|

controlAC-14

Permitted Actions Without Identification or Authentication (AC-14)

Identify [organization-defined] that can be performed on the system without identification or authentication consistent with organizational mission and business functions; and Document and provide supporting rationale in the security plan for the system, user actions not requiring identification or authentication.

Security Baselines

LOWMODERATEHIGH

access-controlauthorizationleast-privilege

Why These Connect

Baselined In3

This control is included in the linked security baseline (LOW, MODERATE, or HIGH).

Supports6

These related controls work together — a change to one may affect the others.

Enhances1

These enhancements add specific capabilities or refinements to the base control.

Related Controls(4)

AC-8System Use Notification (AC-8)

IA-2Identification and Authentication (Organizational Users) (IA-2)

PL-2System Security and Privacy Plans (PL-2)

IA-8Identification and Authentication (Non-organizational Users) (IA-8)

Control Enhancements(1)

AC-14(1)Necessary Uses (AC-14(1))W

See Also

@SP 800-53 Overview ⚖Compare Baselines