← Back to catalog
CM-5(1)

Automated Access Enforcement and Audit Records

Configuration Management (CM)
Baselines
Low · Not includedModerate · Not includedHigh · Included
Description

Enforce access restrictions using [assignment] ; and Automatically generate audit records of the enforcement actions.

Discussion

Organizations log system accesses associated with applying configuration changes to ensure that configuration change control is implemented and to support after-the-fact actions should organizations discover any unauthorized changes.

Implementation guidance

No content available.

CSF 2.0 crosswalk

No CSF mappings exist for this control.