AC-2(8): Dynamic Account Creation

Control Family:

Access Control

Threats Addressed:


(Not part of any baseline)

Next Version:

Control Statement

The information system creates [Assignment: organization-defined information system accounts] dynamically.

Supplemental Guidance

Dynamic approaches for creating information system accounts (e.g., as implemented within service-oriented architectures) rely on establishing accounts (identities) at run time for entities that were previously unknown. Organizations plan for dynamic creation of information system accounts by establishing trust relationships and mechanisms with the appropriate authorities to validate related authorizations and privileges.