Manual Examination AC_14_1_1

This NIST 800-53 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.
Return to Main Page
Manual Examination AC_14_1_1_3

FIPS 199 High Impact (for ICS)

Findings Color Code
Satisfied
Other Than Satisfied - not assessed
Other Than Satisfied - failed

NIST SP 800-53A AC-14(01) .01

Question: Does each LJK/Security policy exemption to the (UAF, AUTOLOGIN, *), (TERM, AUTOLOGIN, *) and (UAF, PWDNULL, CAPTIVE) tests have a basis in the access control policy and the procedures addressing permitted actions without identification and authentication statements regarding how the actions permitted to be performed without identification and authentication can only be done without identification and authentication in order to accomplish mission objectives ?

Answered by: BOSTON::JOHNSON

As part of Manual Examination group: POLICY_AC

Answer: YES

This NIST 800-53 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.