Identification and Authentication (IA)
Implement multi-factor authentication for access to non-privileged accounts.
Identification and Authentication (IA)
Level N/A
[Withdrawn: Incorporated into IA-2(6).]
Identification and Authentication (IA)
Level N/A
[Withdrawn: Incorporated into IA-2(1).]
Identification and Authentication (IA)
When shared accounts or authenticators are employed, require users to be individually authenticated before granting access to the shared accounts or resources.
Identification and Authentication (IA)
Level N/A
Implement multi-factor authentication for [Selection (one or more): local; network; remote] access to [Selection (one or more): privileged accounts; non-privileged accounts] such that: (a) One of the factors is provided by a device separate from the system gaining access; and (b) The device meets [Assignment: organization-defined strength of mechanism requirements].
Identification and Authentication (IA)
Level N/A
[Withdrawn: Incorporated into IA-2(2).]
Identification and Authentication (IA)
Level N/A
Implement replay-resistant authentication mechanisms for access to [Selection (one or more): privileged accounts; non-privileged accounts].
Identification and Authentication (IA)
[Withdrawn: Incorporated into IA-2(6).]
Identification and Authentication (IA)
Provide a single sign-on capability for [Assignment: organization-defined system accounts and services].
Identification and Authentication (IA)
[Withdrawn: Incorporated into IA-2(8).]
