>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

IAM-19Account Lockout

>Control Description

Users are locked out of information systems after multiple, consecutive invalid attempts within a defined period; accounts remain locked for a defined period.

Theme

Technology

Type

Preventive

Policy/Standard

Access Management Procedure

>Implementation Guidance

1. Ensure that user lock out parameters are defined and implemented

>Testing Procedure

1. Inspect Organization's access control policy to check clauses pertaining to accessing system by multiple failed attempts are clearly defined. 2. Check check logical access systems to ensure the effectiveness for the same.

>Audit Artifacts

E-IAM-16
E-IAM-26

>Framework Mappings

Cross-framework mappings provided by Adobe CCF Open Source under Creative Commons License.

CIS Controls
1

4.1

FedRAMP Rev 5
2

AC-02 (05)
AC-11

PCI DSS
1

8.3.4

TX-RAMP
2

AC-11
AC-2(5)

Ask AI

Configure your API key to use AI features.