AC-6.2: Non-privileged Access for Nonsecurity Functions

An OSCAL Control

Statement

Require that users of system accounts (or roles) with access to use non-privileged accounts or roles, when accessing nonsecurity functions.
- - Guidance:
    Examples of security functions include but are not limited to: establishing system accounts, configuring access authorizations (i.e., permissions, privileges), setting events to be audited, and setting intrusion detection parameters, system programming, system and security administration, other privileged functions.