SV-238439r667491_rule
V-238439
SRG-APP-000033-DB-000084
O112-C2-003500
CAT II
10
Define application user roles based on privilege and job function requirements.
Assign the required privileges to the role and assign the role to authorized application user accounts.
Revoke any privileges to sensitive information directly assigned to application user accounts.
Obtain a list of privileges assigned to user accounts. If access to sensitive information is granted to roles not authorized to access sensitive information, this is a finding.
If access to sensitive information is granted to individual accounts rather than to a role, this is a finding.
V-238439
False
O112-C2-003500
Obtain a list of privileges assigned to user accounts. If access to sensitive information is granted to roles not authorized to access sensitive information, this is a finding.
If access to sensitive information is granted to individual accounts rather than to a role, this is a finding.
M
4057