CM-05(01) Automated Access Enforcement and Audit Records
(a) Enforce access restrictions using cm-05.01_odp ; and
(b) Automatically generate audit records of the enforcement actions.
| Parameter ID | Definition |
|---|---|
| cm-05.01_odp | automated mechanisms |
Baselines
- L
- M
- H
- P
Guidance
Organizations log system accesses associated with applying configuration changes to ensure that configuration change control is implemented and to support after-the-fact actions should organizations discover any unauthorized changes.
Related controls 7
- AU-02 Event Logging L M H P
- AU-06 Audit Record Review, Analysis, and Reporting L M H P
- AU-07 Audit Record Reduction and Report Generation L M H P
- AU-12 Audit Record Generation L M H P
- CM-06 Configuration Settings L M H P
- CM-11 User-installed Software L M H P
- SI-12 Information Management and Retention L M H P