STIGs RMF Controls Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
RMF Controls
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 5 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← IA-13 (03) — Identification and Authentication

CCI-005165

Definition

Access tokens are issued in accordance with organization-defined identification and authentication policy.

Parent Control

IA-13 (03)Identification and AuthenticationIdentification and Authentication

Linked STIG Checks (3)

V-274848CAT IIThe API must issue access tokens in accordance with organization-defined identification and authentication policy.Application Programming Interface (API) Security Requirements Guide V-279689CAT IIOkta API tokens must be configured with Network Zones to restrict authorization from known networks.Okta Identity as a Service (IDaaS) Security Technical Implementation Guide V-279690CAT IIOkta API tokens must be created under new dedicated user accounts.Okta Identity as a Service (IDaaS) Security Technical Implementation Guide