Skip to main content

πŸ’Ό AC-7 UNSUCCESSFUL LOGON ATTEMPTS

  • Contextual name: πŸ’Ό AC-7 UNSUCCESSFUL LOGON ATTEMPTS
  • ID: /frameworks/nist-sp-800-53-r4/ac/07
  • Located in: πŸ’Ό AC ACCESS CONTROL

Description​

The information system: AC-7a. Enforces a limit of [Assignment: organization-defined number] consecutive invalid logon attempts by a user during a [Assignment: organization-defined time period]; and AC-7b. Automatically [Selection: locks the account/node for an [Assignment: organization-defined time period]; locks the account/node until released by an administrator; delays next logon prompt according to [Assignment: organization-defined delay algorithm]] when the maximum number of unsuccessful attempts is exceeded.

Similar​

  • Internal
    • ID: dec-c-cdcb2f15

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό NIST CSF v1.1 β†’ πŸ’Ό PR.AC-7: Users, devices, and other assets are authenticated (e.g., single-factor, multi-factor) commensurate with the risk of the transaction (e.g., individuals' security and privacy risks and other organizational risks)1922

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό AC-7 (1) AUTOMATIC ACCOUNT LOCK
πŸ’Ό AC-7 (2) PURGE _ WIPE MOBILE DEVICE