💼 AC-6(7) Review of User Privileges (M)(H)

Contextual name: 💼 AC-6(7) Review of User Privileges (M)(H)
ID: /frameworks/fedramp-high-security-controls/ac/06/07
Located in: 💼 AC-6 Least Privilege (M)(H)

Description

(a) Review [FedRAMP Assignment: at a minimum, annually] the privileges assigned to [FedRAMP Assignment: all users with privileges] to validate the need for such privileges; and

(b) Reassign or remove privileges, if necessary, to correctly reflect organizational mission and business needs.

Similar

Sections
- /frameworks/nist-sp-800-53-r5/ac/06/07
Internal
- ID: dec-c-49749d8e

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 NIST SP 800-53 Revision 5 → 💼 AC-6(7) Least Privilege _ Review of User Privileges

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 FedRAMP Moderate Security Controls → 💼 AC-6(7) Review of User Privileges (M)(H)			2

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags

Policies (2)

Policy	Logic Count	Flags
📝 AWS EC2 Instance IAM role is not attached 🟢	1	🟢 x6
📝 AWS IAM User has inline or directly attached policies 🟢	1	🟠 x1, 🟢 x5

Internal Rules

Rule	Policies	Flags
✉️ dec-x-6c93750d	1
✉️ dec-x-4157c58a	1

Description​

Similar​

Similar Sections (Take Policies From)​

Similar Sections (Give Policies To)​

Sub Sections​

Policies (2)​

Internal Rules​