💼 AC-7 Unsuccessful Logon Attempts
- ID:
/frameworks/nist-sp-800-53-r5/ac/07
Description​
a. Enforce a limit of [Assignment: organization-defined number] consecutive invalid logon attempts by a user during a [Assignment: organization-defined time period]; and b. Automatically [Selection (one or more): lock the account or node for an [Assignment: organization-defined time period]; lock the account or node until released by an administrator; delay next logon prompt per [Assignment: organization-defined delay algorithm]; notify system administrator; take other [Assignment: organization-defined action]] when the maximum number of unsuccessful attempts is exceeded.
Similar​
- Internal
- ID:
dec-c-2b592fc4
- ID:
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 FedRAMP High Security Controls → 💼 AC-7 Unsuccessful Logon Attempts (L)(M)(H) | 1 | 1 | no data | ||
| 💼 FedRAMP Low Security Controls → 💼 AC-7 Unsuccessful Logon Attempts (L)(M)(H) | 1 | no data | |||
| 💼 NIST CSF v2.0 → 💼 PR.AA-03: Users, services, and hardware are authenticated | 53 | no data |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 AC-7(1) Unsuccessful Logon Attempts _ Automatic Account Lock | no data | ||||
| 💼 AC-7(2) Unsuccessful Logon Attempts _ Purge or Wipe Mobile Device | no data | ||||
| 💼 AC-7(3) Unsuccessful Logon Attempts _ Biometric Attempt Limiting | no data | ||||
| 💼 AC-7(4) Unsuccessful Logon Attempts _ Use of Alternate Authentication Factor | no data |