3.1.7SPRS: 1 point

Prevent non-privileged users from executing privileged functions; log them

Access Control · NIST SP 800-171 Rev 2

Requirement

Prevent non-privileged users from executing privileged functions and capture the execution of such functions in audit logs.

Discussion

Privileged functions include establishing system accounts, performing system integrity checks, conducting patching operations, or administering cryptographic key management activities. Non-privileged users are individuals that do not possess appropriate authorizations. Circumventing intrusion detection and prevention mechanisms or malicious code protection mechanisms are examples of privileged functions that require protection from non-privileged users. Note that this requirement represents a co

How this affects your SPRS score

Under the DoD Assessment Methodology, a perfect SPRS score is 110. If this control is not met, 1 point is subtracted from your score.

Want your estimated SPRS score?

Answer 15 quick questions covering the highest-impact controls and get an instant estimate.

Estimate my SPRS score →

Source: NIST SP 800-171 Rev 2 (public domain) · SPRS weighting per the DoD Assessment Methodology · This is reference information, not an official assessment.

Support is offline

Enable live chat support. We use Crisp which stores a cookie and may process your email. See our Privacy Policy.

Support is offline

Enable live chat support. We use Crisp which stores a cookie and may process your email. See our Privacy Policy.