controlIA-8

Identification and Authentication (Non-organizational Users) (IA-8)

Uniquely identify and authenticate non-organizational users or processes acting on behalf of non-organizational users.

Security Baselines

LOWMODERATEHIGH

identificationauthenticationidentity

Why These Connect

Baselined In3

This control is included in the linked security baseline (LOW, MODERATE, or HIGH).

Supports31

These related controls work together — a change to one may affect the others.

Mitigates1

This control helps defend against or reduce the risk of the linked threat technique.

Enhances6

These enhancements add specific capabilities or refinements to the base control.

Related Controls(20)

AC-2Account Management (AC-2)

LMH

AC-17Remote Access (AC-17)

LMH

AC-18Wireless Access (AC-18)

LMH

AU-6Audit Record Review, Analysis, and Reporting (AU-6)

LMH

IA-2Identification and Authentication (Organizational Users) (IA-2)

LMH

IA-4Identifier Management (IA-4)

LMH

IA-5Authenticator Management (IA-5)

LMH

AC-6Least Privilege (AC-6)

AC-14Permitted Actions Without Identification or Authentication (AC-14)

LMH

IA-10Adaptive Authentication (IA-10)IA-11Re-authentication (IA-11)

LMH

IA-13Identity Providers and Authorization Servers (IA-13)MA-4Nonlocal Maintenance (MA-4)

LMH

RA-3Risk Assessment (RA-3)

LMH

SA-4Acquisition Process (SA-4)

LMH

SC-8Transmission Confidentiality and Integrity (SC-8)

IA-12Identity Proofing (IA-12)

MA-5Maintenance Personnel (MA-5)

LMH

PE-3Physical Access Control (PE-3)

LMH

SC-45System Time Synchronization (SC-45)

Threat Coverage(1 ATT&CK techniques)

T1133External Remote Services

Control Enhancements(6)

IA-8(1)Acceptance of PIV Credentials from Other Agencies (IA-8(1))

LMH

IA-8(2)Acceptance of External Authenticators (IA-8(2))

LMH

IA-8(3)Use of FICAM-approved Products (IA-8(3))W

IA-8(4)Use of Defined Profiles (IA-8(4))

LMH

IA-8(5)Acceptance of PIV-I Credentials (IA-8(5))

IA-8(6)Disassociability (IA-8(6))