800-53|AU-9(5)

Title

DUAL AUTHORIZATION

Description

The organization enforces dual authorization for [Selection (one or more): movement; deletion] of [Assignment: organization-defined audit information].

Supplemental

Organizations may choose different selection options for different types of audit information. Dual authorization mechanisms require the approval of two authorized individuals in order to execute. Dual authorization may also be known as two-person control.

Reference Item Details

Reference: NIST 800-53 - Security and Privacy Controls for Federal Information Systems and Organizations

Related: AC-3,MP-2

Category: AUDIT AND ACCOUNTABILITY

Parent Title: PROTECTION OF AUDIT INFORMATION

Family: AUDIT AND ACCOUNTABILITY

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
Big Sur - Enforce Dual Authorization for Movement and Deletion of Audit Information	Unix	NIST macOS Big Sur v1.4.0 - All Profiles
Catalina - Enforce Dual Authorization for Movement and Deletion of Audit Information	Unix	NIST macOS Catalina v1.5.0 - All Profiles
Monterey - Enforce Dual Authorization for Movement and Deletion of Audit Information	Unix	NIST macOS Monterey v1.0.0 - All Profiles

Detections

Analytics