πΌ A.9.2.3 Management of privileged access rights
- Contextual name: πΌ A.9.2.3 Management of privileged access rights
- ID:
/frameworks/iso-iec-27001-2013/09/02/03 - Located in: πΌ A.9.2 User access management
Descriptionβ
The allocation and use of privileged access rights shall be restricted and controlled.
Similarβ
- Internal
- ID:
dec-c-aaa0298f
- ID:
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST CSF v1.1 β πΌ PR.AC-1: Identities and credentials are issued, managed, verified, revoked, and audited for authorized devices, users and processes | 19 | 22 | ||
| πΌ NIST CSF v1.1 β πΌ PR.AC-4: Access permissions and authorizations are managed, incorporating the principles of least privilege and separation of duties | 17 | 35 | ||
| πΌ NIST CSF v1.1 β πΌ PR.DS-5: Protections against data leaks are implemented | 43 | 51 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (4)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS Account IAM Access Analyzer is not enabled for all regions π’ | 1 | π’ x6 |
| π AWS IAM Policy allows full administrative privileges π’ | 1 | π’ x6 |
| π Azure App Service Authentication is disabled and Basic Authentication is enabled π’ | 1 | π’ x6 |
| π Azure App Service Basic Authentication is enabled π’ | π’ x3 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-157aa4b9 | 1 | |
| βοΈ dec-x-ab7fc52e | 1 | |
| βοΈ dec-x-ca52f63a | 2 |