💼 CM-5 Access Restrictions for Change (L)(M)(H)
- ID:
/frameworks/fedramp-moderate-security-controls/cm/05
Description
Define, document, approve, and enforce physical and logical access restrictions associated with changes to the system.
Similar
- Sections
/frameworks/fedramp-high-security-controls/cm/05
- Internal
- ID:
dec-c-c3c6e693
- ID:
Similar Sections (Take Policies From)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 FedRAMP High Security Controls → 💼 CM-5 Access Restrictions for Change (L)(M)(H) | 2 | 14 | 16 | no data |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 CM-5(1) Automated Access Enforcement and Audit Records (M)(H) | 8 | no data | |||
| 💼 CM-5(5) Privilege Limitation for Production and Operation (M)(H) | 1 | no data |
Policies (8)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ AWS Account IAM Access Analyzer is not enabled for all regions🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS IAM Policy allows full administrative privileges🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS RDS Instance Auto Minor Version Upgrade is not enabled🟠🟢 | 1 | 🟠 x1, 🟢 x6 | no data |
| 🛡️ Azure App Service Authentication is disabled and Basic Authentication is enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure App Service Basic Authentication is enabled🟢⚪ | 🟢 x2, ⚪ x1 | no data | |
| 🛡️ Azure App Service does not run the latest Java version🟢⚪ | 🟢 x2, ⚪ x1 | no data | |
| 🛡️ Azure App Service does not run the latest PHP version🟢⚪ | 🟢 x2, ⚪ x1 | no data | |
| 🛡️ Azure App Service does not run the latest Python version🟢⚪ | 🟢 x2, ⚪ x1 | no data |