800-53|AC-3(2)

Title

DUAL AUTHORIZATION

Description

The information system enforces dual authorization for [Assignment: organization-defined privileged commands and/or other organization-defined actions].

Supplemental

Dual authorization mechanisms require the approval of two authorized individuals in order to execute. Organizations do not require dual authorization mechanisms when immediate responses are necessary to ensure public and environmental safety. Dual authorization may also be known as two-person control.

Reference Item Details

Reference: NIST 800-53 - Security and Privacy Controls for Federal Information Systems and Organizations

Related: CP-9,MP-6

Category: ACCESS CONTROL

Parent Title: ACCESS ENFORCEMENT

Family: ACCESS CONTROL

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
SHPT-00-000100 - SharePoint must enforce dual authorization, based on organizational policies and procedures for organizationally defined privileged commands.	Windows	DISA STIG SharePoint 2010 v1r9

Detections

Analytics