Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Mainframe Product Security Requirements Guide
SRG-APP-000404
The Mainframe Product must accept Federal Identity, Credential, and Access Management (FICAM)-approved third-party credentials.
The Mainframe Product must accept Federal Identity, Credential, and Access Management (FICAM)-approved third-party credentials.
An XCCDF Rule
Details
Profiles
Prose
The Mainframe Product must accept Federal Identity, Credential, and Access Management (FICAM)-approved third-party credentials.
Medium Severity
<VulnDiscussion>Access may be denied to legitimate users if FICAM-approved third-party credentials are not accepted. This requirement typically applies to organizational information systems that are accessible to nonfederal government agencies and other partners. This allows federal government relying parties to trust such credentials at their approved assurance levels. Third-party credentials are those credentials issued by nonfederal government entities approved by the FICAM Trust Framework Solutions initiative.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>