Skip to main content

πŸ’Ό AC-14 Permitted Actions Without Identification or Authentication

  • Contextual name: πŸ’Ό AC-14 Permitted Actions Without Identification or Authentication
  • ID: /frameworks/nist-sp-800-53-r5/ac/14
  • Located in: πŸ’Ό AC Access Control

Description​

a. Identify [Assignment: organization-defined user actions] that can be performed on the system without identification or authentication consistent with organizational mission and business functions; and b. Document and provide supporting rationale in the security plan for the system, user actions not requiring identification or authentication.

Similar​

  • Internal
    • ID: dec-c-38de42c4

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό FedRAMP High Security Controls β†’ πŸ’Ό AC-14 Permitted Actions Without Identification or Authentication (L)(M)(H)
πŸ’Ό FedRAMP Low Security Controls β†’ πŸ’Ό AC-14 Permitted Actions Without Identification or Authentication (L)(M)(H)
πŸ’Ό NIST CSF v2.0 β†’ πŸ’Ό PR.AA-01: Identities and credentials for authorized users, services, and hardware are managed by the organization23

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό AC-14(1) Permitted Actions Without Identification or Authentication _ Necessary Uses