Disable Root Access on MLDE Instances

CCC.MLDE.C03: Disable Root Access on MLDE Instances

Control ID:CCC.MLDE.C03

Title:Disable Root Access on MLDE Instances

Objective:Prevent users from obtaining root access on MLDE instances to reduce the risk of unauthorized system modifications and potential security breaches.

Control Family:

Identity and Access Management

Guideline Mappings

Reference ID	Entry ID	Remarks
NIST-CSF	PR.AC-4	-
NIST_800_53	AC-6	-
CCM	IAM-08	-
CCM	IAM-12	-
ISO_27001	2013 A.9.2.3	-

Assessment Requirements

ID	Description	Applicability
CCC.MLDE.C03.TR01	Verify that root access is disabled on MLDE instances containing sensitive data.	tlp-red
CCC.MLDE.C03.TR02	For MLDE instances without sensitive data, ensure that root access is only enabled when necessary and properly authorized.	tlp-red tlp-amber tlp-green tlp-clear