💼 CM-5(1) Automated Access Enforcement and Audit Records (M)(H)
- ID:
/frameworks/fedramp-moderate-security-controls/cm/05/01
Description
(a) Enforce access restrictions using [Assignment: organization-defined automated mechanisms]; and
(b) Automatically generate audit records of the enforcement actions.
Similar
- Sections
/frameworks/fedramp-high-security-controls/cm/05/01
- Internal
- ID:
dec-c-5530900e
- ID:
Similar Sections (Take Policies From)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 FedRAMP High Security Controls → 💼 CM-5(1) Automated Access Enforcement and Audit Records (M)(H) | 7 | 8 | no data |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|
Policies (8)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ AWS CloudTrail Log File Validation is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Diagnostic Setting for Azure Key Vault is not enabled🟢⚪ | 🟢 x2, ⚪ x1 | no data | |
| 🛡️ Azure Subscription Activity Log Alert for Create or Update Network Security Group does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Subscription Activity Log Alert for Create or Update Security Solution does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Subscription Activity Log Alert for Create Policy Assignment does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Subscription Activity Log Alert for Delete Network Security Group does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Subscription Activity Log Alert for Delete Policy Assignment does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Subscription Activity Log Alert for Delete Security Solution does not exist🟢 | 1 | 🟢 x6 | no data |