FIPS 199 High Impact (for ICS) |
| Findings
Color Code |
| Satisfied |
| Other Than Satisfied - not assessed |
| Other Than Satisfied - failed
|
|
|
NIST SP 800-53A AC-05 .01(i)
|
Question: In interviewing 33 percent (but no fewer than 2) of Policy Management Staff members, do they all have an understanding of when the SYSTEM username on VMS must be used interactively and why it can be left disabled from interactive access ? |
|
Answered by: BOSTON::KENNEDY
As part of Interview group: POLSTAFF
|
Answer: YES
|
|
|
This NIST 800-53 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.
|