NIST 800-53 Rev 5
424 controls available
AC-02(03)moderatehigh
Disable Accounts
Access Control
Control Statement
Disable accounts within {{ insert: param, ac-02.03_odp.01 }} when the accounts:
Discussion
Disabling expired, inactive, or otherwise anomalous accounts supports the concepts of least privilege and least functionality which reduce the attack surface of the system.
- Framework
- NIST SP 800-53 Rev 5
- Family
- Access Control
- Baselines
- moderate, high