💼 CC6.2 Prior to issuing system credentials and granting system access, the entity registers and authorizes new internal and external users whose access is administered by the entity.
- ID:
/frameworks/soc-2/cc6/02
Description​
For those users whose access is administered by the entity, user system credentials are removed when user access is no longer authorized.
Similar​
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 CC6.2-1 Creates Access Credentials to Protected Information Assets | no data | ||||
| 💼 CC6.2-2 Reviews Appropriateness of Access Credentials | no data | ||||
| 💼 CC6.2-3 Prevents the Use of Credentials When No Longer Valid | no data |