NIST 800-53 Rev 5
424 controls available
AC-11moderatehigh
Device Lock
Access Control
Control Statement
Prevent further access to the system by {{ insert: param, ac-11_odp.01 }} ; and Retain the device lock until the user reestablishes access using established identification and authentication procedures.
Discussion
Device locks are temporary actions taken to prevent logical access to organizational systems when users stop work and move away from the immediate vicinity of those systems but do not want to log out because of the temporary nature of their absences. Device locks can be implemented at the operating system level or at the application level. A proximity lock may be used to initiate the device lock (e.g., via a Bluetooth-enabled device or dongle). User-initiated device locking is behavior or policy-based and, as such, requires users to take physical action to initiate the device lock. Device locks are not an acceptable substitute for logging out of systems, such as when organizations require users to log out at the end of workdays.
- Framework
- NIST SP 800-53 Rev 5
- Family
- Access Control
- Baselines
- moderate, high
Related Frameworks
6 paths across 2 frameworks
Related Frameworks
NIST 800-1711 mapping
3.1.10
1.00
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI5 mappings
CCI-000056
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-000057
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-000058
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-000059
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-000060
1.00
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
- DISA · 2025-01-23 · disa_cci_list · equivalent
Related STIGs
153 STIGs reach this control through 5 CCIs. Expand a row to see the responsible NICE and O*NET roles.
Operating System — Desktop
7 STIGs
Operating System — Desktop
7 STIGsApple macOS 14 (Sonoma) Security Technical Implementation Guide
22024-12-048 of 155 findings match
M8
Apple macOS 15 (Sequoia) Security Technical Implementation Guide
V1R72026-02-068 of 160 findings match
M8
Apple macOS 15 (Sequoia) Security Technical Implementation Guide
12025-05-058 of 161 findings match
M8
Apple macOS 26 (Tahoe) Security Technical Implementation Guide
V1R22026-02-118 of 160 findings match
M8
Microsoft Windows 10 Security Technical Implementation Guide
32025-02-252 of 261 findings match
M2
Microsoft Windows 11 Security Technical Implementation Guide
V2R72026-02-122 of 262 findings match
M2
Microsoft Windows 11 Security Technical Implementation Guide
22025-05-152 of 258 findings match
M2
Operating System — Server
42 STIGs
Operating System — Server
42 STIGsRed Hat Enterprise Linux 9 Security Technical Implementation Guide
22025-05-1410 of 450 findings match
M10
Red Hat Enterprise Linux 9 Security Technical Implementation Guide
V2R82026-02-0510 of 446 findings match
M10
Cloud Linux AlmaLinux OS 9 Security Technical Implementation Guide
V1R62026-02-278 of 439 findings match
M8
CloudLinux AlmaLinux OS 9 Security Technical Implementation Guide
12025-05-228 of 445 findings match
M8
Oracle Linux 7 Security Technical Implementation Guide
32025-05-088 of 243 findings match
M8
Oracle Linux 8 Security Technical Implementation Guide
22025-05-138 of 374 findings match
M8
Oracle Linux 8 Security Technical Implementation Guide
V2R82026-02-138 of 375 findings match
M8
Oracle Linux 9 Security Technical Implementation Guide
12025-05-088 of 456 findings match
M8
Show 34 more STIGs in this category →Hide additional STIGs
Oracle Linux 9 Security Technical Implementation Guide
V1R52026-02-178 of 448 findings match
M8
Red Hat Enterprise Linux 10 Security Technical Implementation Guide
V1R12026-03-117 of 434 findings match
M7
Red Hat Enterprise Linux 8 Security Technical Implementation Guide
V2R72026-02-057 of 366 findings match
M7
Red Hat Enterprise Linux 8 Security Technical Implementation Guide
22025-05-147 of 369 findings match
M7
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
V1R52026-02-065 of 194 findings match
M5
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
12025-05-165 of 194 findings match
M5
IBM AIX 7.x Security Technical Implementation Guide
V3R22026-02-065 of 283 findings match
M5
IBM AIX 7.x Security Technical Implementation Guide
32024-08-165 of 283 findings match
M5
SUSE Linux Enterprise Server 12 Security Technical Implementation Guide
32025-05-145 of 211 findings match
M3L2
SUSE Linux Enterprise Server 15 Security Technical Implementation Guide
V2R72026-02-195 of 214 findings match
M3L2
SUSE Linux Enterprise Server 15 Security Technical Implementation Guide
22025-05-145 of 216 findings match
M3L2
General Purpose Operating System Security Requirements Guide
32024-12-044 of 198 findings match
M4
General Purpose Operating System Security Requirements Guide
V3R32025-09-224 of 203 findings match
M4
Solaris 11 SPARC Security Technical Implementation Guide
V3R52026-02-194 of 217 findings match
M4
Solaris 11 SPARC Security Technical Implementation Guide
32025-05-054 of 217 findings match
M4
Solaris 11 X86 Security Technical Implementation Guide
V3R52026-02-194 of 216 findings match
M4
Solaris 11 X86 Security Technical Implementation Guide
32025-05-054 of 216 findings match
M4
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
V2R82026-02-063 of 188 findings match
M3
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
22025-05-163 of 187 findings match
M3
Anduril NixOS Security Technical Implementation Guide
V1R22025-08-192 of 103 findings match
M2
Anduril NixOS Security Technical Implementation Guide
12024-10-252 of 104 findings match
M2
Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide
22025-05-162 of 172 findings match
M2
SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
V1R42026-02-102 of 208 findings match
M2
SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
12025-05-082 of 210 findings match
M2
Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide
V2R52026-02-192 of 226 findings match
M2
Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide
22025-05-082 of 226 findings match
M2
Amazon Linux 2023 Security Technical Implementation Guide
V1R32026-02-271 of 187 findings match
M1
Microsoft Windows Server 2019 Security Technical Implementation Guide
32025-05-231 of 275 findings match
M1
Microsoft Windows Server 2019 Security Technical Implementation Guide
V3R82026-02-121 of 282 findings match
M1
Microsoft Windows Server 2022 Security Technical Implementation Guide
22025-05-151 of 275 findings match
M1
Microsoft Windows Server 2022 Security Technical Implementation Guide
V2R82026-02-131 of 282 findings match
M1
Microsoft Windows Server 2025 Security Technical Implementation Guide
V1R12026-02-201 of 284 findings match
M1
NetApp ONTAP DSC 9.x Security Technical Implementation Guide
22024-08-221 of 29 findings match
M1
NetApp ONTAP DSC 9.x Security Technical Implementation Guide
V2R32025-12-081 of 29 findings match
M1
Operating System — Mainframe
23 STIGs
Operating System — Mainframe
23 STIGsIBM z/OS ACF2 Security Technical Implementation Guide
92025-06-244 of 226 findings match
M4
IBM z/OS ACF2 Security Technical Implementation Guide
V9R82026-03-094 of 225 findings match
M4
IBM z/OS RACF Security Technical Implementation Guide
V9R82026-03-094 of 222 findings match
M4
IBM z/OS RACF Security Technical Implementation Guide
92025-06-244 of 224 findings match
M4
IBM z/OS TSS Security Technical Implementation Guide
V9R82026-03-094 of 230 findings match
M4
IBM z/OS TSS Security Technical Implementation Guide
92025-06-244 of 231 findings match
M4
Mainframe Product Security Requirements Guide
V3R42025-09-104 of 194 findings match
M4
Mainframe Product Security Requirements Guide
32024-12-054 of 193 findings match
M4
Show 15 more STIGs in this category →Hide additional STIGs
IBM Hardware Management Console (HMC) Security Technical Implementation Guide
V2R12024-06-241 of 35 findings match
M1
z/OS CL/SuperSession for ACF2 Security Technical Implementation Guide
V7R22025-09-271 of 7 findings match
M1
z/OS CL/SuperSession for ACF2 Security Technical Implementation Guide
72024-12-161 of 7 findings match
M1
z/OS CL/SuperSession for RACF Security Technical Implementation Guide
V7R22025-09-271 of 9 findings match
M1
z/OS CL/SuperSession for RACF Security Technical Implementation Guide
72024-12-161 of 9 findings match
M1
z/OS CL/SuperSession for TSS Security Technical Implementation Guide
V7R22025-09-281 of 10 findings match
M1
z/OS IBM CICS Transaction Server for ACF2 Security Technical Implementation Guide
V7R22025-09-231 of 12 findings match
M1
z/OS IBM CICS Transaction Server for ACF2 Security Technical Implementation Guide
72024-12-161 of 12 findings match
M1
z/OS IBM CICS Transaction Server for RACF Security Technical Implementation Guide
72024-12-161 of 9 findings match
M1
z/OS IBM CICS Transaction Server for RACF Security Technical Implementation Guide
V7R22025-09-271 of 9 findings match
M1
z/OS IBM CICS Transaction Server for TSS Security Technical Implementation Guide
V7R22025-09-281 of 9 findings match
M1
zOS WebSphere MQ for ACF2 Security Technical Implementation Guide
V7R22025-09-271 of 17 findings match
M1
zOS WebSphere MQ for RACF Security Technical Implementation Guide
V7R32025-09-271 of 17 findings match
M1
zOS WebsphereMQ for ACF2 Security Technical Implementation Guide
72025-02-241 of 17 findings match
M1
zOS WebsphereMQ for RACF Security Technical Implementation Guide
72025-06-241 of 17 findings match
M1
Operating System — Mobile
36 STIGs
Operating System — Mobile
36 STIGsApple iOS/iPadOS 18 Security Technical Implementation Guide
12025-06-303 of 92 findings match
M3
Apple iOS/iPadOS 18 Security Technical Implementation Guide
V2R22025-12-013 of 92 findings match
M3
Apple iOS/iPadOS 26 Security Technical Implementation Guide
V1R22025-12-013 of 92 findings match
M3
Google Android 13 BYOAD Security Technical Implementation Guide
12024-02-063 of 23 findings match
M3
Google Android 13 COBO Security Technical Implementation Guide
22024-12-043 of 31 findings match
M3
Google Android 13 COPE Security Technical Implementation Guide
22024-12-043 of 36 findings match
M3
Google Android 14 MDFPP 3.3 BYOAD Security Technical Implementation Guide
12024-02-203 of 23 findings match
M3
Samsung Android OS 13 with Knox 3.x COBO Security Technical Implementation Guide
22024-12-063 of 30 findings match
M3
Show 28 more STIGs in this category →Hide additional STIGs
Samsung Android OS 13 with Knox 3.x COPE Security Technical Implementation Guide
22024-12-063 of 30 findings match
M3
Apple visionOS 2 Security Technical Implementation Guide
V1R12025-09-302 of 50 findings match
M2
Apple visionOS 26 Security Technical Implementation Guide
V1R12026-03-102 of 51 findings match
M2
Google Android 14 COBO Security Technical Implementation Guide
V2R42026-02-062 of 38 findings match
M2
Google Android 14 COBO Security Technical Implementation Guide
22024-12-042 of 30 findings match
M2
Google Android 14 COPE Security Technical Implementation Guide
22024-12-042 of 35 findings match
M2
Google Android 14 COPE Security Technical Implementation Guide
V2R42026-02-122 of 43 findings match
M2
Google Android 14 MDFPP 3.3 BYOAD Security Technical Implementation Guide
V1R22025-08-192 of 23 findings match
M2
Google Android 15 COBO Security Technical Implementation Guide
V1R42026-02-062 of 44 findings match
M2
Google Android 15 COBO Security Technical Implementation Guide
12024-12-052 of 36 findings match
M2
Google Android 15 COPE Security Technical Implementation Guide
V1R42026-02-122 of 47 findings match
M2
Google Android 15 COPE Security Technical Implementation Guide
12024-12-052 of 39 findings match
M2
Google Android 16 COBO Security Technical Implementation Guide
V1R22026-02-062 of 42 findings match
M2
Google Android 16 COPE Security Technical Implementation Guide
V1R22026-02-122 of 45 findings match
M2
Honeywell Android 13 COBO Security Technical Implementation Guide
V1R12025-05-072 of 32 findings match
M2
Honeywell Android 13 COPE Security Technical Implementation Guide
V1R12025-05-072 of 36 findings match
M2
Samsung Android 14 MDFPP 3.3 BYOAD Security Technical Implementation Guide
12024-02-212 of 25 findings match
M2
Samsung Android 15 MDFPP 3.3 BYOAD Security Technical Implementation Guide
12025-04-292 of 26 findings match
M2
Samsung Android 16 COBO Security Technical Implementation Guide
V1R32026-02-062 of 45 findings match
M2
Samsung Android 16 COPE Security Technical Implementation Guide
V1R22026-02-112 of 48 findings match
M2
Samsung Android OS 14 with Knox 3.x COBO Security Technical Implementation Guide
22024-12-062 of 36 findings match
M2
Samsung Android OS 14 with Knox 3.x COPE Security Technical Implementation Guide
22024-12-062 of 39 findings match
M2
Samsung Android OS 15 with Knox 3.x COBO Security Technical Implementation Guide
12024-12-102 of 37 findings match
M2
Samsung Android OS 15 with Knox 3.x COPE Security Technical Implementation Guide
12024-12-102 of 40 findings match
M2
Zebra Android 13 COBO Security Technical Implementation Guide
V1R12024-12-112 of 31 findings match
M2
Zebra Android 13 COPE Security Technical Implementation Guide
V1R12024-12-112 of 35 findings match
M2
Zebra Technologies Android 14 COBO Security Technical Implementation Guide
V1R12026-02-222 of 38 findings match
M2
Zebra Technologies Android 14 COPE Security Technical Implementation Guide
V1R12026-02-222 of 43 findings match
M2
Network Device
13 STIGs
Network Device
13 STIGsApplication Layer Gateway Security Requirements Guide
22024-12-044 of 155 findings match
M4
Application Layer Gateway Security Requirements Guide
V2R32025-09-154 of 160 findings match
M4
Network Device Management Security Requirements Guide
V5R32025-02-114 of 104 findings match
M4
Network Device Management Security Requirements Guide
V5R42025-09-104 of 105 findings match
M4
Riverbed NetIM OS Security Technical Implementation Guide
V1R12025-10-023 of 154 findings match
M3
Akamai KSD Service Impact Level 2 NDM Security Technical Implementation Guide
V1R12017-09-151 of 24 findings match
M1
HPE Aruba Networking AOS VPN Security Technical Implementation Guide
V1R12024-10-291 of 21 findings match
M1
HPE Nimble Storage Array NDM Security Technical Implementation Guide
V2R12024-06-201 of 20 findings match
M1
Show 5 more STIGs in this category →Hide additional STIGs
Ivanti Connect Secure VPN Security Technical Implementation Guide
V2R22025-09-091 of 15 findings match
M1
Ivanti Connect Secure VPN Security Technical Implementation Guide
22024-06-101 of 15 findings match
M1
Network WLAN AP-IG Platform Security Technical Implementation Guide
V7R32023-02-131 of 9 findings match
M1
Network WLAN AP-NIPR Platform Security Technical Implementation Guide
V7R32023-02-131 of 11 findings match
M1
Network WLAN Controller Platform Security Technical Implementation Guide
V7R32023-02-131 of 6 findings match
M1
Virtualization / Container
6 STIGs
Virtualization / Container
6 STIGsVirtual Machine Manager Security Requirements Guide
22024-12-064 of 193 findings match
M4
Virtual Machine Manager Security Requirements Guide
V2R32025-09-104 of 198 findings match
M4
Nutanix Acropolis GPOS Security Technical Implementation Guide
V1R12026-02-241 of 106 findings match
M1
VMware vSphere 7.0 vCenter Appliance Photon OS Security Technical Implementation Guide
V1R42024-12-161 of 113 findings match
M1
VMware vSphere 8.0 ESXi Security Technical Implementation Guide
V2R32025-02-111 of 76 findings match
M1
VMware vSphere 8.0 ESXi Security Technical Implementation Guide
V1R12023-10-111 of 73 findings match
M1
Cloud / Identity Service
3 STIGs
Cloud / Identity Service
3 STIGsOkta Identity as a Service (IDaaS) Security Technical Implementation Guide
12025-05-062 of 24 findings match
M2
Okta Identity as a Service (IDaaS) Security Technical Implementation Guide
V1R22025-11-192 of 29 findings match
M2
Microsoft Entra ID Security Technical Implementation Guide
V1R12025-03-171 of 10 findings match
M1
Endpoint Security Management
18 STIGs
Endpoint Security Management
18 STIGsUnified Endpoint Management Server Security Requirements Guide
22024-12-094 of 137 findings match
M4
Unified Endpoint Management Server Security Requirements Guide
V2R42025-09-104 of 138 findings match
M4
Axonius Federal Systems Ax-OS Security Technical Implementation Guide
V1R22025-11-252 of 16 findings match
M2
Tanium 7.x Application on TanOS Security Technical Implementation Guide
V2R22025-02-112 of 75 findings match
M2
Tanium 7.x Security Technical Implementation Guide
V2R32025-05-142 of 98 findings match
M2
Xylok Security Suite 20.x Security Technical Implementation Guide
V1R22025-12-042 of 19 findings match
H1M1
Xylok Security Suite 20.x Security Technical Implementation Guide
12024-12-132 of 19 findings match
H1M1
Arctic Wolf CylanceON-PREM Security Technical Implementation Guide
V1R12025-06-111 of 16 findings match
M1
Show 10 more STIGs in this category →Hide additional STIGs
BlackBerry UEM Security Technical Implementation Guide
V2R12020-12-041 of 16 findings match
M1
Dragos Platform 2.x Security Technical Implementation Guide
V1R62026-02-181 of 19 findings match
M1
Dragos Platform 2.x Security Technical Implementation Guide
12025-05-151 of 19 findings match
M1
ISEC7 Sphere Security Technical Implementation Guide
V3R12024-08-201 of 34 findings match
M1
Ivanti EPMM Server Security Technical Implementation Guide
V3R12024-07-301 of 26 findings match
M1
Ivanti Sentry 9.x NDM Security Technical Implementation Guide
V3R12024-09-251 of 26 findings match
M1
Jamf Pro v10.x EMM Security Technical Implementation Guide
V3R12024-08-271 of 29 findings match
M1
Microsoft Intune MDM Service Desktop & Mobile Security Technical Implementation Guide
V1R12025-05-081 of 2 findings match
M1
MobileIron Core v10.x MDM Security Technical Implementation Guide
V1R12019-02-191 of 11 findings match
M1
Samsung SDS EMM Security Technical Implementation Guide
V1R32022-06-101 of 23 findings match
M1
Productivity Application
4 STIGs
Productivity Application
4 STIGsAvePoint Compliance Guardian Security Technical Implementation Guide
V1R12023-02-211 of 10 findings match
M1
AvePoint DocAve 6 Security Technical Implementation Guide
V1R22022-08-241 of 9 findings match
M1
Soaring Software Solutions TCMax 9.x Security Technical Implementation Guide
V1R12026-03-051 of 17 findings match
M1
SPEC Innovations Innoslate 4.x Security Technical Implementation Guide
V1R12022-08-311 of 11 findings match
M1
Uncategorized
1 STIG
Uncategorized
1 STIGMicrosoft SharePoint 2013 Security Technical Implementation Guide
22024-12-101 of 37 findings match
M1