AC-06(01) Authorize Access to Security Functions

Authorize access for ac-06.01_odp.01 to:

(a) ac-6.1_prm_2 ; and

(b) ac-06.01_odp.05.

Parameter ID Definition
ac-6.1_prm_2 organization-defined security functions (deployed in hardware, software, and firmware)
ac-06.01_odp.01 individuals and roles
ac-06.01_odp.02 security functions (deployed in hardware)
ac-06.01_odp.03 security functions (deployed in software)
ac-06.01_odp.04 security functions (deployed in firmware)
ac-06.01_odp.05 security-relevant information

Baselines

Guidance

Security functions include establishing system accounts, configuring access authorizations (i.e., permissions, privileges), configuring settings for events to be audited, and establishing intrusion detection parameters. Security-relevant information includes filtering rules for routers or firewalls, configuration parameters for security services, cryptographic key management information, and access control lists. Authorized personnel include security administrators, system administrators, system security officers, system programmers, and other privileged users.

Related controls 5