Identification and Authentication (IA)
Accept and electronically verify Personal Identity Verification-compliant credentials.
Identification and Authentication (IA)
Implement the following out-of-band authentication mechanisms under [Assignment: organization-defined conditions]: [Assignment: organization-defined out-of-band authentication].
Identification and Authentication (IA)
Level N/A
Uniquely identify and authenticate [Assignment: organization-defined devices and/or types of devices] before establishing a [Selection (one or more): local; remote; network] connection.
Identification and Authentication (IA)
Authenticate [Assignment: organization-defined devices and/or types of devices] before establishing [Selection (one or more): local; remote; network] connection using bidirectional authentication that is cryptographically based.
Identification and Authentication (IA)
Level N/A
Withdrawn: Incorporated into IA-3(1).]
Identification and Authentication (IA)
(a) Where addresses are allocated dynamically, standardize dynamic address allocation lease information and the lease duration assigned to devices in accordance with [Assignment: organization-defined lease information and lease duration]; and (b) Audit lease information when assigned to a device.
Identification and Authentication (IA)
Handle device identification and authentication based on attestation by [Assignment: organization-defined configuration management process].
Identification and Authentication (IA)
Level N/A
Manage system identifiers by: a. Receiving authorization from [Assignment: organization-defined personnel or roles] to assign an individual, group, role, service, or device identifier; b. Selecting an identifier that identifies an individual, group, role, service, or device; c. Assigning the identifier to the intended individual, group, role, service, or device; and d. Preventing reuse of identifiers for [Assignment: organization-defined time period].
Identification and Authentication (IA)
Prohibit the use of system account identifiers that are the same as public identifiers for individual accounts.
Identification and Authentication (IA)
[Withdrawn: Incorporated into IA-12(1).]
