v1.1.0
1.1.1 Ensure 'Enforce password history' is set to '24 or more password(s)'WindowsCIS Microsoft Windows Server 2019 STIG MS L1 v1.0.1
1.1.1 Ensure 'Enforce password history' is set to '24 or more password(s)'WindowsCIS Windows Server 2012 R2 MS L1 v2.5.0
1.1.1 Ensure 'Enforce password history' is set to '24 or more passwords'WindowsCIS Microsoft Intune for Windows 10 Release 2004 v1.0.1 L1 + NG
1.1.1 Ensure 'Enforce password history' is set to '24 or more passwords'WindowsCIS Microsoft Intune for Windows 10 Release 2004 v1.0.1 L1
1.1.1 Ensure 'Enforce password history' is set to '24 or more passwords'WindowsCIS Microsoft Intune for Windows 10 Release 2004 v1.0.1 L1 + BL
1.1.1 Ensure 'Enforce password history' is set to '24 or more passwords'WindowsCIS Microsoft Intune for Windows 10 Release 2004 v1.0.1 L1 + BL + NG
1.1.2 Enable 'aaa authentication login'CiscoCIS Cisco IOS 17 L1 v1.0.0
1.1.2 Enable 'aaa authentication login'CiscoCIS Cisco IOS 16 L1 v1.1.2
1.1.2 Enable 'aaa authentication login'CiscoCIS Cisco IOS 15 L1 v4.1.1
1.1.3 Enable 'aaa authentication enable default'CiscoCIS Cisco IOS 15 L1 v4.1.1
1.1.3 Enable 'aaa authentication enable default'CiscoCIS Cisco IOS 17 L1 v1.0.0
1.1.3 Enable 'aaa authentication enable default'CiscoCIS Cisco IOS 16 L1 v1.1.2
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Windows Server 2012 R2 MS L1 v2.5.0
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Windows Server 2012 R2 DC L1 v2.5.0
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Microsoft Windows Server 2019 STIG DC STIG v1.0.1
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Microsoft Windows Server 2016 DC L1 v1.3.0
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Microsoft Windows Server 2016 MS L1 v1.3.0
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Microsoft Windows Server 2019 STIG DC L1 v1.0.1
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Microsoft Windows Server 2019 STIG MS L1 v1.0.1
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Microsoft Windows Server 2019 STIG MS STIG v1.0.1
1.1.4 Ensure 'Minimum password length' is set to '14 or more characters'WindowsCIS Microsoft Intune for Windows 10 Release 2004 v1.0.1 L1 + NG
1.1.4 Ensure 'Minimum password length' is set to '14 or more characters'WindowsCIS Microsoft Intune for Windows 10 Release 2004 v1.0.1 L1
1.1.4 Ensure 'Minimum password length' is set to '14 or more characters'WindowsCIS Microsoft Intune for Windows 10 Release 2004 v1.0.1 L1 + BL
1.1.4 Ensure 'Minimum password length' is set to '14 or more characters'WindowsCIS Microsoft Intune for Windows 10 Release 2004 v1.0.1 L1 + BL + NG
1.1.4 Set 'login authentication for 'line con 0'CiscoCIS Cisco IOS 15 L1 v4.1.1
1.1.4 Set 'login authentication for 'line tty'CiscoCIS Cisco IOS 17 L1 v1.0.0
1.1.5 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Microsoft Windows Server 2016 STIG DC L1 v1.1.0
1.1.5 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Microsoft Windows Server 2016 STIG DC STIG v1.1.0
1.1.5 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Microsoft Windows Server 2016 STIG MS STIG v1.1.0
1.1.5 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Microsoft Windows Server 2016 STIG MS L1 v1.1.0
1.1.5 Ensure 'Password must meet complexity requirements' is set to 'Enabled'WindowsCIS Windows Server 2012 R2 DC L1 v2.5.0
1.1.5 Ensure 'Password must meet complexity requirements' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2016 MS L1 v1.3.0
1.1.5 Ensure 'Password must meet complexity requirements' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2019 STIG MS L1 v1.0.1
1.1.5 Ensure 'Password must meet complexity requirements' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2016 DC L1 v1.3.0
1.1.5 Ensure 'Password must meet complexity requirements' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2019 STIG DC L1 v1.0.1
1.1.5 Ensure 'Password must meet complexity requirements' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2019 STIG DC STIG v1.0.1
1.1.10 Use Just In Time privileged access to Office 365 rolesmicrosoft_azureCIS Microsoft 365 Foundations E5 L2 v1.4.0