AC-2(8): Dynamic Account Creation

Control Family:

Parent Control:

AC-2: Account Management

Priority:

P1: Implement P1 security controls first.

CSF v1.1 References:

Threats Addressed:

Baselines:

(Not part of any baseline)

Next Version:

NIST Special Publication 800-53 Revision 5:
AC-2(8): Dynamic Account Management

Control Statement

The information system creates [Assignment: organization-defined information system accounts] dynamically.

Supplemental Guidance

Dynamic approaches for creating information system accounts (e.g., as implemented within service-oriented architectures) rely on establishing accounts (identities) at run time for entities that were previously unknown. Organizations plan for dynamic creation of information system accounts by establishing trust relationships and mechanisms with the appropriate authorities to validate related authorizations and privileges.