800-53|AC-2(7)(a)

Title

ROLE-BASED SCHEMES

Description

Establishes and administers privileged user accounts in accordance with a role-based access scheme that organizes allowed information system access and privileges into roles;

Reference Item Details

Category: ACCESS CONTROL

Family: ACCESS CONTROL

Audit Items

View all Reference Audit Items

NamePluginAudit Name
ARST-ND-000350 - The Arista network device must be configured with only one local account to be used as the account of last resort in the event the authentication server is unavailable.AristaDISA STIG Arista MLS EOS 4.2x NDM v2r1
CASA-ND-000450 - The Cisco ASA must be configured with only one local account to be used as the account of last resort in the event the authentication server is unavailable - serialCiscoDISA STIG Cisco ASA NDM v2r1
CASA-ND-000450 - The Cisco ASA must be configured with only one local account to be used as the account of last resort in the event the authentication server is unavailable - sshCiscoDISA STIG Cisco ASA NDM v2r1
CASA-ND-000450 - The Cisco ASA must be configured with only one local account to be used as the account of last resort in the event the authentication server is unavailable - usernameCiscoDISA STIG Cisco ASA NDM v2r1
CISC-ND-000490 - The Cisco router must be configured with only one local account to be used as the account of last resort in the event the authentication server is unavailable.CiscoDISA STIG Cisco IOS-XR Router NDM v3r1
CISC-ND-000490 - The Cisco router must be configured with only one local account to be used as the account of last resort in the event the authentication server is unavailable.CiscoDISA STIG Cisco IOS Router NDM v3r1
CISC-ND-000490 - The Cisco router must be configured with only one local account to be used as the account of last resort in the event the authentication server is unavailable.CiscoDISA STIG Cisco IOS XE Router NDM v3r1
CISC-ND-000490 - The Cisco switch must be configured with only one local account to be used as the account of last resort in the event the authentication server is unavailable.CiscoDISA STIG Cisco NX-OS Switch NDM v3r1
CISC-ND-000490 - The Cisco switch must be configured with only one local account to be used as the account of last resort in the event the authentication server is unavailable.CiscoDISA STIG Cisco IOS XE Switch NDM v3r1
CISC-ND-000490 - The Cisco switch must be configured with only one local account to be used as the account of last resort in the event the authentication server is unavailable.CiscoDISA STIG Cisco IOS Switch NDM v3r1
Citrix ADC - System Parameters - Local AuthenticationCitrix_Application_DeliveryTenable Best Practice Citrix ADC v1.0.0
FGFW-ND-000030 - The FortiGate device must have only one local account to be used as the account of last resort in the event the authentication server is unavailable.FortiGateDISA Fortigate Firewall NDM STIG v1r4
JUEX-NM-000240 - The Juniper EX switch must be configured with only one local account to be used as the account of last resort in the event the authentication server is unavailable.JuniperDISA Juniper EX Series Network Device Management v2r1
JUNI-ND-000490 - The Juniper router must be configured with only one local account to be used as the account of last resort in the event the authentication server is unavailable.JuniperDISA STIG Juniper Router NDM v3r1
SYMP-NM-000010 - Symantec ProxySG must be configured with only one local account that is used as the account of last resort.BlueCoatDISA Symantec ProxySG Benchmark NDM v1r2