Skip to content

Identity & Access Management

5 control(s) in this category.

Control Title Severity Type
389-IAM-001 Enforce additional controls for privileged accounts (admins). high preventive
389-IAM-002 Require MFA for all privileged accounts. high preventive
389-IAM-003 Limit service accounts to required directory service access only. medium preventive
389-IAM-004 Implement policies for user account provisioning, de-provisioning, and auditing. medium preventive
389-IAM-005 Use attribute-based access control (ABAC) for granular user permissions. medium preventive