control_freak | Controls | CM-05(01) - Automated Access Enforcement and Audit Records

(a) Enforce access restrictions using cm-05.01_odp ; and

(b) Automatically generate audit records of the enforcement actions.

Parameter ID	Definition
cm-05.01_odp	automated mechanisms

Baselines

Guidance

Organizations log system accesses associated with applying configuration changes to ensure that configuration change control is implemented and to support after-the-fact actions should organizations discover any unauthorized changes.

Related controls 7

AU-02 Event Logging L M H P
AU-06 Audit Record Review, Analysis, and Reporting L M H P
AU-07 Audit Record Reduction and Report Generation L M H P
AU-12 Audit Record Generation L M H P
CM-06 Configuration Settings L M H P
CM-11 User-installed Software L M H P
SI-12 Information Management and Retention L M H P

CM-05(01) Automated Access Enforcement and Audit Records

Baselines

Guidance

Related controls 7