← Back to catalog
AU-6(7)

Permitted Actions

Audit and Accountability (AU)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description

Specify the permitted actions for each [assignment] associated with the review, analysis, and reporting of audit record information.

Discussion

Organizations specify permitted actions for system processes, roles, and users associated with the review, analysis, and reporting of audit records through system account management activities. Specifying permitted actions on audit record information is a way to enforce the principle of least privilege. Permitted actions are enforced by the system and include read, write, execute, append, and delete.

Implementation guidance

No content available.

CSF 2.0 crosswalk

No CSF mappings exist for this control.