Куда я попал?
CIS Critical Security Controls v8 (The 18 CIS CSC)
Framework
Account Management
Для проведения оценки соответствия по документу войдите в систему.
Список требований
-
5.3 Disable Dormant Accounts
Delete or disable any dormant accounts after a period of 45 days of inactivity, where supported.Обязательно для implementation Group 1 2 3 -
5.4 Restrict Administrator Privileges to Dedicated Administrator Accounts
Restrict administrator privileges to dedicated administrator accounts on enterprise assets. Conduct general computing activities, such as internet browsing, email, and productivity suite use, from the user’s primary, nonprivileged account.Обязательно для implementation Group 1 2 3 -
5.5 Establish and Maintain an Inventory of Service Accounts
Establish and maintain an inventory of service accounts. The inventory, at a minimum, must contain department owner, review date, and purpose. Perform service account reviews to validate that all active accounts are authorized, on a recurring schedule at a minimum quarterly, or more frequently.Обязательно для implementation Group 2 3 -
5.6 Centralize Account Management
Centralize account management through a directory or identity service.Обязательно для implementation Group 2 3
Связанные защитные меры
Название | Дата | Влияние | ||
---|---|---|---|---|
Community
2
17 / 125
|
Настройка контроля учетных записей (UAC) в ОС Windows
Автоматически
Техническая
Превентивная
24.02.2022
|
24.02.2022 | 2 17 / 125 |